Forum Settings
       
« Previous 1 2 3 4 5 6 7
Reply To Thread

Hacks still happening . . .Follow

#1 Sep 02 2009 at 5:12 PM Rating: Good
******
21,262 posts
Another round of people in Yamato HNM on Seraph just got hacked. I'm so paranoid right now I'm about to delete my own website in case it got infected without me knowing.

Does ANYONE have any information on the common thread or source at this point? One of the latest guys hacked was a PS2 player :/
____________________________
FFXI: Catwho on Bismarck: Retired December 2014
Thayos wrote:
I can't understand anyone who skips the cutscenes of a Final Fantasy game. That's like going to Texas and not getting barbecue.

FFXIV: Katarh Mest and Taprara Rara on Lamia Server - Member of The Swarm
Curator of the XIV Wallpapers Tumblr and the XIV Fashion Tumblr
#2 Sep 02 2009 at 5:27 PM Rating: Good
Scholar
***
1,678 posts
But but... ps2 players represent all that is noble and pure within FFXI! They play the game the way it was meant to be played, surely somebody who doesn't use windower could not possibly succumb to rmt tactics?!
____________________________
Dooom wrote:
BG elitists <3 haste.

Allatards/uber casuals hate elitists.

Allatards/uber casuals hate haste, as valuing it would acknowledge that elitists are right


kerberoz wrote:
People don't hate emo kids because they're "misunderstood." People hate emo kids because they're useless.


Realix wrote:
PUP is an average to above average DD... when not in a zerg situation... or on particularly hard targets... and when properly configured... on windsday... with a RDM...
#3 Sep 02 2009 at 5:28 PM Rating: Good
Revolving Door Inspector
Avatar
*****
12,735 posts
Security token ftw?
____________________________
FFXI: Exodus @ San d'Oria since November 19, 2003, Siren Server
FFXIV: Turk Kalahai @ Gridania, Balmung Server (RPC Link)
Rift: Kalahai @ Sanctum, Faeblight Server
#4 Sep 02 2009 at 5:33 PM Rating: Excellent
Scholar
Avatar
****
4,148 posts
one account I use got hacked too, and I have literally no clue from where. The account that i use (on the same computer) with the security token is fine the one without is the one hacked.

happened in the last couple weeks roughly.

i'm going to sound like i'm tooting my own horn but I'm fairly computer savvy and very surprised it happened to me.
____________________________
Mishana: DRG | THF | RDM | NIN
#5 Sep 02 2009 at 6:09 PM Rating: Default
check these options:

1- someone else besides you know your id/password (even your wife/husband/son)

2- you visit **** sites and ffxi hacks/cheats sites

3- you visit somepage or atlas frequently

4- you bought gil

5- you visit rmt sites frequently

6 - you dont have a good firewall in your pc

7- you dont have a good anti-spyware/ad aware and dont do regular checks

8- you use internet explorer instead of firefox

9- you click on links from emails and sites you dont know its secure

10- someone else has access to you computer/ps2 even in a different account


Any of these put you in the risk group of being hacked, other than that its doesnt happen magically i believe, unless your password and account are 12345.

Edited, Sep 2nd 2009 10:13pm by MclarenTAGPorsche
#6 Sep 02 2009 at 6:13 PM Rating: Good
Scholar
***
1,428 posts
I would say that because it was a hnm shell, and several in the group got hit, and couple this with rumors that zhi on garuda was also hacked while he was looking for new cheats, then most likely this group attempted to access the same tools and website that zhi did.
____________________________
Direct Credit Card Payments Now Accepted! (01/26/2012)

http://ffxi.allakhazam.com/forum.html?forum=10&mid=1327570330215738540

If having an issue with card rejected, make sure your noscript is allowing globalcollect site gcsip.com as that is where transaction is routed when I updated.
#7 Sep 02 2009 at 6:16 PM Rating: Default
Avatar
**
524 posts
What Mclaren said. HNM and the lot of them getting hacked? Sounds like someone was doing something their supposed not to.
____________________________
<3My Beautiful daughter<3 ~9/26/2007~
Ex Army Gal 68W & 92G hoah

jtftaru wrote:
The Internet is full of nasty, snide little turds who (often in little cliques) use the anonymity of the Internet to manifest their unpleasant personalities towards others.
#8 Sep 02 2009 at 6:38 PM Rating: Excellent
Avatar
**
842 posts
Theory on BG is that a registration server got hacked.

