Sheffield United On-Line Ticket Office forgotten password

All advertisments are hidden for logged in members, why not log in/register?

N

Need4speed

Active Member
Joined
May 11, 2014
Messages
1,085
Reaction score
2,152
Over night I have had two e mails saying I have requested a change in password.
I haven't requested this
I have checked and it hasn't been changed
But i'd be interested if this is more than me because that might indicate some kind of data breach
 



Need4speed said:
Over night I have had two e mails saying I have requested a change in password.
I haven't requested this
I have checked and it hasn't been changed
But i'd be interested if this is more than me because that might indicate some kind of data breach
Click to expand...

It could well be another example of phishing, it’s quite common these days.
Send 10,000’s of emails subtlety trying to acquire bank details and even if 0.001% fall for it, then it’s still worth it.

I often receive emails from Apple, Amazon and EBay advising that someone has used my account from another country, or something has been bought and if it wasn’t me then I should click the link to prevent a possible fraud.

I usually click the sender email name“Apple, eBay or amazon” and you often find there’s a foreign email address hiding behind it.

Another way of establishing if it’s genuine is to check who the email is addressed to. The SU ticket office know your name, so will entitle their email “Dear John etc”, whereas a phishing company doesn’t know your name and generally start the letter ‘dear sir/ madam” or dear “your email address”.

I don’t ever click the link in the email, you’ll probably find that they want your personal details and bank info.
 
Last edited:
Sheffsteel said:
It could well be another example of phishing, it’s quite common these days.
Send 10,000’s of emails subtlety trying to acquire bank details and even if 0.001% fall for it, then it’s still worth it.

I often receive emails from Apple, Amazon and EBay advising that someone has used my account from another country, or something has been bought and if it wasn’t me then I should click the link to prevent a possible fraud.

I usually click the sender email name“Apple, eBay or amazon” and you often find there’s a foreign email address hiding behind it.

Another way of establishing if it’s genuine is to check who the email is addressed to. The SU ticket office know your name, so will entitle their email “Dear John etc”, whereas a phishing company doesn’t know your name and generally start the letter ‘dear sir/ madam” or dear “your email address”.

I don’t ever click the link in the email, you’ll probably find that they want your personal details and bank info.
Click to expand...
I get the same, daily, often from banks I don’t use, occasionally ones that could almost be genuine. They all go straight into trash and are deleted. Clicking on their links could allow them to infect your computer (I get a lot of XLS files attached to many of them and I recall they can use them to contain trojans and the like). Maybe my firewall etc would stop anything untoward but there’s no point risking it.
 
Whilst were on this there is a huge flaw in the Password reset area of SUFC talent sport. It essentially allows you to check if an email is valid by trying to reset a password. Usually a message such as "If the Email is valid password reset details will be resent" instead of which it basically tells you whether an email is in the system. This really should be mentioned to the club if anyone knows the correct channel. It does make you wonder who exactly is looking after the site and customer data.
 
Need4speed said:
Over night I have had two e mails saying I have requested a change in password.
I haven't requested this
I have checked and it hasn't been changed
But i'd be interested if this is more than me because that might indicate some kind of data breach
Click to expand...
Not for me either. Have you shared your details with anyone else or maybe you are on their “family and friends” list? If so they will know your email and customer number and could be trying to log on as you?
 
I've never had one of these particular emails.

I think, as has been suggested, the first thing is to try and work out if it is a genuine email from SUFC or just an attempt at phishing. Have a close look at the "from" address - this can be faked to look genuine, but often they are sloppy and don't bother so you can see quite crearly an obvious dodgy address such as "Barclaycard" <[email protected]>

If it does look valid you may have an option, depending on the email system you use, to look at the message in more detail - there may be an option "view headers" or "raw message". If there is have a look in there and you may spot summat dodgy in the message headers.

Failing that I would email the club and ask them if they can confirm if it came from them. I think the address is [email protected] or there may be a different one for this sort of thing.

Hope this helps, I think you are right to question it.
 
GuangzhouBlade said:
Whilst were on this there is a huge flaw in the Password reset area of SUFC talent sport. It essentially allows you to check if an email is valid by trying to reset a password. Usually a message such as "If the Email is valid password reset details will be resent" instead of which it basically tells you whether an email is in the system. This really should be mentioned to the club if anyone knows the correct channel. It does make you wonder who exactly is looking after the site and customer data.
Click to expand...

It has been, multiple times, along with other concerns.

The last person looking at it from an operational point of view is currently unavailable :)
 
I keep getting e-mails from Lloyds bank who I don't bank with saying my account has been subject to an attack or something or other. If you look at the sender it is usually some muppet from Russia or somewhere.
 
I have now started banking with Russia, they seem to know everything
 



i tried to change my password i wanted beef_stew but they wouldn't let me have it they said it wasn't stroganoff :)
 
Buying very few tickets online, I did not know you stored card details to it? Mine asks me every time for card details each time.
 
You must log in or register to reply here.

Similar threads

E
A Shambolic Summer at Sheffield United
2
Replies
38
Views
3K
tincan
tincan
Knackered Blade
Kevin Sinfield CBE is at Bramall Lane on Thursday 4th December
2
Replies
41
Views
4K
anglian blade
anglian blade
Deadbat
United 2 Preston 3 - report/ratings (real one!)
Replies
22
Views
2K
Pintor75
Pintor75
Deadbat
2025/26 SUFC SEASON REVIEW / SCHOOL REPORT - Part 2: Board/Club/Managers
Replies
18
Views
1K
10p
10p
Vass Borbokis
The biggest issue at the club.
2 3
Replies
82
Views
9K
David Wheatley
D

All advertisments are hidden for logged in members, why not log in/register?

All advertisments are hidden for logged in members, why not log in/register?

Back
Top Bottom