SERIOUS PRIVACY ISSUE!
-
@funkyjunkygypsy When u use an email log in, u make up it's own log in name. Urstyle has it's own log in as oppose to anything else associated with my email accounts. It is still unwise for any Company to make their members use their password this many times. @admin I will have to leave if it happens again and be back hopefully when it is fixed!
-
@rboowybe Okay, I do not use email here and @idetached said she uses her email, so this IS a concern if it connects to her email. I use the same method you do, the User Name & Password created only for UrStyle. It's safer to do that on EVERY website you use. Even if you use the same User Name, change the password for each one to something else.
-
@littlefeather114 all passwords are safe. We are doing huge changes in the system and probably some sessions are mixed. This will be fixed soon
-
Alright, I sure hope so.I know you guys are working hard and we all appreciate it very much.
-
@admin How can passwords possibly be safe when UrStyle logged someone else into my account -- giving them access to all information on and connected to my account. Please explain. Thank you.
-
the same things happening to me, so this is definately not an isolated situation
-
@funkyjunkygypsy your password is not visible to anyone and no one can read it or use it. Only sessions seems to be mixed so some and only some of the users had that glitch and have been logged in to a wrong account. Did someone get this issue twice ?
-
@funkyjunkygypsy Urstyle has the option for you to create a user name and password so it doesn't actually go to my private email account. What I'm using is just created to use on Urstyle.
-
Right now session life time has been set up to 1 day, so old users sessions should disappear. If that will not help. we will revoke all sessions (which will cause logout of all users).
Please notify me if glitch still occurs -
@admin It only happened to me once.
-
@familyrppartner Yes, is happening to many.
-
У меня такая же проблема!
-
@admin Is there A time frame of when this will be totally resolved? as well as being logged out every few minutes? Because I pretty much can't do anything due to being logged out every few minutes.
-
@littlefeather114 once is enough
-
@littlefeather114 the issue with frequent logging out is a separated issue and should be fixed in about 3-4hours
-
@familyrppartner No,I agree.I just was responding to their question.They asked if it happened to anyone more than once.
-
@admin Ok, thank you.
-
@admin It has now happened to me twice and logged me into the same account again
-
@idetached Yes I realize that. Some people do not use that option. I'm glad you do! I misunderstood what you'd written which was: @FunkyJunkyGypsy@littlefeather114 ... I also don't use social media to log into this site. I do email.
So that's what concerned me. Glad you're good!
-
@admin
My password is not visible to me either, but I can easily, if connected to UrStyle via Facebook, click right in to Facebook -- and so can anyone who happens to be given access to my account due to UrStyle sessions being "mixed". Unscrupulous UrStyle Users can easily gain access to private information within our UrStyle account IF they find themselves logged into it. Perhaps there's an e-mail address one wishes to remain private. But that isn't the security issue I’m concerned with.-
Someone who’s been pushed through UrStyle’s wormhole, finding themselves in another User’s UrStyle account, can easily pop on to the Valid User's Facebook Account IF the Valid User logs into UrStyle via Facebook. Yes. By being logged in to a UrStyle account that is not theirs, a person is also logged in to a corresponding Facebook account that is not theirs IF the Valid User uses their Facebook account to log into UrStyle.
-
If one uses their Facebook account to log into UrStyle, it is more than likely that they use their FB account to link to, and log in to, other websites as well. Therefore, the "accidental intruder" can click over to Facebook and access all the information there, as well as gain access to the accounts of all other websites that the Real User logs into using Facebook.
While UrStyle sessions are being "mixed" and your Users are finding themselves logged out of their own accounts and logged in to the account of others, it would behoove those Users who log in to UrStyle via a social media site (such as Facebook) to change all passwords of all websites associated with that social media site.
For many people, that may be a great deal of accounts. These types of Log-In-With-Facebook accounts include, but are not limited to, bank accounts and credit cards accounts that people may put on file in their Facebook accounts. People DO do this, for a variety of reasons. -
Take a look at the Facebook Payment Methods Section on my personal FB account below. I've removed my User Name and e-mail address, but rest assured, anyone who has a Facebook account can find the very same page in their own account, very easily.
Note that one can store a credit card, a debit card, and even connect directly to their PayPal account right on Facebook. PayPal is just one of the many online payment services that connects to Facebook, in that you can use your Facebook account to log into them. Did you know that many UrStyle Users are also buyers and sellers who use PayPal in their transactions?
So even though our UrStyle Password may not be visible, and even though there is an option to log-in to UrStyle the way I do; using the direct log-in feature with an individual user name and password created for UrStyle only, there is still the concern of those who log in using Facebook or Instagram. The UrStyle session mixing occurring at all, it being unpredictable and difficult for you to resolve, does not make me feel confident that there exists great potential and risk of identity and security compromise in countless online venues... simply because some of us log in using social media. So to those users, I ask: Are you okay with someone skipping over to your Facebook account, accessing your PayPal account, and sending themselves or someone else money?
NO? Thought not… Which is why I strongly recommend the passwords to those accounts be changed ASAP. -
