dutnguye is saying he was hacked, and today he had a quick sale -he posted over at AT and ssaid he heatware was hacked as well. This is a FYI

My guess is the seller's email was hacked which gave access to both [H] and Heatware. We should all use PW managers to make every password for every site different and also use 2FA whenever possible.
 
I would strongly recommend changing your Hardforum password, Heatware password, and Anandtech(or any other PC forum), if you have an account there, make sure they are NOT the same password, and then enable 2FA at Hardforum, Anandtech and any other sites that allow it. Heatware does not have 2FA. If anybody has contact information and can contact the admin of Heatware and see if that can be turned on that would be super helpful. I'm not suggesting any of these were breached, but it's likely that somebody was able to get access to credentials for accounts from Anandtech, Heatware and Hardforum. These are most likely just from some other website being breached and then the hacker using those username/password combinations, but to be safe you should definitely make sure your accounts are safe by creating new passwords that are not shared.

My guess is the seller's email was hacked which gave access to both [H] and Heatware. We should all use PW managers to make every password for every site different and also use 2FA whenever possible.

There was a separate thread from a separate person following the exact same theme at Anandtech - https://forums.anandtech.com/threads/evga-geforce-rtx-3070-xc3-ultra-8gb-gddr6-750-shipped.2598881/ That makes me concerned that it may be bigger than just this. I know you're over there too so I'm sure you saw that, but wanted to explain my reasoning for cautioning people to be careful.
 
Last edited:
You're more cautious than most. My user account here has been around since 2013(though, it should be something more like 2004 but I got lost in one of the forum upgrades). My same user account has been on other popular forums since 2004 or earlier. My Heatware is consistent back to 2004 including a ton of recent stuff. It's not fluff stuff, most of my recent transactions are high value PC parts like EPYC CPU's and high end GPU's. I'm active on this forum and others. Anybody doing a cursory look would think I'm legit. I'm confident that if my account got breached it could do some damage, so that is extra motivation to do everything I can to make sure my account is safe.

I do not recall a single transaction I've ever done where somebody asked my phone number, other than maybe to give to fedex for tracking updates. I've never had somebody ask me to call them or even text them. The closest thing I've ever had to somebody questioning anything is they looked up my shipping address on Street View and noticed it was my employer and were sketched out but were okay with shipping once I told them it was my employer. People are generally trusting, so if there's a scam going around we need to figure it out ASAP to prevent people from getting scammed.
I’m way more cautious than most. If it’s an amount I’d readily toss away, no big deal but in the hundreds? I’m doing some digging before I hit send, especially if they ask for a method without recourse. I’m also sure if any long standing members account got compromised it could do damage. That was never in question, I just never would expect a long standing member to ask for such things. I’ve done it out of courtesy, but most are comfortable with PayPal goods payments. Crypto is always a stop for me.
Just to clarify the seller from the incident today had 1082 positive heat and was a member for 15 years.
Understand, but my point being I treat those with 64 heat the same as I do 1082, and if the long time user gets upset then that’s another red flag. Most long time traders have been around long enough to know the hesitation in someone sending a chunk of $ like that and will do whatever is required to make the buyer feel at ease.
 
I’m way more cautious than most. If it’s an amount I’d readily toss away, no big deal but in the hundreds? I’m doing some digging before I hit send, especially if they ask for a method without recourse. I’m also sure if any long standing members account got compromised it could do damage. That was never in question, I just never would expect a long standing member to ask for such things. I’ve done it out of courtesy, but most are comfortable with PayPal goods payments. Crypto is always a stop for me.

Understand, but my point being I treat those with 64 heat the same as I do 1082, and if the long time user gets upset then that’s another red flag. Most long time traders have been around long enough to know the hesitation in someone sending a chunk of $ like that and will do whatever is required to make the buyer feel at ease.
When I did a GPU trade with a long-time member here, I did a LinkedIn connect with him to make sure everything check out. I even did an RMA for him this summer when he sent me the card and some extra $ to cover the shipping back to him. Extra caution is warranted for high-value items.

Personally, I buy almost everything through PayPal Goods and Services, unless the item value is less than $100 that I can take the loss.
 