That's why you might of heard of people over the weekend having to go and call and get their passwords reset, might of been a second round tho that Square DID NOT catch. (They caught one and locked down a ton of accounts as preventive measure.)

This is just scary. REALLY scary.
____________________________
Elizara, Mithran WHM of Quetzalcoatl
LS's: SpecialFriends, ShikigamiWeapon, Noble's, WeSayHurray, JingZen, Betrayed (Dynamis and Aby)

Still a MithraPride kitty at heart, tho that shell is gone..Also still CTY at heart forevah!

Midgard: NEVER FORGET.

Alla profile: http://ffxi.allakhazam.com/profile.xml?11530

Thinking about swapping from console to PC? Check here to do it right!
#9 Sep 02 2009 at 6:49 PM Rating: Excellent
I had to reset my password today. I was logged on yesterday and got off. A few hour later I tried to get on but my pass word wasn't working. Today I had it reset and all is well but still scary. BTW I have a security token. Maybe thats why my **** was still there? IDK.

Scary to say the least.
____________________________
DRG FAQ
#10 Sep 02 2009 at 6:58 PM Rating: Good
Avatar
**
524 posts
Quote:
I had to reset my password today. I was logged on yesterday and got off. A few hour later I tried to get on but my pass word wasn't working. Today I had it reset and all is well but still scary. BTW I have a security token. Maybe thats why my sh*t was still there? IDK.

Scary to say the least.


Someone else said the same thing on another forum. You might want to check your pc for Trojans. I had a one on my pc which was a gamepass Trojan, one that steals your passwords and what not. But I have a token and had no issues yet. It appeared yesterday too.

Here is a description.

Win32/Gamepass is a family of trojans that steals login credentials and in-game information related to various Massively Multiplayer Online Role Playing Games (MMORPG). Files belonging to this malware family are Win32 executables that are packed/protected using various packers such as UPX, UPack, FSG and NSAnti.

Win32/Gamepass trojan variants steal sensitive information related to various MMORPGs and other online games, particularly those popular in China and East Asia.

Gamepass generally monitors window titles and processes, searching for indications that the targeted game has been launched. For instance, it is common for the trojan to initialize its logging routines after it has found an active window with the title of the game, which is commonly in Chinese for most of the titles targeted.

It is also common for some Gamepass variants to drop a DLL which allows it to install either a keyboard or a mouse hook. The trojan waits until the user has entered a keystroke or clicked a mouse button before it begins logging sensitive information. The trojan logs the account name and password that the user enters into the game's login prompt window in order to access their account.

Gamepass variants may also steal details specific to the host machine, as well as in-game information related to the game being played. In-game information is stolen by the trojan in various ways, such as:

* By reading information from sub-windows accessed by the user in-game
* By reading the process memory of the game's main executable
* By reading information from the game's setup files.

Such information includes:

* IP and host name of machine
* Game server name
* Role information (character's name, job/role, ***, level)
* Game information (amount of currency, map details)

Gamepass can store this information in a log file, and then send the log file to a remote attacker, either via email or by posting the information to a remote website.
____________________________
<3My Beautiful daughter<3 ~9/26/2007~
Ex Army Gal 68W & 92G hoah

jtftaru wrote:
The Internet is full of nasty, snide little turds who (often in little cliques) use the anonymity of the Internet to manifest their unpleasant personalities towards others.
#11 Sep 02 2009 at 7:26 PM Rating: Excellent
*
145 posts
Quote:
check these options:

1- someone else besides you know your id/password (even your wife/husband/son)

2- you visit **** sites and ffxi hacks/cheats sites

3- you visit somepage or atlas frequently

4- you bought gil

5- you visit rmt sites frequently

6 - you dont have a good firewall in your pc

7- you dont have a good anti-spyware/ad aware and dont do regular checks

8- you use internet explorer instead of firefox

9- you click on links from emails and sites you dont know its secure

10- someone else has access to you computer/ps2 even in a different account


None of these apply to me and i still got hacked, I'm using Firefox w/ all add-ons, COMODO Internet Security, Malwarebytes' Anti-Malware, SUPERAntiSpyware Free Edition, & Spybot - Search & Destroy. No Virus or Trojans found. My password is 18 character utilizing lower & upper case letters and numbers, half saved to pol, half entered via soft-keyboard.

