Pages: 1 2 [3] 4 :: one page |
|
Author |
Thread Statistics | Show CCP posts - 1 post(s) |
F'nog
Amarr Celestial Horizon Corp. Slightly Inappropriate.
|
Posted - 2009.08.29 09:15:00 -
[61]
Originally by: Carniflex
Originally by: Jinx Barker Erhm.... you gonna pursue criminal charges over a game? LOL Come on, I know we Americans are crazy sometimes with such stuff, but this will NEVER EVER HAPPEN, the cops will laugh you out of the station.
Just file a petition, and never again click without thinking.
I do feel your pain though, despite the fact that I might be bemused by your reaction - and I do hope that this thing will be resolved for you.
Actually hacking is criminal offense in EU also in most parts. Depends a bit on state ofc but I think there was EU directive about it a little while ago. It's just that usually in EU you don't go into prison if you get nailed first time. Make habit of hacking other people computers and you can see prison life somewhere between 2 and 10 years, depending where you are and what you did.
While true, most, if not all, of these hackers aren't in the US or EU, not even in Canada (random gasp). They're in countries without any laws regulating it and/or with no extradition treaties with Iceland or Albion. So it really isn't an issue for them.
So, yeah, it's utterly fruitless to pursue criminal charges against them, or against CCP who isn't involved in this at all, and is actively fighting it.
Originally by: Kazuma Saruwatari
F'nog for Amarr Emperor. Nuff said
Originally by: Chribba Go F'nog! You're a hero! Not a Zero! /me bows
|
Talon Calais
Gallente 1st Steps Academy Tread Alliance
|
Posted - 2009.08.29 10:14:00 -
[62]
Originally by: Rovan Stargazer I just got hacked my self. Under which category should i submit a petition?
"Lost Accounts & Passwords" is what I filed mine under.
|
Rovan Stargazer
Caldari
|
Posted - 2009.08.29 10:24:00 -
[63]
Edited by: Rovan Stargazer on 29/08/2009 10:25:17 Edited by: Rovan Stargazer on 29/08/2009 10:24:45
Originally by: Talon Calais
Originally by: Rovan Stargazer I just got hacked my self. Under which category should i submit a petition?
"Lost Accounts & Passwords" is what I filed mine under.
Yes thank you, did that to.
Anyways i think i discovered the bad bad file who was sending info to the chinaman. msxm192eve.dll
Found it with Kaskpersky online scan, avast still thinks file is legit.
|
Blane Xero
Amarr The Firestorm Cartel
|
Posted - 2009.08.29 10:33:00 -
[64]
Originally by: Rovan Stargazer Edited by: Rovan Stargazer on 29/08/2009 10:25:17 Edited by: Rovan Stargazer on 29/08/2009 10:24:45
Originally by: Talon Calais
Originally by: Rovan Stargazer I just got hacked my self. Under which category should i submit a petition?
"Lost Accounts & Passwords" is what I filed mine under.
Yes thank you, did that to.
Anyways i think i discovered the bad bad file who was sending info to the chinaman. msxm192eve.dll
Found it with Kaskpersky online scan, avast still thinks file is legit.
Thats the one. AVAST in all its glory is being a bit slow on registering it as a virus though _____________________________________ Haruhiist since December 2008
Originally by: CCP Fallout :facepalm:
|
Estel Arador
Minmatar The Arrow Project Morsus Mihi
|
Posted - 2009.08.29 10:37:00 -
[65]
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
FREE jumpclone service: Thread|Podlog |
Mecinia Lua
Galactic Express Burning Horizons
|
Posted - 2009.08.29 10:37:00 -
[66]
Glad you found it.
Thoughts expressed are mine and mine alone. They do not necessarily reflect my alliances thoughts.
