There's been an uptick in a new spambot wreaking havoc across all (most) forums.
Until additional measures can be put in place, it's recommended that members that haven't updated the password in some time do so. 2FA is also available here and recommended.
It appears there's some old monster data breach database (source still unknown but potentially lastpass) being used to spam the sites by using valid userid/password combinations (doesn't appear to be a brute force on weak passwords).
Recently they have also been updating users signature with their nefarious URL.
2FA can be found under Password and Security on your account profile:
Until additional measures can be put in place, it's recommended that members that haven't updated the password in some time do so. 2FA is also available here and recommended.
It appears there's some old monster data breach database (source still unknown but potentially lastpass) being used to spam the sites by using valid userid/password combinations (doesn't appear to be a brute force on weak passwords).
Recently they have also been updating users signature with their nefarious URL.
2FA can be found under Password and Security on your account profile: