You are here

Rhythmic Robot Hacked

Advice on everything from getting your music heard to setting up a label and royalties.

Moderator: Moderators

Rhythmic Robot Hacked

Postby Ian Shaw » Sun Aug 02, 2020 12:16 pm

Not sure if this is the right forum so please move if necessary. I'm sure some of you would have bought stuff from these quirky sample library people in the past so here's a heads up if you already haven't had the email:

email wrote:Dear Friend of Rhythmic Robot,
More information about the recent hack
...please read carefully, some of this information is very important
Since yesterday's mailshot explaining that our website has been hacked, we've been able to look more closely into what's happened and we've also had specific questions come in from some of you which deserve to be answered. We're also aware that the hackers are now using the cloned site to solicit for business, which is a real worry since accessing their fake site and putting in credit card details etc would be very dangerous. So do please read the following carefully.

The hacker is using a cloned version of our website and calling it rhythmicsrobot (with an "s" in the middle of the website address). He has started sending out fake "phishing" emails with the title "WE'RE BACK !!" and from the mailing address "Rhythmics Robot" (with an "s") which read:

Dear Friend of Rhythmic Robot,
As we are constantly looking for new ways to improve our customer value and to ensure their satisfaction. We are happy to inform you that we reviewed the price lists of all our products.
This has made it possible for our company to be reducing the prices by 50% for all the products.

(fake site address, with an "s" in the middle)
If you would like to place an order at this new price, or ask any questions regarding this matter, please do not hesitate to contact us

In the meantime, we thank you again for doing business with our company.

Needless to say, following the link to the site, and trying to buy something from him, is effectively handing over both money and information to a criminal. Keep away, trash the email, don't follow the links. We are pursuing action to have this site taken down, but of course he may simply relocate it. You may be able to set your email program to recognise emails from "rhythmicsrobot" with an "s" as spam.

Our eCommerce suite, WooCommerce, stores data about you in order to process your orders. We have to assume the hacker has access to all of this. Please read this bit carefully so you can see what applies to you.

YOUR PASSWORD The hacker will have access to the password you set on our site. If you stuck with the default password set for you, this isn't an issue. But if you changed the password to the same one that you use elsewhere on the web, there is a security risk. For example – if you used the same password for RhythmicRobot, FaceBook and PayPal, the hacker might try to access those other sites using your password.
WHAT SHOULD YOU DO? This is important! Log in to any other sites that you believe may have the same password you used on RhythmicRobot, and change the password – ideally to something "strong" including letters, symbols and numbers in a random order. Use different passwords on different websites.

YOUR EMAIL ADDRESS As we outlined above, the hacker is already sending "phishing" emails to some of our customers, trying to encourage them to visit the fake site.
WHAT SHOULD YOU DO? Ignore these emails, don't click on any links, and ideally set your email program to flag anything from rhythmicsrobot (with an "s") as spam.

YOUR NAME, ADDRESS AND PHONE NUMBER Storing these is a legal tax requirement in the EU: we are required to maintain records of who our customers are and where they're from. The hacker will have access to your name, postal address and possibly your phone number.
WHAT SHOULD YOU DO? We think there is nothing you need to do about this one. This information is all effectively "public domain", and can be easily be read from electoral registers, phone books etc online. He hasn't gained anything here that wasn't already widely available, and although it sounds unsettling, in order for your name and address to be of any malicious use (for example, in identity theft), he would also need bank account details, Social Security details, date of birth, etc, none of which we store. We want you to be aware of this element of the breach, but we don't think you should be worried by it.

Yes – card details, payment information and so on were not handled by our site but by PayPal, which is really secure. BUT, as we said above, if you used the same web password for RhythmicRobot and any other website – especially PayPal – you should log in to those other sites and change your password.

We are taking all the steps we can to deal with the situation. If you change your passwords for other sites, and ignore phishing emails from the fake site, we think you can now relax and let us get on with this. Steps we're taking include:

Informing the data protection authorities of the breach
Relocating the site to more secure servers
Changing all on-site passwords
Ensuring the site is as secure as possible for the future
We hope to be properly up and running again in the near future – probably around the end of August or beginning of September.

We're genuinely, deeply sorry for any worry or hassle this causes you. If you've got any further questions, of course do please get in touch and we'll do our best to answer them. We are, and have always been, a small business trying to make cool musical instruments; dealing with a really nasty criminal attack is a new one for us, but we're determined to fight back.

