| Pages: 1 2 :: [one page] |
|
|
| Author |
Thread Statistics | Show CCP posts - 1 post(s) |
Lady Akumaka
   |
Posted - 2010.03.27 21:26:00 -
[1]
I had my primary account hacked and stolen twice in the last week. The first time I managed to get it back and change the password prior to them changing it. This time they changed the password and associated Email address and I didn't even get a notification Email about it.
I spoke with the person online, and they want me to give them 6 GTCs or they will biomass my 7 year old, 86 million SP character.
I've lost over 3 billion ISK in assets, but I can live with that so long as I can get my characters back.
I've made petitions about this already, but none of them have been answered, so I am bringing this to a public place where a GM may notice it easier.
|
Iamien
Democracy of Klingon Brothers
R.A.G.E
|
Posted - 2010.03.27 21:36:00 -
[2]
Don't worry. at a minimum you will get the character back.
|
Lady Akumaka
|
Posted - 2010.03.27 21:40:00 -
[3]
You would think that, accept for this:
7. DELETED/CORRUPT CHARACTERS
Unwanted characters may be deleted at the character selection screen by clicking the skull and crossbones icon. A verification window will appear asking if you are certain you wish to permanently delete this character. Players are urged to exercise caution when deleting a character and verify that this is an action they wish to take. Corrupt characters may have a graphic flaw that was undetected during the creation process.
A. Characters deleted either accidentally or intentionally cannot be restored.
B. A corrupt character may be reconstructed or corrected after investigation. All items will be moved to the new character and it will have the same characteristics, skills and standings as the old one.
|
Abrazzar
|
Posted - 2010.03.27 21:42:00 -
[4]
Any support you'll get will be worthless unless you get rid of that keylogger on your computer.
--------
|
Elysa Syal
Minmatar
al-Syal Brigade
|
Posted - 2010.03.27 21:45:00 -
[5]
did you give account info out to friend? did you download anything without antivirus? do you macro, think of how you got hacked??? any idea's?
|
Lady Akumaka
|
Posted - 2010.03.27 21:47:00 -
[6]
I scanned for keyloggers and spyware. I've not given the account information out, and I changed the password earlier this week when someone attacked my account the first time.
|
Iamien
Democracy of Klingon Brothers
R.A.G.E
|
Posted - 2010.03.27 21:49:00 -
[7]
Edited by: Iamien on 27/03/2010 21:52:50
 Originally by: Lady Akumaka
You would think that, accept for this:
7. DELETED/CORRUPT CHARACTERS
Unwanted characters may be deleted at the character selection screen by clicking the skull and crossbones icon. A verification window will appear asking if you are certain you wish to permanently delete this character. Players are urged to exercise caution when deleting a character and verify that this is an action they wish to take. Corrupt characters may have a graphic flaw that was undetected during the creation process.
A. Characters deleted either accidentally or intentionally cannot be restored.
B. A corrupt character may be reconstructed or corrected after investigation. All items will be moved to the new character and it will have the same characteristics, skills and standings as the old one.
Do you really believe they would truly delete the data? That is the stated policy that they can point to. However if they **** up and don't respond to your petition fast enough, they can surprise you. Hell they probably have at least 7 recent database backups they could extract your character from.
As to you getting attacked twice in a week, you have some sort of undetected key-logger(which will rewuire a reinstall if you can't find it), or your email address is what's compromised.
|
Mashie Saldana
Red Federation
|
Posted - 2010.03.27 21:51:00 -
[8]
Originally by: Lady Akumaka
I scanned for keyloggers and spyware. I've not given the account information out, and I changed the password earlier this week when someone attacked my account the first time.
Well it is obviously still there as they instantly hacked you again...
Godly scientist/builder/reverse engineer for sale |
Elysa Syal
Minmatar
al-Syal Brigade
|
Posted - 2010.03.27 21:52:00 -
[9]
Originally by: Iamien
"or your email address is what's compromised."