No token on my account but i heard even token accounts are getting hacked too. Something tells me something on SE's side got hacked...
____________________________
Zoner
90Drk 90Nin 90Rdm 90Thf
Server: Quetzalcoatl
My Profile
ZM complete CoP complete ToAU complete
[ffxisig]152766[/ffxisig]
#12 Sep 02 2009 at 7:33 PM Rating: Good
Scholar
****
4,632 posts
Quote:
2- you visit **** sites


Hey! I only go to one :o

I'm on xbox360 and i've been okay..so far. It's all making me very nervous though. I have the PC version sitting on my dresser but i'm afraid to install it >.>; I would love to start using parsers, though...
____________________________
Hume male, Zafire, Server: Sylph
50DNC, 50SMN, 50BRD, 50SAM, 50DRG, 50WHM, 52THF, 52COR, 52MNK, 58BST, 60WAR, 67PLD, 69PUP, 75RNG, 75SCH, 75BLM, 80NIN, 80DRK, 85BLU, 85RDM
Retired since February 2011.
All SJ's capped for LVL99!

#13 Sep 02 2009 at 8:03 PM Rating: Good
**
447 posts
So sad to see the cycle in the downturn again.

Gonna always be a battle between RMT and everyone else as long as MMOs use the same formulas they currently do.

(Slight sarcasm)Just be happy it isn't Christmas '05 inflation?

I have no real constructive advice here, just sympathy for the hacked I suppose.

#14 Sep 02 2009 at 8:13 PM Rating: Good
****
6,631 posts
Hacking to liquidate gil is nothing more than killing the game that they try to make money from. I wonder is similar things happening to other games as well.

I just wish I have better things to say because I really do not. >< I think I am doing enough to keep my computer safe, but what is really ... enough?
____________________________
Amanada (Cerberus-Retired) (aka MaiNoKen/Steven)
-- Thank you for the fun times in Vana'diel

Art for the sake of art itself is an idle sentence.
Art for the sake of truth, for the sake of what is
beautiful and good — that is the creed I seek.
- George Sand

A designer knows he has achieved perfection,
not when there is nothing left to add,
but when there is nothing left to take away.
- Antoine de Saint-Exupéry
#15 Sep 02 2009 at 8:26 PM Rating: Good
14 posts
China recently took steps to curve the spread of MMO sickness which is causing a reaction in the farmers day to day business. New trojans are showing up daily across all message boards across all heavily western played MMOs. They are not only stealing your account but also selling identities of those that play MMOs in the western world on the black market for fake passports and the like to terrorists. Some think I am crazy for saying this and I've been banned from not only the EVE forums but also WAR and WOW for spreading the truth about personal computer security and identity theft. It is a real and true threat and someone needs to take notice of this new practice that RMT are using and squelch it.

If you don't believe that we are at war you need to wake up. Our MMO characters are the least of our worries.
#16 Sep 02 2009 at 8:40 PM Rating: Good
******
21,262 posts
Quote:
I would say that because it was a hnm shell, and several in the group got hit, and couple this with rumors that zhi on garuda was also hacked while he was looking for new cheats, then most likely this group attempted to access the same tools and website that zhi did.


Except Yamato doesn't fight land kings or things we'd need to claim using a bot. Nice try though. (We're more "general endgame" - sky, sea, ZNMs, KS99, etc - than we are true HNM.)
____________________________
FFXI: Catwho on Bismarck: Retired December 2014
Thayos wrote:
I can't understand anyone who skips the cutscenes of a Final Fantasy game. That's like going to Texas and not getting barbecue.

FFXIV: Katarh Mest and Taprara Rara on Lamia Server - Member of The Swarm
Curator of the XIV Wallpapers Tumblr and the XIV Fashion Tumblr
#17 Sep 02 2009 at 8:45 PM Rating: Default
my post always get default, you guys hate me so much!!


lol
#18Sancha, Posted: Sep 02 2009 at 8:57 PM, Rating: Sub-Default, (Expand Post) I highly doubt the people with tokens got hacked. From what I read it was two people both who wasn't hacked themselves but It was their children. They claim no trojans were on their pc, yet my scans came back negative, but why am I getting a on demand warning saying there is a trojan on my pc? Not all virus scans will pick up the virus/trojans especially the free ones. They also claims their sons wouldn't do anything bad lol.
#19 Sep 02 2009 at 9:26 PM Rating: Excellent
******
21,262 posts
Quote:
The token one time passwords only lasts but a few seconds after it flashes off you can't use it.


Smiley: dubious

The code itself is valid for 27 minutes. This was tested and proven. Just because it flashes off, doesn't mean it gets invalidated. Try it: write the code down, wait 15 minutes, and then log in with it. It'll still work.
____________________________
FFXI: Catwho on Bismarck: Retired December 2014
Thayos wrote:
I can't understand anyone who skips the cutscenes of a Final Fantasy game. That's like going to Texas and not getting barbecue.

