Announcement

Announcement Module
Collapse
No announcement yet.

Roland site hacked

Page Title Module
Move Remove Collapse
X
Conversation Detail Module
Collapse
  • Filter
  • Time
  • Show
Clear All
new posts

  • Roland site hacked

    I don't know if anyone has signed up to Roland Backstage. I just got an email warning of a security threat (meaning it's been hacked).

    We are writing to let you know that there may have been illegal and unauthorized access to some users’ personal information on RolandUS.com for the “Roland Backstage” portion of the website located at http://www.rolandus.com/backstage/login.php. This information may include one or more of the following: the user name, e-mail address, password, street address, phone number, and/or personal information such as age range, gender and registered products.

    Based upon our investigation, we believe that less than 1% of the subscriber account information was compromised. Fortunately, our investigation has indicated that there is no evidence that your account information was part of this small group. Please note also that since you did not provide us with any credit card information or other financial data when you subscribed to the “Roland Backstage” portion of the website, you do not need to worry about credit card information or other financial data being leaked from our website.


    They advise going back to the site and changing your login.
    Beater-tester. digitalDrummer
    Review index

  • #2
    Interesting. Not sure if if I want to go back for a while....this too could have been sent by the hacker to gain more info. Just specuation....of course.
    8 piece DIY Acrylic http://www.quartzpercussions.com/, 2x2Box DrumIt5, Gen16 4xDCP, Acrylic&Gen16 Conversions http://stealthdrums.com/Home_Page.html, Sleishman Twin-QuadSteele hybrid http://drumagination.com/ , Gibraltar&DrumFrame rack, DW9502LB, Midi Knights Pro Lighting http://jeredsystems.com/index.php
    http://www.airbrushartists.org/DreamscapeAirbrushRealm

    Comment


    • #3
      OMG!!


      I don't belong to that account but there is way too much of this BS happening on the internet!!


      ............................... ......
      KITS:

      - Vintage Tama Imperialstar Royal Pewter Double 26" Bass. Ultra power toms, zola coat shells. Tama SLP Vintage Steel Snare. Paiste Signature Series & 2002 Cymbals. AND A BIG CLUNKER’N COWBELL!!

      - My boss’s Vdrums.


      Voice of an Angel. Body of a Goddess. Celebrity looks. Personality Plus. Piano whiz kid. Mistress of the keyboard.

      But OMG my drumming scares the bejeebers out of small children and furry animals and Satan.

      Comment


      • #4
        Originally posted by 3Cup Candy View Post
        OMG!!


        I don't belong to that account but there is way too much of this BS happening on the internet!!


        ............................... ......
        Haha.....love the microswitch "off rant" pic! Gold
        A-KIT: Pearl Masters Maple Custom
        E-KIT: Pintech Pads 10/10/12", 14" Acoustech Snare, KD-120 Kick, VH-11 Hi-Hat, Pearl Eliminator Doubles
        MODULE: Roland TD-12

        Comment


        • #5
          I'm feeling lucky, punk. Hoping to be one of the 99% whose stuff wasn't stolen.

          Don't all of these disclosures say, "...but it was only X%" though?

          It's not like anyone will be able to challenge the figures.

          Bruce
          • Roland TD-20+TDW-20, TD-8, SPD-S, PD-105, PD-6/8, CY-5/6/8/12, FD-6/8, KD-7/8, RT-10K, PM-30, DB-90
          • Hart Acupad, Hart Hammer, Pintech Dingbat, Sony MDR-7505, Shure E2, 512. Pacific CX, Zildjian A Customs.

          Comment


          • #6
            I got the email as well. If you don't trust the email, don't use the embedded link to go to Roland US. Log in normally and change your password that way.
            TD-12; TD-6V; FD-8; Hart Pro Toms, Snare, Bass; ECII hihat, crashes, splash & ride; Smartrigger crashes & china; Hart Hammer Pad; Pintech Dingbat; Iron Cobra double-bass.

