Hi everyone,

Just a while ago we began getting reports from users that people were requesting password resets for their accounts. It appears that these were attempted from the login form via the password reset tool. Users that began receiving these messages were members of NoStream when their database was leaked. It is likely that someone is using this leaked database to probe for accounts here.

Fortunately, at this time it does not appear that any accounts have been compromised. Users who notified us of the password reset did not have any nefarious activity on their accounts. It appears that the people using the leaked database simply attempted to reset the password.

However, because of this potential security threat we ask that anyone who was a member at NoStream when their database was leaked to change your email here at PTH if it is the same one. This will prevent further attempts to access your account. If you use a leaked email on other trackers, it is also wise to change your emails there too, as these same people may try and access your accounts on other trackers.

And finally, please make sure your PTH password is secure and unique. Do not re-use passwords on multiple trackers. 2FA is an approved suggestion and we hope to roll out that feature as soon as possible.
-Atlas