FFXIV: Katarh Mest and Taprara Rara on Lamia Server - Member of The Swarm
Curator of the XIV Wallpapers Tumblr and the XIV Fashion Tumblr
#20 Sep 02 2009 at 9:36 PM Rating: Excellent
****
6,631 posts
People are still getting hacked even with the token by a way that the hacker does not need to know anything what is shown in the token or your password -- they simply stole your session after you log in.

I do want to hear stories about hacking in other games. Is is just FFXI get targeted? Or it is much wider scale problem?
____________________________
Amanada (Cerberus-Retired) (aka MaiNoKen/Steven)
-- Thank you for the fun times in Vana'diel

Art for the sake of art itself is an idle sentence.
Art for the sake of truth, for the sake of what is
beautiful and good — that is the creed I seek.
- George Sand

A designer knows he has achieved perfection,
not when there is nothing left to add,
but when there is nothing left to take away.
- Antoine de Saint-Exupéry
#21 Sep 02 2009 at 9:44 PM Rating: Excellent
Quote:
I highly doubt the people with tokens got hacked. From what I read it was two people both who wasn't hacked themselves but It was their children.


Hi... I did. Though they didn't get all the way in it seems my account is still in tacked but they did manage to change my password.

I have no children.
____________________________
DRG FAQ
#22 Sep 02 2009 at 9:47 PM Rating: Excellent
***
2,976 posts
Quote:
The code itself is valid for 27 minutes. This was tested and proven. Just because it flashes off, doesn't mean it gets invalidated. Try it: write the code down, wait 15 minutes, and then log in with it. It'll still work.
Um... it does invalidate itself once used though, right?
____________________________
R.I.P. Crystan FFXI
75WHM 75SCH 75RDM 75SMN
#23 Sep 02 2009 at 9:51 PM Rating: Excellent
Scholar
***
1,809 posts
i wonder if all the people that got hacked used the ls community site?
#24 Sep 02 2009 at 9:59 PM Rating: Excellent
******
22,699 posts
Sir Crystan wrote:
Quote:
The code itself is valid for 27 minutes. This was tested and proven. Just because it flashes off, doesn't mean it gets invalidated. Try it: write the code down, wait 15 minutes, and then log in with it. It'll still work.
Um... it does invalidate itself once used though, right?


Yar. Once a code is used that code and all previous codes become unusable.
____________________________
Dear people I don't like: 凸(●´―`●)凸
#25 Sep 02 2009 at 10:19 PM Rating: Good
******
21,262 posts
Yep, the current way to test if you've been hacked after getting the message that someone has logged into your POL account from another terminal is to enter in 000000 for your one time password. If, after entering your stuff, your POL crashes, then you've got the virus and need to run a full virus scan, Antimalware scan, Spybot S&D, and AdAware set plus reboot before you touch FFXI on your PC again. Also, if possible, log into a friend's Xbox or PS2 and change the password there.

What I want to know is: Are the PS2 users that have been hacked using the security token?

Edited, Sep 3rd 2009 2:19am by catwho
____________________________
FFXI: Catwho on Bismarck: Retired December 2014
Thayos wrote:
I can't understand anyone who skips the cutscenes of a Final Fantasy game. That's like going to Texas and not getting barbecue.

FFXIV: Katarh Mest and Taprara Rara on Lamia Server - Member of The Swarm
Curator of the XIV Wallpapers Tumblr and the XIV Fashion Tumblr
#26 Sep 02 2009 at 10:22 PM Rating: Good
Avatar
****
6,260 posts
chinaman wrote:
i wonder if all the people that got hacked used the ls community site?

This. I've logged in just once to enable a few things for FFXIAH.com and then told that login system to **** off. Nothing like an 'automatic login system' to leave your login info neatly stored and lightly encrypted in a cookie somewhere.
____________________________
I've seen things you people wouldn't believe. Airships on fire off the shoulder of Bahamut. I watched Scapula Beams glitter in the dark near the Three Mage Gate...

Nilatai wrote:
Vlorsutes wrote:
There's always...not trolling him?

You're new here, aren't you?
« Previous 1 2 3 4 5 6 7
Reply To Thread

Colors Smileys Quote OriginalQuote Checked Help

 

Recent Visitors: 123 All times are in CST
Anonymous Guests (123)