Sounds like email was brute forced, prolly easy password, its best to pick a really random password for email that you dont use on other forums or games. like # + pass + #. something a dictionary list cant guess after 100,000 / few days of try's
|
Mashie Saldana
Red Federation
|
Posted - 2010.03.27 21:56:00 -
[10]
Originally by: Lady Akumaka
I've made petitions about this already, but none of them have been answered, so I am bringing this to a public place where a GM may notice it easier.
Under what catagory did you do it? "stuck character" is the priority queue for this kind of issue.
Godly scientist/builder/reverse engineer for sale |
|
|
Lady Akumaka
|
Posted - 2010.03.27 21:58:00 -
[11]
Originally by: Mashie Saldana
Originally by: Lady Akumaka
I've made petitions about this already, but none of them have been answered, so I am bringing this to a public place where a GM may notice it easier.
Under what catagory did you do it? "stuck character" is the priority queue for this kind of issue.
Thanks for that information. They need a specific petition type for this kind of thing... I understand it isn't all that uncommon recently...
|
Professor Tarantula
Hedion University
|
Posted - 2010.03.27 22:04:00 -
[12]
Originally by: Lady Akumaka
Thanks for that information. They need a specific petition type for this kind of thing... I understand it isn't all that uncommon recently...
The only time it wasn't common for accounts to be hacked was before the internet.
My deepest sympathies.
Prof. Tarantula, Esq. |
Lady Akumaka
|
Posted - 2010.03.27 22:06:00 -
[13]
Issue is being resolved, thanks to GM Stillman. Thank the rest of you too for your help and support. 
|
GateScout
|
Posted - 2010.03.27 22:15:00 -
[14]
Originally by: Lady Akumaka
I had my primary account hacked and stolen twice in the last week.
Twice?
You should be more worried about why this continues to happen. Unless you make some significant changes, this will continue to happen.
I hope you get things fixed, but I have a hard time feeling sorry for you. 
|
Lady Akumaka
|
Posted - 2010.03.27 22:41:00 -
[15]
I understand what you mean. I've been running anti-virus and spyware detection and removal software almost constantly over the last few days since the first incident. So far, nothing has been found on my machine, so I can only assume they got the information elsewhere. This assumption, of course, could be completely wrong.
|
Jerreye
|
Posted - 2010.03.27 23:08:00 -
[16]
Edited by: Jerreye on 27/03/2010 23:09:36
Originally by: Lady Akumaka
I understand what you mean. I've been running anti-virus and spyware detection and removal software almost constantly over the last few days since the first incident. So far, nothing has been found on my machine, so I can only assume they got the information elsewhere. This assumption, of course, could be completely wrong.
The only two ways are a keylogger or brute force. Either your password was bad or your dodgy link detection skills are bad.
I suggest a format, but since that would take all of thirty minutes, and seeing as you don't take two seconds to check the links you're clicking, or set a password that requires you to hold shift occasionally, you''ll surely ignore me.
Edit: Oh and OP. TWICE?! I sincerely hope you do not get your character back.
|
Sareth Drangua
Gallente
United Systems Navy
|
Posted - 2010.03.27 23:30:00 -
[17]
Originally by: Lady Akumaka
I understand what you mean. I've been running anti-virus and spyware detection and removal software almost constantly over the last few days since the first incident. So far, nothing has been found on my machine, so I can only assume they got the information elsewhere. This assumption, of course, could be completely wrong.
what software are you using?
|
Bellum Eternus
Gallente
Death of Virtue
MeatSausage EXPRESS
|
Posted - 2010.03.27 23:33:00 -
[18]
FFS format your computer, burn all your PWs and be done with it. Change *every* PW you have after you format. If they have your Eve account, they probably have everything.
-
Originally by: Bellum Eternus
That is the beauty of Eve, it's a crucible in which great minds are formed and the rest are ground to dust.
Bellum Eternus
Inveniam viam aut faciam. |
Deviana Sevidon
Gallente
Panta-Rhei
Butterfly Effect Alliance
|
Posted - 2010.03.27 23:37:00 -
[19]
Edited by: Deviana Sevidon on 27/03/2010 23:38:53
I think we can help you, at least give you a rough idea on what happened.
Please download and start this Software: Hijackthis
Ask for a log of your system while the EVE Client is running in the background and post the log here. 
Quote:
Disclaimer: All mentioned above contains my opinion and is therefore an absolute truth (for me anyway, my universe, muhahaha.....ok, done
|
Nareg Maxence
Gallente
JotunHeim Hird
|
Posted - 2010.03.27 23:39:00 -
[20]
Originally by: Bellum Eternus
FFS format your computer, burn all your PWs and be done with it. Change *every* PW you have after you format. If they have your Eve account, they probably have everything.
It's the only way to be sure.. except... oh well..
|
|
|
Niccolado Starwalker
Gallente
Shadow Templars
|
Posted - 2010.03.27 23:46:00 -
[21]
Being hacked once is like a 1:300.000 chance or so
Being hacked twice is like...urm...1:600.000?
And being hacked twice within the same week is like... 1:???
To be honest, do as someone told you: format your computer!
You should also start thinking seriously how this could happen, because this is not simply "bad luck"! You must have in one way or other put yourself in the spotlight somehow. Bought isk? Visited ISK sellers pages? downloaded infected software? installed some ISK duplication progs maybe? I dunno! What I do know is this is certainly not bad luck! And I also know this: It will happen again even if the GMs fixes it! Why? Because somehow they will get access to your character again...
Originally by: Dianabolic
Your tears are absolutely divine, like a fine fine wine, rolling down your cheeks until they flow down the river of LOL. |
Eric Policky
|
Posted - 2010.03.27 23:53:00 -
[22]
Originally by: Niccolado Starwalker
Edited by: Niccolado Starwalker on 27/03/2010 23:47:45
Being hacked once is like a 1:300.000 chance or so
Being hacked twice is like...urm...1:600.000?
And being hacked twice within the same week is like... 1:???
To be honest, do as someone told you: format your computer!
You should also start thinking seriously how this could happen, because this is not simply "bad luck"! You must have in one way or other put yourself in the spotlight somehow. Bought isk? Visited ISK sellers pages? downloaded infected software? installed some ISK duplication progs maybe? Given away account info? I dunno! What I do know is this is certainly not bad luck! And I also know this: It will happen again even if the GMs fixes it! Why? Because somehow they will get access to your character again...
Doesn't quite work that way. If once is 1:300,000 then twice is (1/300000)*(1/300000) aka 1 in 90,000,000,000 give or take a zero in case my maths are bad. That's 1 in 90 billion, while there are something like 6 billion people on the planet. If your chances of getting hacked are that low to begin with, it is highly unlikely anyone would get hacked twice.
|
Niccolado Starwalker
Gallente
Shadow Templars
|
Posted - 2010.03.27 23:55:00 -
[23]
Originally by: Eric Policky
Originally by: Niccolado Starwalker
Edited by: Niccolado Starwalker on 27/03/2010 23:47:45
Being hacked once is like a 1:300.000 chance or so
Being hacked twice is like...urm...1:600.000?
And being hacked twice within the same week is like... 1:???
To be honest, do as someone told you: format your computer!
You should also start thinking seriously how this could happen, because this is not simply "bad luck"! You must have in one way or other put yourself in the spotlight somehow. Bought isk? Visited ISK sellers pages? downloaded infected software? installed some ISK duplication progs maybe? Given away account info? I dunno! What I do know is this is certainly not bad luck! And I also know this: It will happen again even if the GMs fixes it! Why? Because somehow they will get access to your character again...
Doesn't quite work that way. If once is 1:300,000 then twice is (1/300000)*(1/300000) aka 1 in 90,000,000,000 give or take a zero in case my maths are bad. That's 1 in 90 billion, while there are something like 6 billion people on the planet. If your chances of getting hacked are that low to begin with, it is highly unlikely anyone would get hacked twice.
And what would you call it if it DID happen, all within one week? :D
Originally by: Dianabolic
Your tears are absolutely divine, like a fine fine wine, rolling down your cheeks until they flow down the river of LOL. |
Mashie Saldana
Red Federation
|
Posted - 2010.03.28 00:02:00 -
[24]
Originally by: Niccolado Starwalker
And what would you call it if it DID happen, all within one week? :D
Spectacular? 