            "I never play the same thing twice...sometimes because I simply can't remember it." - John Paul Jones

            Comment


            • #7
              Originally posted by Fullback32 View Post
              I got the email as well. If you don't trust the email, don't use the embedded link to go to Roland US. Log in normally and change your password that way.
              Hmmmm......I never got the email.

              Well...it wouldn't let me on....had to create a new profile. Go figure.
              Last edited by fulrmr(Daniel); 02-23-12, 09:10 PM.
              8 piece DIY Acrylic http://www.quartzpercussions.com/, 2x2Box DrumIt5, Gen16 4xDCP, Acrylic&Gen16 Conversions http://stealthdrums.com/Home_Page.html, Sleishman Twin-QuadSteele hybrid http://drumagination.com/ , Gibraltar&DrumFrame rack, DW9502LB, Midi Knights Pro Lighting http://jeredsystems.com/index.php
              http://www.airbrushartists.org/DreamscapeAirbrushRealm

              Comment


              • #8
                Yea, reset my stuff this morning. They said they believed less than 1% of data was accessed.
                Alan
                ______________________________________________
                check out our website to get kits for your Roland module: v expressions ltd

                Comment


                • #9
                  Originally posted by fulrmr(Daniel) View Post
                  Hmmmm......I never got the email.

                  Well...it wouldn't let me on....had to create a new profile. Go figure.
                  Not to state the obvious - are you sure you were signed up?
                  Beater-tester. digitalDrummer
                  Review index

                  Comment


                  • #10
                    Got the e-mail but the embedded link points to app.bronto.com stuff. Sounds fishy too me.

                    Comment


                    • #11
                      Originally posted by allanjohn View Post
                      Not to state the obvious - are you sure you were signed up?
                      yep....but it doesn't really matter now though.
                      8 piece DIY Acrylic http://www.quartzpercussions.com/, 2x2Box DrumIt5, Gen16 4xDCP, Acrylic&Gen16 Conversions http://stealthdrums.com/Home_Page.html, Sleishman Twin-QuadSteele hybrid http://drumagination.com/ , Gibraltar&DrumFrame rack, DW9502LB, Midi Knights Pro Lighting http://jeredsystems.com/index.php
                      http://www.airbrushartists.org/DreamscapeAirbrushRealm

                      Comment


                      • #12
                        Found this on app.bronto.com some cross scripting vulnerability unfixed. http://www.xssed.com/mirror/38730/

                        Comment


                        • #13
                          Yeah, looks like phising to me too. Best practice is to never click through an email link to access a secure site.

                          Leads me to wonder what earthly use anyone would have for my Roland account.
                          I’d rather be told the ugly truth than handed a pretty lie.

                          Comment


                          • #14
                            Originally posted by Patlabatt View Post
                            Got the e-mail but the embedded link points to app.bronto.com stuff. Sounds fishy too me.
                            If you actually follow the link, it DOES take you to Roland where you can renew your info. It didn't seem phishy to me. Bronto is an enterprise level communication service. I don't think there is anything to worry about.
                            Alan
                            ______________________________________________
                            check out our website to get kits for your Roland module: v expressions ltd

                            Comment


                            • #15
                              The text of the email that allanjohn posted is in fact consistent with an incident that was and continues to be investigated by Roland US. There also was an email that was sent from Roland US to Roland Backstage subscribers that contains identical language.

                              Having said that, I am not at all dismissing the possibility of a phishing email or emails being circulated - although I have NOT personally received, seen, or been informed of any Roland Backstage fraudulent email messages.

                              Alan @ V Expressions is also correct regarding Bronto. It is a service that Roland US uses:

                              http://bronto.com/customers/success-...p#.T0fXxZj3Os8

                              Use your own best judgement and due diligence with any email communication you may receive. As others have suggested a logical approach is to simply visit the Roland US website directly, navigate to the Backstage area, log on, select Edit Profile, and change your password.

                              I hope this is helpful!
                              Last edited by Drew Armentrout; 02-24-12, 11:04 PM.
                              Product Manager - Drums & Percussion - Roland Corporation US

                              About Drew

                              Linkedin Profile

                              Comment

                              Working...
                              X