What's the Deal with these Hacks?

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

1

Saturday, March 24th 2012, 8:27am

Some people believe its players that they don't know, but people don't realize thats like 0.01% of the time. Infact 99.99% is because that player gave out their password to someone or went on sites that gave them viruses. And even most of those viruses are for financial gain or or to mess up ones OS. Hardly ever for any other kinds of invormation they don't typically care for your PC Games. And yet some people believe the Game Masters are involved I wonder if that is a true rumour..... >.> If that later one is the case then I wanna know who deleted my Game Account because it was all gone when I came back, but not my Main Account.
------------------------------------------------------------------------------------------

Things to look out for:
1. Public Networks: Internet Cafes, Movie Theatres, maybe those Airplane Ports.
2. Sites that sell Gold, or might offer downloads to help with your gaming.
3. Avoid filling out information on malicious looking sites.
4. Avoid Emails from unknown senders.

------------------------------------------------------------------------------------------

! With all seriousness I had never intended this thread to go the way it was, no one could anticipate it to lead to what it has become. I would like it to get back on topic, but I am very unsure that it is possible. The only Objective and Goal I had and ever would set for this thread, and never to be taken out of context was to get it out their to see how people could keep there computer safe, to be fully aware how they could get hacked or viruses, and to discuss the only rumours that were pertaining to this intro/title and nothing more. I never had it intended for people to report spammers and blame or accuse other people of things they had no proper thoughts in or reasons to say they had done something. No one can predict the path of a thread regardless of that it may be. I realize what would happen if this thread would be locked I realize I could and possibly be held accountable. I am at peace with that, and will and always accept my actions, and not back down, but have a stand on what I have done. In the end this has been one intriguing converstation to discuss regardless of what path it had or would have followed. I am in content to make people not only my self, but them as well think about their own outcomes and results. To get the brainy ideas flowing out of their minds to keep their brain cells stronger. This is the true objective: "Critical Thinking!"

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

effervescent

Professional

Posts: 969

2

Saturday, March 24th 2012, 10:36am

If you think the only way to get hacked is by getting a keylogger or sharing your account info to the wrong sites/people, all I have to say is lulz. Fabricated statistics are fabricated.

Formerly Catorii, D/S/M of Faction.

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

3

Saturday, March 24th 2012, 10:51am

Fabricated maybe, but that's what I have been told and I'm no fool I know Computers lolz I can do HTML, XHTML, Java, JScripting, C+, Python, Linux, and Haskell.

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

timthum

Master

Posts: 1,825

Location: Canada

4

Saturday, March 24th 2012, 2:03pm

Quoted from "Izulde;519742"

Some people believe its players that they don't know, but people don't realize thats like 0.01% of the time. Infact 99.99% is because that player gave out their password to someone or went on sites that gave them viruses. And even most of those viruses are for financial gain or or to mess up ones OS. Hardly ever for any other kinds of invormation they don't typically care for your PC Games. And yet some people believe the Game Masters are involved I wonder if that is a true rumour..... >.> If that later one is the case then I wanna know who deleted my Game Account because it was all gone when I came back, but not my Main Account.

in this case you are wrong most of the players that gave been hacked DO not give out pw or other info nor do they buy gold.

Zymologist wl/ch/m/p
Matronmalice p/s/m
Ceviche wl/ch

Go to the top of the page

TunaShake

Mentor

Posts: 262

Location: The Ocean?

5

Saturday, March 24th 2012, 3:33pm

Quoted from "timthum;519778"

in this case you are wrong most of the players that gave been hacked DO not give out pw or other info nor do they buy gold.

That is the problem timthum,

They would never admit it as it is a bannable offense.

-TunaShake

Go to the top of the page

ray1981

Intermediate

Posts: 170

Location: Where ever the Army sends me

Occupation: US Army

6

Saturday, March 24th 2012, 4:29pm

Quoted from "Izulde;519742"

Some people believe its players that they don't know, but people don't realize thats like 0.01% of the time. Infact 99.99% is because that player gave out their password to someone or went on sites that gave them viruses. And even most of those viruses are for financial gain or or to mess up ones OS. Hardly ever for any other kinds of invormation they don't typically care for your PC Games. And yet some people believe the Game Masters are involved I wonder if that is a true rumour..... >.> If that later one is the case then I wanna know who deleted my Game Account because it was all gone when I came back, but not my Main Account.

while some malicious software is evil for no reason, most are designed to gather information. this is very possible but more than likely not the cause due to over thirty people, who all play the same game, over the period of what one week?

this is not random, nor a coincedence. if you take a step back, and look at the big picture, this is an attack; meditated, procedural, methodical and deliberate.