Godly scientist/builder/reverse engineer for sale |
ChaeDoc II
Gallente
Capital Construction Research
Pioneer Alliance
|
Posted - 2010.03.28 00:08:00 -
[25]
Originally by: Jerreye
Edited by: Jerreye on 27/03/2010 23:09:36
Originally by: Lady Akumaka
I understand what you mean. I've been running anti-virus and spyware detection and removal software almost constantly over the last few days since the first incident. So far, nothing has been found on my machine, so I can only assume they got the information elsewhere. This assumption, of course, could be completely wrong.
The only two ways are a keylogger or brute force. Either your password was bad or your dodgy link detection skills are bad.
I suggest a format, but since that would take all of thirty minutes, and seeing as you don't take two seconds to check the links you're clicking, or set a password that requires you to hold shift occasionally, you''ll surely ignore me.
Edit: Oh and OP. TWICE?! I sincerely hope you do not get your character back.
Wow, what a ****.
The OP changed their password as soon as he/she regained access the first time and without conflicting info i'll assume they ran virus and malware scans thereafter.
|
ChaeDoc II
Gallente
Capital Construction Research
Pioneer Alliance
|
Posted - 2010.03.28 00:19:00 -
[26]
Originally by: Eric Policky
Originally by: Niccolado Starwalker
Edited by: Niccolado Starwalker on 27/03/2010 23:47:45
Being hacked once is like a 1:300.000 chance or so
Being hacked twice is like...urm...1:600.000?
And being hacked twice within the same week is like... 1:???
To be honest, do as someone told you: format your computer!
You should also start thinking seriously how this could happen, because this is not simply "bad luck"! You must have in one way or other put yourself in the spotlight somehow. Bought isk? Visited ISK sellers pages? downloaded infected software? installed some ISK duplication progs maybe? Given away account info? I dunno! What I do know is this is certainly not bad luck! And I also know this: It will happen again even if the GMs fixes it! Why? Because somehow they will get access to your character again...
Doesn't quite work that way. If once is 1:300,000 then twice is (1/300000)*(1/300000) aka 1 in 90,000,000,000 give or take a zero in case my maths are bad. That's 1 in 90 billion, while there are something like 6 billion people on the planet. If your chances of getting hacked are that low to begin with, it is highly unlikely anyone would get hacked twice.
Lol, this is the worst attempt at applying logic to a post i've ever seen from someone supposedly intelligent enough to play Eve.
If you're hacked once then there's a vulnerability that you didn't know about and someone else did.
If you are unable to end this vulnerability then it's likely the same hacker will use the same vulnerability to to hack you again.
Add to that the higher likelihood that you'll be hacked as an Eve Online player than if you were a facebook farmville player.
|
Professor Tarantula
Hedion University
|
Posted - 2010.03.28 00:20:00 -
[27]
Originally by: ChaeDoc II
Wow, what a ****.
The OP changed their password as soon as he/she regained access the first time and without conflicting info i'll assume they ran virus and malware scans thereafter.
And then they had their account accessed by the person again, negating all that, and leaving the only possibility left that they, or the scans, are missing something.
Like others have mentioned, reformatting is a surefire way to stop this from happening again. Instead of spending the next few days or even weeks running different scans or trying to manually locate and extricate whatever it is that's allowing this to happen.
My deepest sympathies.
Prof. Tarantula, Esq. |
Marko Riva
Adamant Inc.
|
Posted - 2010.03.28 01:23:00 -
[28]
Run hijackthis, run several different virus scanners (not just the silly one you got for free somewhere), you can use several online even, try trend micro.
When done change your email password, better yet use a different email adress alltogether. Then change your ingame pw yet again. If all else fails, then format your drives and start anew.
-----------
I think, therefore I'm single.
Want to learn combat/PVP?