Your signature is too large. Please resize it to a maximum of 400 x 120 with the file size not exceeding 24000 bytes. -Mitnal |
Blane Xero
Amarr The Firestorm Cartel
|
Posted - 2009.08.29 10:40:00 -
[67]
Originally by: Estel Arador
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
I dunno about anyone else, but i constantly have Task Manager in the background, aswell as CPU and RAM monitor gadgets. I switch to and fro from Task manager every so often checking whats running and if it should be. _____________________________________ Haruhiist since December 2008
Originally by: CCP Fallout :facepalm:
|
Rilwar
BlackStar Industrial
|
Posted - 2009.08.29 12:40:00 -
[68]
Originally by: Blane Xero
Originally by: Estel Arador
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
I dunno about anyone else, but i constantly have Task Manager in the background, aswell as CPU and RAM monitor gadgets. I switch to and fro from Task manager every so often checking whats running and if it should be.
Dude Blane, TaskMan Replacement is FTW.
-------------------------------------------------
Mitnal was here. |
Blane Xero
Amarr The Firestorm Cartel
|
Posted - 2009.08.29 12:50:00 -
[69]
Originally by: Rilwar
Originally by: Blane Xero
Originally by: Estel Arador
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
I dunno about anyone else, but i constantly have Task Manager in the background, aswell as CPU and RAM monitor gadgets. I switch to and fro from Task manager every so often checking whats running and if it should be.
Dude Blane, TaskMan Replacement is FTW.
Got it too. _____________________________________ Haruhiist since December 2008
Originally by: CCP Fallout :facepalm:
|
Lothros Andastar
Gallente
|
Posted - 2009.08.29 14:03:00 -
[70]
I hope the **** was worth it.
As I have said before, you should be punished for your idiocy by not getting your character back.
|
|
Saartje Sarel
|
Posted - 2009.08.29 14:08:00 -
[71]
Kudos to the original poster for the effort. I do wonder however, if you are smart enough to trace all that and effect a honey trap, why are you getting hacked in the first place?
Anyway, I hope it works out for you and sincerely pitty CCP all this work, no wonder their petition service levels have become non exhistant. :O/
|
Cypherous
Minmatar Liberty Rogues Rally Against Evil
|
Posted - 2009.08.29 14:35:00 -
[72]
Originally by: Estel Arador
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
Quoted because its true, don't rely in AV software to keep you safe, proper new viruses won't be found by any AV software its all about not just installing **** because you think its good or just because a website prompts you to do it, first step is ditch IE because its got more holes in it than a tea bag and getting a real browser, gotta love visiting those fake **** links posted just to see an IE security warning at the top asking me to install something, mostly its common sense which is why it works because nobody pays attention :)
|
Some Advisor
|
Posted - 2009.08.29 14:42:00 -
[73]
well stopos, seeing that you still write here in the forum means that yoru account is still not locked for investigation.. fill a petition already
|
Oscardoodle
Amarr
|
Posted - 2009.08.29 15:08:00 -
[74]
Originally by: Stopos I don't get it. I brought a legitimate crime to the forum for all to see and be made aware of and all I get from most are ridicule, laughed at etc..
The crime was carried out against CCP, not you. You were just the unwitting vessel for that crime. That makes you at best an unknowing accomplice.
If your bank and credit card statements start spewing out weird purchases THEN the crime was commited against you too and good luck getting the chinese to extradite the perp.
|
|
Chribba
Otherworld Enterprises Otherworld Empire
|
Posted - 2009.08.29 15:51:00 -
[75]
I for one is all for threads like this, trolling or not, maybe, just maybe it can bring some more CCP attention to the problem at hand. Being stupid or not, accidental or just horny, we need additional security measures for our accounts.
People will never learn, and even more known people have fallen for the keyloggers (unless their threads were trolls as well). One misstake and you could end up with a whole lot of problems.
Can I please have my accounts locked to my IP now thanks?!
As for replying to my post to discuss, feel free to use the relevant threads on the subject in Assembly Hall
To OP(troll or not) I hope it gets resolved in a suitable way, and stay away from dodgy links and such in the future.
/c
Secure 3rd party service |
|
Sun Clausewitz
|
Posted - 2009.08.29 16:07:00 -
[76]
Originally by: Chribba I for one is all for threads like this, trolling or not, maybe, just maybe it can bring some more CCP attention to the problem at hand. Being stupid or not, accidental or just horny, we need additional security measures for our accounts.
People will never learn, and even more known people have fallen for the keyloggers (unless their threads were trolls as well). One misstake and you could end up with a whole lot of problems.
Can I please have my accounts locked to my IP now thanks?!
As for replying to my post to discuss, feel free to use the relevant threads on the subject in Assembly Hall
To OP(troll or not) I hope it gets resolved in a suitable way, and stay away from dodgy links and such in the future.
/c
Holy crap, Chribba has been hacked?!?!?!?!?!?!
Pick Three: Caldari/PVP/Solo/Success |
Mara Rinn
|
Posted - 2009.08.29 16:47:00 -
[77]
Originally by: Sun Clausewitz Holy crap, Chribba has been hacked?!?!?!?!?!?!
No, Chribba is merely aware of his status as a mortal and views the infestation of his computer with a keylogger as an inevitable fact. That is to say, it's a matter of when not if.
Account locked to IP address, multifactor authentication - there's all kinds of stuff that can be done.
[Aussie players: join channel ANZAC] |
|
Chribba
Otherworld Enterprises Otherworld Empire
|
Posted - 2009.08.29 17:41:00 -
[78]
Originally by: Sun Clausewitz Holy crap, Chribba has been hacked?!?!?!?!?!?!
No I've not been hacked, and I constantly monitor any "new" processes that may be running on my network. What I mean is that there are other fairly known pilots that have been infected with a keylogger, hence even veteran players can end up clicking the wrong links from time to time.
Secure 3rd party service |
|
Rovan Stargazer
Caldari
|
Posted - 2009.08.29 17:43:00 -
[79]
Originally by: Cypherous
Originally by: Estel Arador
Originally by: Talon Calais Maybe everyone should take this as a hint and start scanning your own machines and monitoring strange system behavior.
Or maybe everyone should just take care what they install on their computers?
Quoted because its true, don't rely in AV software to keep you safe, proper new viruses won't be found by any AV software its all about not just installing **** because you think its good or just because a website prompts you to do it, first step is ditch IE because its got more holes in it than a tea bag and getting a real browser, gotta love visiting those fake **** links posted just to see an IE security warning at the top asking me to install something, mostly its common sense which is why it works because nobody pays attention :)
I did not install anything suspicious and i still got the keylogger. I'm playing mmo's for a decade and i never got hacked before. I might clicked a suspicious link on the forum (few look legit, when some others are just damn silly /points to wii sex something), trust me, if this problem will not get adressed, there will be more and more legit looking threads on this forum. And you just have to click it once.
|
Thimn Witt
Amarr Alien Pancake Bonanza
|
Posted - 2009.08.29 18:09:00 -
[80]
I will admit, I got hacked as well on both of my accounts by this same person. Sold all my ships/modules/salvage/mins to just buy orders on the market.
2.4billion isk was transferred to a character named "Ogo"
I have since reformatted my machine and changed any and all passwords related to eve and my email accounts.
Waiting on a response from CCP
Director of Slave Operations There is no job my slaves can't do, it is just a question of how many of them it will take and the right motivation required! |
|
Stopos
|
Posted - 2009.08.29 22:58:00 -
[81]
Originally by: Johann Callasan
Originally by: Stopos I don't get it. I brought a legitimate crime to the forum for all to see and be made aware of and all I get from most are ridicule, laughed at etc..
Look, there are some very valid reasons why you're getting mocked, laughed at, etc. here onthe Forums - and those reasons are:
1) Posting about this hack on the Forums - quite frankly, there is NOTHING in your post that would help anyone in their efforts not to get hacked - so the "public service" bullcarp is right out. "Name and Shame" OPNLY works if the ones being named actually care about thier accounts - which most of these hackers don't. They're called "throwaway" accounts for a reason.
2) There are VERY limited ways to get hacked - the hackers themselves can either try a bruteforce effort to get legitimate account names and passwords - which is easy to detect by even the most inept sysop. Or, they can download a malicious program to a user's computer to record and transmit what a user does at the keyboard, and web sites they visit in the process - what's called a "keylogger" or "virus". Most of the EvE hackers use the second approach, which involves tricking the user somehow into downloading the malware and starting it up.