Red Alert: Another compromised account on Heatware, thegunner100, do not buy from this user till corrected. Attaching my correspondence with this guy, likely the same person/persons. This conversation started yesterday, before this morning's events here.
I just saw that when I went there to change my password a little while ago and came here to post/question if it was another hacked account.
 
I just saw that when I went there to change my password a little while ago and came here to post/question if it was another hacked account.
If someone is selling a GPU, console or other high demand item close to or below cost in this market, be very careful and double/triple check everything. Changed my pwd as well.
 
Hmm, scammers are lurking here. Beware!

jim-halpert-puts-back-seat.gif
 
When I did a GPU trade with a long-time member here, I did a LinkedIn connect with him to make sure everything check out. I even did an RMA for him this summer when he sent me the card and some extra $ to cover the shipping back to him. Extra caution is warranted for high-value items.

Personally, I buy almost everything through PayPal Goods and Services, unless the item value is less than $100 that I can take the loss.
And most longtime members understand and will work with you so both parties are comfortable that the deal is legit. If you ask questions and they get wishy-washy, move on. If they claim "umpteen people are ahead of you, pay now" then they are likely scamming or aren't worth dealing with anyway. Creating a sense of urgency or FOMO is the #1 scam tactic.
 
Sorry that you guys had the experience that you did. Truly. It can happen to anyone.
 
Eh, it's like the constant scam they pull on ebay with listing X GPU for several 100s below the going rate. People keep falling for it for some reason...

Also no, you can't use a CC with F&F payments, unless they have recently changed that policy...
I sold a 3060ti i got from the NewEgg Shuffle the other day to a friend at cost. He sent me F&F using his credit card. He had to pay whatever fee PayPal charges and it said it will show on his statement as a cash advance.
 
I sold a 3060ti i got from the NewEgg Shuffle the other day to a friend at cost. He sent me F&F using his credit card. He had to pay whatever fee PayPal charges and it said it will show on his statement as a cash advance.
I wonder if they allow chargebacks on cash advances.
 
If you claim an unauthorized chargeback, it doesnt matter what type of payment it is
Good to know. Looks like you get pretty screwed with fees on cash advances with CCs so bufodr's buddy probably should have just paid the PP G&S fee.
 
Not to sound rude, but 64 positive isn’t enough for me to send $1100 blindly to ANYONE without a call or some other follow up to ensure things are on the up and up. Hell, ask dbwillis whom I’ve dealt with many many times how often I’ll ask questions back and forth when it’s over $100! I guess I’m just overly tight with money.

Probably smart, I've sent way too much money here on a whim, but at least you have the option of paypal goods & services and it's not that much extra. Maybe for crypto purchases we should ask people to use smart contracts with arbitration in kleros court?
 
That's the one (the 3060) undertaker2k and I mentioned above about being a scam.

Seems like HeatWare might be the common denominator in all this compromised info.
 
I'd advise everyone NOT to buy anything off of Heatware marketplace until they get this sorted out...
 
^ That 3080 FE on Heat is definitely a scam. Look at the receipt...delivery address is a Town in the UK but he Heat acct shows MA lol.

Also if you are using Chrome and right click on the receipt image and select "Search Google for this image" you can trace all those images and the full description text to an eBay listing it the UK...
https://www.ebay.co.uk/itm/NO-RESER.../284520270295?_trksid=p2349526.m4383.l4275.c6
 
heat23 has been notified, both here and on Heatware regarding these listings as well as Heatware accounts being hacked.

Hopefully, and with any luck, these issues will be resolved real soon.
 
didknt know the forum had 2FA feature. i have now activated it!

does heatware have 2FA?
 
It's kind of shocking that the fraudulent Heatware marketplace ads are still up to be honest. I wonder how many people have sent them crypto and don't even realize they're scammed yet.
 
That's the one (the 3060) undertaker2k and I mentioned above about being a scam.

Seems like HeatWare might be the common denominator in all this compromised info.

During one of the google "security checkups" it told me my heatware.com password was compromised. I changed it. Definitely seems like a less than scrupulous enthusiast who 1). Knows about heatware from being around forums and whatnot 2). Has pretty good command of English as the posts aren't all Engrish. I would even go so far as to say that they are probably a user at a well known forum(s).
 
During one of the google "security checkups" it told me my heatware.com password was compromised. I changed it. Definitely seems like a less than scrupulous enthusiast who 1). Knows about heatware from being around forums and whatnot 2). Has pretty good command of English as the posts aren't all Engrish. I would even go so far as to say that they are probably a user at a well known forum(s).
I would agree with that assessment. The posts are fairly convincing, uses correct terminology for hardware, tells a believable story(it wouldn't fit in my case, or I got a 3060ti instead, etc.) and then is priced below market value to get people to jump on it without being such a low price as to be 100% unbelievable. They're posting on popular tech forums, I've seen posts on Anandtech and here, but those are the only tech forums I frequent. I would guess it's probably happening at others as well. I did poke around Reddit hardwareswap a bit to see if anything stood out and I didn't notice any posts there that fit the theme, but there's so much traffic there I could have missed it.

It's definitely somebody that is familiar with the current GPU market, pricing, and how forums operate which is.. concerning.

heat23 would you be able to post here as far as if there has been any kind of a security incident / breach of a password database at Heatware? Or is it thought at this time that it's somebody using a username/password list from another site's breach? Also would you be able to enable 2FA at Heatware?
 
I finally got my h account back thanks to Kyle. Long story short it was not my email that got compromised; I was alert by my email that my h account email was update and that how I become inform.
The only denominator is that both my H and heat have the same password, AT is not and my emails and other app are more secured. I’m still trying to get my heatware account back if possible
 
I went ahead and changed my heatware username as well so that it doesnt perfectly match my forum alias. If there isn't a public resolution I think I will close my heatware account and use ebay as my feedback resource.
 
I finally got my h account back thanks to Kyle. Long story short it was not my email that got compromised; I was alert by my email that my h account email was update and that how I become inform.
The only denominator is that both my H and heat have the same password, AT is not and my emails and other app are more secured. I’m still trying to get my heatware account back if possible
Was that same password used on any other sites that could have been compromised or it was only used here and Heatware?
 
I believe only here and heat. They are very old passwords
Would you be willing to type the password into this website and tell us the result? - https://haveibeenpwned.com/Passwords

If it wasn't part of any other data breach, it would strongly suggest that Heatware has had a breach or data security incident

Edit - maybe this is old news that I just didn't know about? This Reddit thread from a year ago references it - https://www.reddit.com/r/Mechanical...scammers_running_rampant_on_rmm_using_hacked/ If so, it really makes no sense that 2FA is not available on Heatware. My expectation would be that would be added as a top priority if there was any kind of data security incident.
 
I finally got my h account back thanks to Kyle. Long story short it was not my email that got compromised; I was alert by my email that my h account email was update and that how I become inform.
The only denominator is that both my H and heat have the same password, AT is not and my emails and other app are more secured. I’m still trying to get my heatware account back if possible

The same thing happened to me over the summer. They got into my cell phone account, ported the number to some other service, used my cell phone to reset my e-mail, and then reset my Paypal account and started buying things. Took me 3-4 days to get my cell phone number back. Fortunately, PP took care of things on their end (for once).
 
The same thing happened to me over the summer. They got into my cell phone account, ported the number to some other service, used my cell phone to reset my e-mail, and then reset my Paypal account and started buying things. Took me 3-4 days to get my cell phone number back. Fortunately, PP took care of things on their end (for once).
Haha totally agree about PP, the last time I had to deal with them regarding a fraud case they weren't helpful at all.
 
I always offer to pay G&S fee to cover myself for purchases even though it may be a hassle if the transaction goes south. I'm sorry to hear that long time account holders are getting hacked. I saw that sale and when I saw crypto only for payment I passed on it.
 
The fraudulent Heat Marketplace listings are still up. Are the Heat admin don't care, or Heat was hacked such that the admins couldn't even get in themselves?
 
The fraudulent Heat Marketplace listings are still up. Are the Heat admin don't care, or Heat was hacked such that the admins couldn't even get in themselves?
Heat has a lot going on usually but many have been trying to get in touch with him including myself. It’s not that the admin don’t care, but heat is the only admin there.
I believe only here and heat. They are very old passwords
This was my suspicion from the beginning. I’d bet a lot of these data breaches of old passwords sometimes strike gold when people let old passwords go stale.
 
Back
Top