Alliance creation service |
David Grogan
Gallente
Final Conflict UK
Warped Aggression
|
Posted - 2010.03.28 01:38:00 -
[29]
Edited by: David Grogan on 28/03/2010 01:38:26
its possible his router is not configured properly and has many open ports in which hackers can gain access. close off any ports u are not using.
also change the router's default password to something long and a mix of numbers and letters
SIG: if my message has spelling errors its cos i fail at typing properly :P |
Orephia
|
Posted - 2010.03.28 02:05:00 -
[30]
The keylogger has to send out packets/email to deliver your password to the hax0r. Just install a firewall app that blocks unauthorized outbound connections, like ZoneAlarm (ok to name?). The basic version is free and will do the job; most firewalls block incoming connections but trust outbounds. |
|
|
Tero Alphaverti
|
Posted - 2010.03.28 03:20:00 -
[31]
Edited by: Tero Alphaverti on 28/03/2010 03:20:40
First change all your passwords to a complex pass phrases. For example, start with the sentence "Stay out of Jita" then transform it to "stayoutofjita", and once more to "$7@y0u7ofj!t@". Now you have a quite complex password that is easy to remember (provided you always substitute the same characters).
Then blow away your Windows installation and reinstall.
Be careful. Don't download anything that you aren't 100% confident in and don't use simple passwords!
|
Johnathan Roark
Caldari
The Graduates
Morsus Mihi
|
Posted - 2010.03.28 04:07:00 -
[32]
Originally by: Orephia
The keylogger has to send out packets/email to deliver your password to the hax0r. Just install a firewall app that blocks unauthorized outbound connections, like ZoneAlarm (ok to name?). The basic version is free and will do the job; most firewalls block incoming connections but trust outbounds.
That's poor advice. There are ways around such programs. One way would be to hijack a legit program or look like a legit program. The best thing to do is to reinstall windows and change all your passwords (including email and banking). Also change any security hints that any of your accounts (eve, email, banking, etc) have. Those have to be the worst false since of real security since the password.
POS-Tracker 3.0 Hosting |
Kyden
Gallente
Interstellar eXodus
BricK sQuAD.
|
Posted - 2010.03.28 04:43:00 -
[33]
Originally by: Mashie Saldana
Originally by: Lady Akumaka
I scanned for keyloggers and spyware. I've not given the account information out, and I changed the password earlier this week when someone attacked my account the first time.
Well it is obviously still there as they instantly hacked you again...
Being keylogged isn't being hacked. Most accounts that are stolen aren't "hacked". Cracked or trojaned/keylogged would be what happened.
In this case, the guy probably bought isk or used a macro program that was logged.
I hope you lose all your characters for being such an idiot!
|
Eric Policky
|
Posted - 2010.03.28 05:04:00 -
[34]
Originally by: ChaeDoc II
Lol, this is the worst attempt at applying logic to a post i've ever seen from someone supposedly intelligent enough to play Eve.
If you're hacked once then there's a vulnerability that you didn't know about and someone else did.
If you are unable to end this vulnerability then it's likely the same hacker will use the same vulnerability to to hack you again.
Add to that the higher likelihood that you'll be hacked as an Eve Online player than if you were a facebook farmville player.
Who are you directing this at? If you are directing this at me, I'm afraid you have seriously missed the point of my post.
|
Schani Kratnorr
x13
IT Alliance
|
Posted - 2010.03.28 06:16:00 -
[35]
Originally by: Lady Akumaka
I had my primary account hacked and stolen twice in the last week. The first time I managed to get it back and change the password prior to them changing it. This time they changed the password and associated Email address and I didn't even get a notification Email about it.
You should attempt to find out how your account was compromised. The usaul suggestions above might get you started.
Originally by: Lady Akumaka
I spoke with the person online, and they want me to give them 6 GTCs or they will biomass my 7 year old, 86 million SP character.
So they are attempting to blackmail you. Dont worry. If you havent done anything wrong, your character is perfectly safe. Even if they manage to delete it, CCP can restore from backups (as long as you dont wait for too long.)
Originally by: Lady Akumaka
I've lost over 3 billion ISK in assets, but I can live with that so long as I can get my characters back.
You havent lost anything. If you follow the correct procedure and create a petition, CCP will look into the matter. It can take time, but at least the account in question will be temporarily deactivated (banned) to prevent abuse.
Originally by: Lady Akumaka
I've made petitions about this already, but none of them have been answered, so I am bringing this to a public place where a GM may notice it easier.