software may be part of the issue, possibly, possibly others as well, like sql injection where a third party websites basically steals authentication information. this may be a hardware issue as well. IE:

http://en.wikipedia.org/wiki/Vampire_tap
http://en.wikipedia.org/wiki/Packet_sniffer

are two common examples...

one example of what i can do with only network related IP's is:

access and monitor the distro switch's packet/traffic information via SNMP or Telnet (if not protected properly), narrow down the switches/devices which are getting most processed incoming/outgoing traffic. access the targeted switch via snmp or telnet from the distro switch.

access the dhcp server (server which assigns devices and switches IP Address) and getting the vlan information from the distro switch (if its not protected) and kick out (un authenticate) certain devices from the network. can authenticate/connect devices i want to, to the network via telnet, or snmp.

this is just one side to it, the network side. no telling what a software guy could do...

some tips for network security (which i hope are aready in place)
http://en.wikipedia.org/wiki/Network_int…etection_system
http://en.wikipedia.org/wiki/Honeypot_(computing)

every device on a network has an IP Address, and if it has an IP Address, with the right tools, it can be accessed.

Ayawisgi 72K/S/P Ragequit | Govinda, Unb Stam 23.5k, Unb PA 37k
Lilfeather (Retired) 62K/P Realmguardian, Tribe | Govinda
Tanking Guide:http://forum.us.runesofmagic.com/showthread.php?t=75770

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

7

Saturday, March 24th 2012, 6:59pm

Yep and every Computer has a Back Door. Meh good input for those who don't want to get hacked should know about, but even the greatest of Antivirus software and what cis software they have personally be made can be taken down easily, by an experience hacker.

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

MegaMouseSEC

Professional

Posts: 1,240

Location: South Mississippi

Occupation: River Boat Pilot

8

Saturday, March 24th 2012, 7:15pm

There are several ways to hack any system. First is through keyloggers. This way the perp gets your loggin info through either a small keyfob or even a rogue program that loaded onto your computer when you were not looking. There are several out there and some are even going so far as to load onto your computer when you mouse over a certian spot in a website. Best way to avoid a keylogger is to not get yoruself in a situation where you can get one. Cybercafe's are notorious for having keyloggers on their own computers, don't use one if at alll possible. If you have to go to a cybercafe then check the machine for any suspicious looking device attached to it. A keylogging program in a cybercafe is much harder to check for because they lock out some of the functions of the computer which would tell you what is running.
Next is by going to gold and powerleveling sites. You give out your info to them and then they hack you. It is really simple for them to do that.
Next is by the hacker getting into the database for whatever game or site they want to infiltrate. Not easy to do but it is possible.
Next one is by circumventing the login servers completely through a backdoor. There are many out there most are used by server admins to set the server details what programs are run and os forth.
The last one is a lot harder and requires patience. it is called a "Brute Force Attack". What that means is the hacker gets your account name, then he/she uses a program to hack your password by Brute force, or in laymans terms it goes through combination of letters numbers and symbols until it cracks your password. Now the longer your password is, including numbers and uppercase letters the longer and harder it will be to hack. Most hackers target the easy passwords first and leave the harder ones alone.
Seeing as RoM has a timer that locks out someone for a certian ammount of time if they input the wrong password several times, a brute force attack is the easiest to spot. The other ways are not so easy to spot.
My suggestion for everyone is to choose a password that only you would know, has numbers and uppercase letters in it, and has absolutely nothing to do with your real life. Chosing easy passwords to remember is like holding a big white flag that says "Hack Me Please". Ok it might be a bit inconvient for most people to remember long passwords. But would you rather be a bit inconvienced and safe, or get hacked due to you beign lazy?

Go to the top of the page

timthum

Master

Posts: 1,825

Location: Canada

9

Saturday, March 24th 2012, 9:37pm

Quoted from "TunaShake;519791"

That is the problem timthum,

They would never admit it as it is a bannable offense.

-TunaShake

so is botting ......se where this lead us. anyway back to topic one of mt friends was hacked and i can guarantee he never gave his pw to anyone for any reason.notice the time frames when most of these hacks occur?

Zymologist wl/ch/m/p
Matronmalice p/s/m
Ceviche wl/ch

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

10

Saturday, March 24th 2012, 10:24pm

Well Angel I am a Multimedia Artist I use a wide range of programming languages. And guys this is definitely some good input. Public Networks aren't as safe as most people think regardless of what they might have. Of course even their own security devices can be tampered with from their own providers.

I thought Time Frames can be glitchy? And technically only update when an account logs out or by a certain humanly-like autosave feature?!

