Toon Hacking/Account Stealing/Keylogging Consolidated Thread - Page 2

Kelenvor · 03-20-2008, 12:19 PM

If you join a guild, you need to have a secret password. Like when we had a guildie's account hacked recently, he was on vent telling us that it wasn't him controling his character. So, if the thief doesn't respond to the guild password, it allows you to reach through your monitor screen to him and just slap the shit out of hacker.

Ok, maybe that's a little bit on the impossible side, but that is sure the hell what I wanted to do to the fucking hacker as we watched him sell all the guy's shit.

Seolta · 03-20-2008, 01:28 PM

How to not have your account jacked:

1. Don't be a fucking dumbass

That is all.

kenman · 03-20-2008, 01:31 PM

What I don't understand is how has nobody traced the source of this yet? Are the victims too embarrassed when they realize the reason they got their account jacked was because they put in their account information into a geocities guestbook promising free plat? Or are they too stupid to trace their steps a little?

*ponder*

LFG · 03-20-2008, 01:34 PM

I do not know, but it would be interesting to discover how many of those who got hacked used some type of low budget 3rd party hacker track/exploit type of program.

nhdjoseywales · 03-20-2008, 01:38 PM

Quote:

Originally Posted by Seolta

How to not have your account jacked:

1. Don't be a fucking dumbass

That is all.

you mean by not visiting a fan site like this one that was giving out drive by trojans last year?

face it, thieves are becoming smarter and probably targeting sites like this with ad based trojans and keyloggers specifically to get your eq2 password. just sayin that if i were trying to steal passwords for a game, i would try and infect/distribulte the malware thru major fan sites because you are dealing more with your target audience than you would by doing random portscans or emails to spread the malware and online ads seem to be the perfect tool to use

Foggy · 03-20-2008, 01:41 PM

Quote:

Originally Posted by LFG

I do not know, but it would be interesting to discover how many of those who got hacked used some type of low budget 3rd party hacker track/exploit type of program.

Well i was using Trend-micro. However, I do believe that it got jacked up on my install of vista way back when. Once my accounts got hacked I bought Kasp and found the bad stuff and removed it!

Flybait · 03-20-2008, 01:41 PM

I asked LFG and he said it's ok to say as long as I dont post a link to it, here goes:

there have been bot/exploit programs uploaded to an extremely common file sharing site, which while may be functional, is also infected with a trojan and keylogger.

I dont give a shit if you use stuff like that, It's not affecting my game play, but use your head.

LFG · 03-20-2008, 01:42 PM

Quote:

Originally Posted by nhdjoseywales

you mean by not visiting a fan site like this one that was giving out drive by trojans last year?

face it, thieves are becoming smarter and probably targeting sites like this with ad based trojans and keyloggers specifically to get your eq2 password. just sayin that if i were trying to steal passwords for a game, i would try and infect/distribulte the malware thru major fan sites because you are dealing more with your target audience than you would by doing random portscans or emails to spread the malware and online ads seem to be the perfect tool to use

We had some malware problems about 6 months ago from previous advertisers we used. We got rid of those advertisers over six months ago. None of those problems resulted in any claim by anyone that their EQ2 account was hacked. Those problems only involved unauthorized pop ups and redirects, and only affected users using Internet Explorer, which are less than 15 percent of our users. No credible accusation has been made by anyone that our current advertisers have caused any problems of any kind. SOE runs ads also.

Gtwo · 03-20-2008, 01:43 PM

http://www.avertlabs.com/research/bl...tack-underway/

Trepan · 03-20-2008, 01:46 PM

Quote:

Originally Posted by kenman

What I don't understand is how has nobody traced the source of this yet?

The source has been traced to china. Thats where the initial infection of the websites that installed the keylogger came from. As for which sites were infected, the effort of identifying and fixing them is ongoing as more sites are getting infected daily.

As for why many people haven't "owned up"...

Its likely because they have their browsers set to automatically install software and hit one of the sites with a cross site scripting bug that loaded a javascript control from "the server in china" (honestly, there was ONE server in china that was serving up the malicious javascript from this last wave of hacks) that pulled down and installed a keylogger.

They may not know where it came from or what site got them.

phpBB admins need to be on their toes and watch their logs. The world needs to destroy activeX and the people who created it. It only takes one site that throws pop-ups as part of its normal functioning (and thus have it in your trusted sites list) to get hacked for a browser vector hack to gain a foothold.

The phpBB hack was a "click to install this codec", the activeX hack could have infected plenty of people without their knowledge (based on browser security settings).

Those who got infected with the "click to install this codec" bug got what they deserved. I have more sympathy for the .aspx folk and less for .aspx implementors.