3) To download the malware, you have to do some things that by most definitions would be incredibly stupid - the most common one is a ActiveX control (thank you Microsoft for the boneheaded ActiveX system) that masquerades as some kind of plugin updater - however it never actually downloads the plugin, but a "keylogger" instead, as well as some other malware. That's where all those dodgy links you see on the Forums lead to - a site that masquerades as a Flash update. There's other places you can get 'em too - it doesn't have to be just here.
What can you do NOW about it?
1) Get rid of the malware, FAST. The ONLY really reliable way to get rid of malware is to wipe your computer and reinstall everything, once you back up the actual data. YOu can try using any one of several antivirus utilities out ther (I prefer Kaspersky - it's not as exploited as the ones by Symantec, McAfee, and Trend Micro). Those may or may not work - depends onthe keylogger, and how long it's been around.
2) Once you've got a clean system (or have access to one that you KNOW is clean), reset your passwords for your accounts AGAIN, as your most current reset is guaranteed to be compromised at this point. Once you do this second reset, DO NOT USE YOUR SYSTEM TO LOG IN AGAIN UNTIL YOU KNOW IT'S CLEAN.
3) Get a decewnt antivirus/firewall set up and operationsal. The better ones (Kaspersky version 10 is among them) have a "Safe Mode" to run new apps in, which creates a "Virtual PC" for that program, so that NONE of it's activity will affect the rest of the system. Usually a antivir with a "Safe Mode" and a heuristic scanner can catch trojans before they load - not all of 'em though.
4) Examine your browsing habits, and get a browser with somne security in it. The most recommended combination is Firefox + Noscript+Adblock Plus - for good reason. You won't be completely safe, but you'll be safer than IE is by a long shot.
The above was written to the skill level you seem to have from your OP...it's not written to try to offend you. If I wanted to, I'd do a far better job of it :)
1) Excellent advise, thank you. I cleaned/wiped the first computer today. The 2nd computer where the hack took place is still being reviewed. 2) Account PW's reset under a clean computer 3) CCP must have weekends off, No locked account yet 4) It's strange that the hacker new exactly when the isk hit my account O_O and when to hack it for the most profit. Thats all I will say for now on that matter. 5) Nothing else to do until CCP investigate's
Thank you for your post, some of the information here is excellent and some of it just juvenile.
|
Thimn Witt
Amarr Alien Pancake Bonanza
|
Posted - 2009.08.29 23:41:00 -
[82]
Aye neither of my accounts have been locked down yet either. I haven't had any contact with the GMs yet regarding the matter. So just playing a waiting game.
Director of Slave Operations There is no job my slaves can't do, it is just a question of how many of them it will take and the right motivation required! |
Zurrar
Gallente Epiphyte Mining and Exploration Majesta Empire
|
Posted - 2009.08.30 00:34:00 -
[83]
815.06 Offenses against computer users.--
(1) Whoever willfully, knowingly, and without authorization:
(a) Accesses or causes to be accessed any computer, computer system, or computer network;
(2)(a) Except as provided in paragraphs (b) and (c), whoever violates subsection (1) commits a felony of the third degree, punishable as provided in s. 775.082, s. 775.083, or s. 775.084.
An e-mail system is considered a network for these statues. So accessing someoneÆs personal e-mail account without their permission is a Felony in Florida. Punishable by up to 15 years in prison.
You, as an individual, have no rights to sue anyone. Agreeing to the EULA states that you understand that everything in this game is property, intellectual, or physical is the property of CCP. CCP can sue, you cannot. Your a client for a service, the most you could do is go to the BBB and lodge a complaint against ccp.
You cant sue Excite for ****ographic emails, so how can you sue someone for hacking your accounts?
The place of blame is on your shoulders. The number one security measure is you, stay educated don't click random links, and surf smart. Also use random passwords, if your dog is 'fluffy' don't use 'fluffy2009' for a password.
