I'm an admin at TFL. In the past month we've had two cases of European fraudsters hacking a TFL member's account and posting what seems to be a smoking hot deal in the sales forums.
The first case, which tipped us off to what might be happening, was noticed by the member who responded to a private message asking about the item.
That's when we discovered the European connection.
The second incident a few days ago very likely would have resulted in a TFL member losing $1,000 had it not been for a simple error caught by a third member.
The IPs used in both cases have resolved to Europe, in both cases with a known history of being used by spammers. We've locked down the IP ranges, but in the past they've proven to be pretty adept at slipping through the cracks.
Our best guess is that they're getting in simply by using brute force password hacks against older, weaker passwords. Don't have 100% confirmation of that.
So, suggestion. If you've not changed your password for online forums for awhile, it's probably time to do so, and to make them a lot more robust.