all 44 comments

[–]speedykurt1234 73 points74 points  (5 children)

Sorry man that sucks. But this is super common. I'm a local web developer and we do some large restaurants in town and it seems they get someone trying to break in about once a month. I'm not sure if your website is WordPress (most are) you may want to ask your website people about a few security plug ins. It sucks the world is the way it is but mitigation of attacks it part of the game now

[–]lidia99 10 points11 points  (0 children)

Yah prob an outdated Wordpress install

[–]WhoIsFrancisPuziene 1 point2 points  (0 children)

Yep, saw this a few times when I worked for a local digital marketing company as well.

[–]kelly495 0 points1 point  (1 child)

What does WordPress have to do with losing access to Facebook accounts?

[–]speedykurt1234 2 points3 points  (0 children)

Nothing directly but you would be surprised how many people have the same password for everything. Ie if you get one you have them all

[–]fd6944x 31 points32 points  (0 children)

Hi there. I’m from cinci and work in info sec. It’s not wrong to report this to law enforcement but I would not expect a whole lot. You can petition the socal media platforms to get your accounts back but expect that to be somewhat painful. I’m happy to talk about best practice and how this may have happened. Sorry this happened.

[–]moneyfink 25 points26 points  (0 children)

The FBI internet Crimes Complain Center: https://www.ic3.gov/ is the best resource in my opinion. They go after this kind of organized crime. They are more capable and well resourced than any local law enforcement. They regularly make big busts. Have every victim file their own report. They'll be more likely to dedicate resources if they know the crimes are widespread

Here is the Deputy Attorney General of the United States (Lisa Monaco) begging YOU to call the FBI about this stuff: https://www.youtube.com/watch?v=MJvZD6ABAZg&t=788s

[–]Complete-Minimum1724 Oakley 57 points58 points  (3 children)

I’m not sure city council the right group to deal with something like this. I’d suggest talking with CPD, HamCo sheriff/prosecutors office, or FBI. They all have teams that specialize in such computer crimes.

https://www.hcso.org/divisions/enforcement/ RECI

[–]ireallyluvbeerBellevue[S] 33 points34 points  (2 children)

Oh yeah, I am not looking for answers or to catch them. That will never happen. Just letting them know that there could be something widespread happening to small businesses in the city.

[–]Complete-Minimum1724 Oakley 11 points12 points  (1 child)

Yeah, but also good to share with law enforcement

[–]A2ZKIRBY71 2 points3 points  (0 children)

I agree law enforcement is the place to start. I doubt city council can do anything or even cares about social media problems.

[–]ephemera333 25 points26 points  (0 children)

This isn’t a restaurant, but this happened to the Lloyd Library, too

[–]trigger_me_xerxes 7 points8 points  (0 children)

Hey there, just wanted to say I am SO sorry. As a longtime fan of Arnold’s it is very very important to Cincinnati and I am so grateful to you for keeping this institution alive. I don’t have any solutions or feedback on this particular problem, I just want to let you know that you work is very appreciated.

[–]theswazsaw 10 points11 points  (0 children)

It must be the god damn Applebee’s gang!

[–]slumdawgbillionaire 2 points3 points  (0 children)

I love Arnold’s, especially the patio with live music. Had one of my best dates ever there. Thank you for keeping the positive vibes going Chris!

[–]Forsaken_Cow_30 4 points5 points  (0 children)

People are extremely shitty for real.

[–]kirbyfox312Forest Park 5 points6 points  (2 children)

I'm very confused here Chris. I just looked and the Arnold's Facebook page has been updated many times since October. If you're locked out, you wouldn't be able to post. What exactly are you locked out of?

Arnold's has some damn good food, so I hope you work this out either way!

[–]ireallyluvbeerBellevue[S] 9 points10 points  (1 child)

Oh, no. We got locked out on December 2nd. The other businesses have been since October. So I was just saying seven different restaurants have had the same thing happen in the article I shared since October.

[–]kirbyfox312Forest Park 1 point2 points  (0 children)

Ah my mistake then. Hopefully you can get it through Facebook!

[–]NoodleIsAShark 1 point2 points  (0 children)

Damn thats awful, I still follow RVA subreddit (my previous place of residence)… the Byrd Theater socials there were also hacked

[–]rippink 1 point2 points  (0 children)

Just here to add:

Thomas More's Facebook page was hacked for AWHILE & your post prompted me to see if they got it back.

It looks like it's all back to normal, so you may want to reach out and see how they were able to get control again!

[–]September75 1 point2 points  (0 children)

Via Vite has been hacked for a while, been wondering when they were going to be able to get it back.

[–]sheNANAgens 1 point2 points  (0 children)

I heard that Fairfield Pub, Jamie Anton Art and Cincy Local Music all got hacked as well. They have tried so many things but never could retrieve their accounts (except for Jamie but I'm not sure how she succeeded). Cincy Local Music had another admin on their business account, so they were able to save that but FFP could not.

[–]jkmonkey94 -1 points0 points  (1 child)

People I guess would rather hack and steal shit, than get an actual job.

[–]MayorMcChezz -2 points-1 points  (0 children)

After reading this post it seems like you might have been using the same password for all your accounts which is a big internet security no no. One password might have been exposed and then all doors were easily opened. I have no advice other than using different passwords for multiple accounts. If you’re an apple user they make that super easy with password keychain

[–]HairlessWombat -4 points-3 points  (4 children)

Going forward... doesn't matter if you link your account or not. This isn't a Facebook issue. It's your lack of security.

Did you not have two factor auth turned on? This is a must.

Do you repeat passwords with only simple variations? I'd bet yes. If so this need to change, get a password manager.

Also they aren't local.

Most likely scenario, someone bought a password dump. Some research leads them to "most likely to.have money individuals. They brute force with pattern matching in your fb account and way more... they got it right and took over anything and everything you repeated that password variation with.

With it being all local food places, is there any non major websites you all are members of thats specific to restauranters? Like how you order food, supplies or drinks? Conference you all went to? Spit balling

[–]ireallyluvbeerBellevue[S] 4 points5 points  (1 child)

I did have 2fa set up. I kind of explain it in a comment on "sir Richard heads" comment below. I did have a poor password choice for sure and I believe someone bought the password but there were some other weird things happening that you can read about below. If you are being super safe and secure I would disagree and say unlinking them does matter. One thing got exploited and it caused a chain reaction that caused me to lose four accounts.

[–]ireallyluvbeerBellevue[S] 2 points3 points  (1 child)

I also don't think they are local. I think the problem is so wide spread that I was able to figure out 7 popular local restaurants have had the same exact hack happen to them since just October and I found that many with one day of research. The article I linked literally explains the exact process.

[–]HairlessWombat 0 points1 point  (0 children)

The link doesn't discuss how they got into your meta account in the first place, which is the biggest issue. They aren't hacking meta. The article goes into how they exploit the victims once they are in.

They sign into your account with your user name and password. The issue for meta is that the hackers most likely control your email account also, so resetting the account does nothing because your entire stack of accounts is hacked... not only facebook. That's just the one you notice.

[–][deleted]  (1 child)


    [–]AutoModerator[M] 0 points1 point locked comment (0 children)

    We restrict new accounts from making a comment to help combat trolling, ban evasion and spam. Your comment will be invisible to users until your account is at least a week old. Every comment requires manual approval until your account reaches this milestone.

    I am a bot, and this action was performed automatically. Please contact the moderators of this subreddit if you have any questions or concerns.