Finally – a huge, heartfelt thank you to all of you who've written in with messages of support and sympathy, practical suggestions for how to proceed, or offers to go and hunt the hacker down and do unspeakable things to him. We're incredibly lucky to have customers like you: you guys are the best :-)

User avatar
Ian Shaw
Posts: 119
Joined: Wed Dec 22, 2004 1:00 am
Location: The Hilly Bits of Somerset
Sent by carrier pigeon

Re: Rhythmic Robot Hacked

Postby desmond » Sun Aug 02, 2020 5:26 pm

Ugh, awful for them. :frown:

They are good folks over there... I hate the people that do that kind of thing, it's not just skeezy scammy stuff, but it's stealing someone else's brand and business too. And there's not much you can do about it to get it shut down, either...
User avatar
Jedi Poster
Posts: 11475
Joined: Tue Jan 10, 2006 1:00 am
mu:zines | music magazine archive | difficultAudio

Re: Rhythmic Robot Hacked

Postby blinddrew » Sun Aug 02, 2020 8:58 pm

Hate this kind of stuff, but it's good to see a really clear and honest email to customers. Hope they can get things sorted quickly. :(
User avatar
Jedi Poster
Posts: 14452
Joined: Sun Jul 05, 2015 12:00 am
Location: York
Ignore the post count, I have no idea what I'm doing...

Re: Rhythmic Robot Hacked

Postby The Professor » Tue Aug 04, 2020 11:31 am

Hi Ian (and everyone on the SOS forum!)

Many thanks for reposting our emails here – that's very kind of you. I logged in this morning intending to do it myself, but you'd beaten me to it! :D

We are strongly on the case of these guys: we've had the fake site taken down by its hosts following a DCMA notice, and have reported it to Google, Norton etc; but of course there's the strong possibility it'll pop up again elsewhere, and meanwhile phishing emails may still continue to emerge, so do please remain vigilant.

Our intention is to relaunch the genuine site in early September or thereabouts, at which point of course we'll let the community know. For now, please don't try to visit us or anyone claiming to be us – that will help keep a lid on things.

Meanwhile, huge thanks to everyone who's offered to help. We've had some humbling advice and offers from cybersecurity professionals, programmers, web specialists and other hugely knowledgeable folks, all very much on our side. We're extremely grateful to all of you.

Best wishes, and see you soon,

The Professor (and Mongo)
User avatar
The Professor
Posts: 3
Joined: Tue Sep 21, 2004 12:00 am
Location: Oxford, UK

Re: Rhythmic Robot Hacked

Postby Eddy Deegan » Tue Aug 04, 2020 11:44 am

Good luck folks :thumbup:

I've stickied this topic for the time being to keep it in view at the top of the forum.
User avatar
Eddy Deegan
Posts: 5829
Joined: Wed Sep 01, 2004 12:00 am
Location: Brighton & Hove, UK
Some of my works | The SOS Forum Album projects

Re: Rhythmic Robot Hacked

Postby ManFromGlass » Tue Aug 04, 2020 2:05 pm

I hate those type of people too. But in a way they are fortunate at RRobot. My buddies associate refused to pay $2k of ransom to some Russian outfit and they wiped his only business computer. He had no backup.
User avatar
Jedi Poster
Posts: 4385
Joined: Sun Jul 24, 2011 12:00 am
Location: O Canada

Re: Rhythmic Robot Hacked

Postby dustin.newman » Wed Nov 25, 2020 4:10 pm

that is not cool, it seems that in the old days that when a hacker found the way for a not giant company, they played fair and let them no that they found a security issue, but no info was exposed or anything else.... but nowadays, not cool asking for money or selling the stolen info... :thumbdown: :thumbdown:
User avatar
Posts: 13
Joined: Mon Jul 27, 2020 7:54 am
The only common language is Music.

Always looking for the best Head Phones

Re: Rhythmic Robot Hacked

Postby Eddy Deegan » Sat Mar 20, 2021 5:01 am

Unsticky-ing this as by now all affected should be aware.
User avatar
Eddy Deegan
Posts: 5829
Joined: Wed Sep 01, 2004 12:00 am
Location: Brighton & Hove, UK
Some of my works | The SOS Forum Album projects