Gun sale removed?

[haroldiniho]

Hi guys I paid for a gun kwa kriss vector GBB and it has been removed since I paid for it without the seller responding or any warning someone tell me why please cause I paid quite a bit of money for it see.

Thanks

[Albiscuit]

 

 

??

 

Oh dear!!

[Immortal]

 

Uh-oh...

 

[haroldiniho]

Ahh ffs thanks guys

[Albiscuit]

If it was paypal, reverse that ish RIGHT NOW!!

[haroldiniho]

Yea was PayPal but I need to contact them tomoz for it not to go through as it's pending atm. There's more of this fraud going on than ever I'm finding. People also posts guns on here you message them agree few then boom gone for weeks ffs why post to sell then not sell useless!

[Rogerborg]

Oops.  I hope you get that cancelled or reversed sharpish.

 

For what it's worth:

 

https://www.actionfraud.police.uk/

http://www.tradingstandardsecrime.org.uk/report-fraud/

[haroldiniho]

Managed to cancel it as it was pending payment 

[proffrink]

Good man. Still digging and will likely not reveal findings to the forum I'm afraid but I'm glad you got your money back.

[haroldiniho]

Thanks mate. 

And I just got my first + feedback lol thanks 

[cropzy]

People still don't use password lockers?

 

Wow.

[Rogerborg]

26 minutes ago, cropzy said:

People still don't use password lockers?

 

Wow.

 

People still trust all of their passwords to third party closed source vendors who are prime targets for hackers?

 

Wow.

 

 

It's worth mentioning that it's super easy for a seller to create a PayPal invoice, and that you should always ask them to do so: https://www.paypal.com/uk/webapps/mpp/email-invoice

 

The invoice should list exactly what goods and services they are contracting to provide, what condition they're in, and how and when they will be delivered.  It forms the basis of an agreement that PayPal can see and act on if shenanigans are afoot.

 

If a seller won't do that, then I'd let someone else take the gamble on them.

[proffrink]

Really not a huge amount wrong with storing your passwords in one, properly secured place right now. It certainly beats most other forms of storing them and certainly is better than reusing passwords.

 

Also that article points to the fact that the leaked passwords were still hashed (as they should be) and are therefore uselese without decryption keys. Whilst still a disaster it goes to show how a specialist company is still better at the job than 99% of online shoe shops.

 

The best practical solution is 2 factor authentication where possible. It's not unbeatable but it is difficult to the point that it's not worth the time for a hacker. I'm looking into 2FA for here.

[Rogerborg]

54 minutes ago, proffrink said:

I'm looking into 2FA for here.

 

I'd note that getting shot in the face with hard plastic BBs isn't a hobby that the risk averse will flock to, and "pass" and "word" is about as factorial as I'm prepared to go.

[haroldiniho]

I did ask questions to the seller about the gun and he described it to me and negotiated a price too, I've bought a lot of guns from this site and others and he knew what he was doing I'm thinking another airsofter did it myself. 

But I did think when I did it with the old say if it sounds too good to be true it most probably is, also when he said it's 'new' well they stopped making them years ago so my bad also.... nevermind all sorted now 

[proffrink]

2 hours ago, Rogerborg said:

 

I'd note that getting shot in the face with hard plastic BBs isn't a hobby that the risk averse will flock to, and "pass" and "word" is about as factorial as I'm prepared to go.

It would be optional if implemented.

 

I'm not too sure about the negative correlation between adrenaline-fueled, danger-seeking toy gun enthusiasts and online security but if you find a connection do let us know.

[skintrade]

Just now, proffrink said:

It would be optional if implemented.

 

2FA is something I always recommend for anything where financial and personal data is concerned, it's less critical for forums, but if the option is there with session based management to save having to use every time on same device (2FA check on new device/log in) I'll take it!

[proffrink]

Like you I wouldn't be too bothered if my account didn't have admin access and the like, but this would be more for the peace of mind of some.

 

Staff have been required to use 2FA for some time to access their accounts and we do use sessions to not make that a huge pain.

[cropzy]

4 hours ago, Rogerborg said:

 

People still trust all of their passwords to third party closed source vendors who are prime targets for hackers?

 

Wow.

 

 

It's worth mentioning that it's super easy for a seller to create a PayPal invoice, and that you should always ask them to do so: https://www.paypal.com/uk/webapps/mpp/email-invoice

 

The invoice should list exactly what goods and services they are contracting to provide, what condition they're in, and how and when they will be delivered.  It forms the basis of an agreement that PayPal can see and act on if shenanigans are afoot.

 

If a seller won't do that, then I'd let someone else take the gamble on them.

I've never heard of that password lockers before. Hence why it was attacked because it was shit. Use lastpass or keepass. Only decent ones.

[proffrink]

Ok so Google Authenticator is now available to all members who're feeling a bit vulnerable for whatever reason:

https://airsoft-forums.uk/settings/account-security/

 

iOS

https://itunes.apple.com/gb/app/google-authenticator/id388497605

 

Android

https://play.google.com/store/apps/details?id=com.google.android.apps.authenticator2&hl=en_us

[Arwen]

Just pitching in... Lastpass is an excellent password manager. Syncs across your devices, hooks in with your finger print reader on your phone if you wish. Chrome and firefox extensions work perfect. It also has an inbuilt password generator that you can set up different "profiles" for. 

 

I highly recommend it. 

[proffrink]

Made that my personal recommendation in the other thread too

[Rogerborg]

correcthorsebatterystaple were good enough for my grandpappy, it's good enough for me.

 

[lukeB]

+1 for lastpass

 

Used to use dashlane but their chrome plugin got a bit buggy.

[skintrade]

Have my own password generator code, served me well for the last 5 or 6 years since I wrote it. But LastPass is a solid tool