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

AngelIsrafel

Intermediate

Posts: 320

11

Saturday, March 24th 2012, 10:30pm

Quoted from "timthum;519888"

so is botting ......se where this lead us. anyway back to topic one of mt friends was hacked and i can guarantee he never gave his pw to anyone for any reason.notice the time frames when most of these hacks occur?

People are also less likely to believe that, "There is no way in hell *I* was dumb enough to get my password compromised! It must be the fault of someone else!"

That's not to say that perhaps an addon's integrity has been compromised or this is simply a delayed attack by those who stole account data in 2007(?), it could be hundreds of things but at this time nobody is 100% sure how or why this happened.

It's safe to assume that changing your password is a highly recommended action at this point, although i doubt support will help those who lost their accounts past, 'Well, you should have changed your password when you heard about the previous attacks happening. You didn't so you're SOL.' Granted I have so little faith left in this game I've really stopped caring.

61/55/50 D/W/R

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

12

Saturday, March 24th 2012, 10:36pm

Even if one were to change their password it wouldn't fix a keylogger. One thing is that I wasn't around during that Major Hack occurance. I had only just came back, though you can't doubt some people can be idiotic to share their own password with their best friend irl.

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

Nagachamp

Beginner

Posts: 1

13

Saturday, March 24th 2012, 10:55pm

It's probably safe to say that the players that purchase the most dias are end-gamers or close to end-gamers, the ones that are being targeted. If this continues as it has for the past week, players will think twice about purchasing dias for fear of being hacked. This would ultimately hurt Frogster.

Though this is a free game. A lot of us pay rl money for dias. We are paying customers and if we feel that we don't have sufficient support to protect us from being hacked, Frogster should do more to protect their clients. Whether it is telling us why they believe they have not been compromised or having in-game GM support, there should be a more proactive presence. Seeing major and very dedicated players being hacked on a daily basis is very disturbing for other players and I wouldn't be surprised if several players end up quitting because of this upsurge of hacks.

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

14

Saturday, March 24th 2012, 11:18pm

Well I believe it's not just on continuous Diamond Buyers, or Buy in a while Buyers, or even those that don't buy Diamonds at all due to financial issues. But, what I do know is that alot of players are being targeted and Frogster is just unable to protect them for all that they attempt. There will always be hackers, rulebreakers, outlaws of some kind that seek to disrupt the peace and destroy the system to their own benefit. Those players view such an act as an art or skill, which is why they do it to benefit their own endeavours. Even if the Game Masters and Frogster Developers were able to find a way to stop the rulebreakers. It would only be a Temporary Relief. This sort of incident will always occur in any and all popular game, whether it is a MMO or an Arcade Game. Where there is a Goal, Objective, or some kind of Currency there will be a Market for it.

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

JayBray

Beginner

Posts: 38

Location: Canada, MB

15

Sunday, March 25th 2012, 3:47am

well since my last message on forum got a reply after i was swearing i actually got a response for my ticket, been more then 4 hours now, but still waiting on another one i am being patient not gonna swear because don't want this forum locked if it helps any 1. i was not involved using money brokers i used paypal (closed that now just incase) but the *community in artemis is very unease and are all starting to look to other games, i have never been this outspoken on the forums since the siege lag/not playable thing, please restore our accounts and respect this please cm/gm's all endgame players are getting hit....i beg you if you want a paycheck and this game to keep going PLEASE PLEASE PLEASE restore us and honor what we are saying. (rom is a good game, even with bugs high need to pay for items not available elsewhere, puris +16 jewels perm mounts) but like i said dont ignore right now, work overtime get our accounts back with all our gold dia still there.

72R/72S/64D
Battalion guild, Artemis

Go to the top of the page

Izulde

Trainee

Posts: 67

Location: Old San Juan, Puerto Rico--San Juan

Occupation: Audio Engineer/Multimedia Artist

16

Sunday, March 25th 2012, 4:48am

That would be nice if Frogster could restore and amend damages.

<-<-<-pUsHiNg PiNk dAiSiEs->->->
PriestRogue(31/26)-Melee DPS

Go to the top of the page

JayBray

Beginner

Posts: 38

Location: Canada, MB

17

Sunday, March 25th 2012, 4:55am

well waited 6+hours should i start swearing again?

72R/72S/64D
Battalion guild, Artemis

Go to the top of the page

quentinludwigs

Trainee

Posts: 76

18

Sunday, March 25th 2012, 5:05am

Grimdal has been hacked.

As the title says...Grimdal has a severe outbreak of hackers. My primary account was hacked today and all the gold was taken.Many other people on the server are experiencing issues as well. Can we get any official statement about these incidents from a GM? Our server is no longer safe...My computer is WAY overboard with security so I know that is NOT the issue.