How long did you wait? If you have waited less than 48 hours, you are too impatient.
Did you get a confimation e-mail notifying you that the petion has been recieved? If you have not recieved an e-mail, AND it has been more than four days, you should verify that your petition was entered correctely (can be done here.)
Posting on the forums will not speed things up. IF you are thinking that CCP may look at your post and say to themselves,
Quote:
ohh dear, we'd better put this guy at the front of the petition-que!
well, if you believe that, you are wrong.
While you wait, you can focus on discovering how your account was compromised. Did you install any software recently. Have you used your eve user/pass combination elsewhere. Have you made sure to upgrade your web browser and operating system, and so on...
Hope you manage to get your account sorted and discover who has hijacked it.
|
Florestan Bronstein
|
Posted - 2010.03.28 07:05:00 -
[36]
characters are never deleted - even when biomassed you can get them back with a nice petition
|
Alchemist Zemont
Gallente
Hysteria Nexus
|
Posted - 2010.03.28 07:27:00 -
[37]
I had a nasty key log drama in WoW once, got 'hacked' twice in a week, which was really odd tbh since I am very careful about what I click but turned out my flat mate wasnt as smart.
From what I found McAfee wasnt all the great (not saying you use that) so I have several scanners clogging up my comp now and I must admit they nicely get the job done.
I remember Spybot, McAfee and AVG all failing to detect the keylog but I had some sweet luck with MalAware which is odd since sometimes AVG / spybot only spots stuff.
______________________________________
masternerdguy fan |
Aera Aiana
|
Posted - 2010.03.28 07:30:00 -
[38]
Originally by: Lady Akumaka
So far, nothing has been found on my machine, so I can only assume they got the information elsewhere. This assumption, of course, could be completely wrong.
And where would that be, huh? You changed you password recently, so unless you told it someone or it was something utterly stupid like "asdfasdf" the only other thing that knows about it is your computer and possibly the one receiving your emails.
So, find another computer that is not blatantly obviously infected (or on an open wireless connection), change your email password, then change your account password, then flatten your PC and reinstall. If you've got personal stuff on there, back it up, but don't back up anything executable like applications, scripts...
Otherwise, see you in two days.
|
Ak'athra J'ador
Amarr
Handsome Millionaire Playboys
|
Posted - 2010.03.28 09:08:00 -
[39]
Originally by: Lady Akumaka
I scanned for keyloggers and spyware. I've not given the account information out, and I changed the password earlier this week when someone attacked my account the first time.
let me guess, you got a confirmation email stating someone tried to change your password, and you rushed in and changed it?
did you check where that email came from and at which site you changed it?
cause if it wasn't phishing and you actually do have a keyloger then format your PC and stop going to wherever you went that got you infected.
antivirus is crap, format it to be sure :)
|
Karlemgne
Tides Of War
|
Posted - 2010.03.28 09:31:00 -
[40]
Ffs, op. You clearly have a key logger on your machine. It doesn't matter that you ran a bunch of (unknown) virus scans since the first incident.
Not to sound like an ass, but news flash, virus protection software is not perfect. In fact, in most cases it sucks, and provides you very little protection. Some, but not much.
The only way you are going to keep this from happening again, and the only way you can protect yourself from people stealing your real ****, is going to be a reformat of your hard drive and a clean install of windows.
Do you not know how to do this? Its very very easy. You should have done it already. What you should not do is simply assume that you're fine and good because your crappy virus protection software didn't find anything.
My sig don't fracking work. |
|
|
Nareg Maxence
Gallente
JotunHeim Hird
|
Posted - 2010.03.28 09:44:00 -
[41]
If I ever had any doubt if my system was compromised or not, I would reformat instantly. I wouldn't think two seconds about it.
|
|
CCP Adida
|
Posted - 2010.03.28 16:45:00 -
[42]
By creating a petition this is the best way for a Game Master to notice your issue. Game masters may read the forums from time to time but this is not the best way to get their attention. Locking this thread so that you can update your petitions with any additional information for the game masters.
Adida
Community Rep
CCP Hf, EVE Online
|
|
|
|
| |
|
| Pages: 1 2 :: [one page] |