Account names are shown during character sales, and i bet a brute force attack was done. This means your password was very weak. I use a randomly generated letter and number key, i would suggest the same. No way in hell will a brute force work on a password that looks like this- "t74F14Uo0qWe32Ttj"
|
Zurrar
Gallente Epiphyte Mining and Exploration Majesta Empire
|
Posted - 2009.08.30 00:36:00 -
[84]
Originally by: Stopos
Originally by: Johann Callasan stuff
He most likely didn't download a trojan or what not. My guess is during the transaction, his account name got out and a brute force attack was done.
A program enters his login name, and then scrolls down a list of words, I bet this is what happened...
|
Cyprus Black
Caldari 4 wing Mostly Harmless
|
Posted - 2009.08.30 01:30:00 -
[85]
Yeah, good luck prosecuting them. I'm sure the Chinese government is more than willing to cooperate with other countries in regards to internet crime. Especially when it's over virtual money in a video game. ___________________________________
Originally by: Kortne EVE is an amazing game, but other players ruin it.
|
Agent Known
Apotheosis of Virtue
|
Posted - 2009.08.30 02:10:00 -
[86]
Originally by: Cyprus Black Yeah, good luck prosecuting them. I'm sure the Chinese government is more than willing to cooperate with other countries in regards to internet crime. Especially when it's over virtual money in a video game.
Especially since they currently still have issues enforcing their own laws within their country.
On topic, crap like this happens all the time. There's no sense trying to use the law to get revenge from being hacked. Instead, why not use that energy on securing your PC better?
And so now I press "Post Reply" on the 493856th "I got hacked" thread...
|
General Meridus
Minmatar Brutor tribe
|
Posted - 2009.08.30 02:14:00 -
[87]
Posting the hack and the method of the hack helps the other players know what's going on. And what to avoid.
To the OP: Pay no attention to the "You got hit its your fault. We don't care" crowd. Its just a middle school attitude. Over the years EVE has picked up quite a few WoW players.
|
Kimi
Caldari Deep Core Mining Inc.
|
Posted - 2009.08.30 02:23:00 -
[88]
Edited by: Kimi on 30/08/2009 02:25:40
Originally by: Cypherous
Quoted because its true, don't rely in AV software to keep you safe, proper new viruses won't be found by any AV software its all about not just installing **** because you think its good or just because a website prompts you to do it, first step is ditch IE because its got more holes in it than a tea bag and getting a real browser
That virus is not especially new, Been around at least since early July. Basically a minor variant of previous keyloggers, some of which showed up on WOW in 2008. Hard part is finding a good AV/Malware program that keeps up to date. Kapersky seems to be one of the better ones.
What I don't understand is why anyone these days would not HAVE some kind of AV program installed to block this stuff. Like you said, don't click on crap you don't know what it is. The Cariest of CareBears |
Washell Olivaw
|
Posted - 2009.08.30 04:10:00 -
[89]
Originally by: Stopos 4) It's strange that the hacker new exactly when the isk hit my account O_O and when to hack it for the most profit. Thats all I will say for now on that matter.
If he has your password, he also has your api. No reason to hack the account today if you can monitor it and hope for a big strike. Most people never change their password anyway.
Maybe CCP should start checking whether a small amount of IP addresses are getting an unusual large armount of API data and inform the owners of said accounts.
Originally by: Signature Everybody has a photographic memory, some people just don't have film.
|
waferzankko
Caldari The Maverick Navy Atlas Alliance
|
Posted - 2009.08.30 07:59:00 -
[90]
Originally by: Washell Olivaw
Originally by: Stopos 4) It's strange that the hacker new exactly when the isk hit my account O_O and when to hack it for the most profit. Thats all I will say for now on that matter.
If he has your password, he also has your api. No reason to hack the account today if you can monitor it and hope for a big strike. Most people never change their password anyway.
Maybe CCP should start checking whether a small amount of IP addresses are getting an unusual large armount of API data and inform the owners of said accounts.
like a kill board?
|
|
|
|
|
Pages: 1 2 [3] 4 :: one page |
First page | Previous page | Next page | Last page |