| Pages: [1] 2 :: one page |
| Author |
Thread Statistics | Show CCP posts - 0 post(s) |
Kalric
   |
Posted - 2003.07.02 17:09:00 -
[1]
Has anyone had this happen to them? I logged off lastnight to go home (yes was playing at work), and by the time I got home and logged back on all my ISK had been transfered to a character by the name of GOODWILL!!
I haven't provided ANYONE my password for this EXCEPT I used the same username/password for http://www.eve-i.com 's website. Have 'they' been hacked or have a rogue webmaster?
I've seen a few postings on other sites about peoples money being stolen, but wasn't sure if there was a glitch in Eve, or if it was a user/pass compromise.
Any info would be appreciated....P.S. Any Dev's reading this...PLEASE ANSWER THE PETITION! :)
Kalric |
Aerick Dawn
|
Posted - 2003.07.02 17:53:00 -
[2]
scan for trojans ace.
And dont use 3rd party tools if you have them installed.
______________________
What Aerick has been up to lately.. |
Cpt Shnoogans
|
Posted - 2003.07.02 17:58:00 -
[3]
i have some trojens.......
______________________________________________
has a reoccurring dream about being chased around a lake of knee deep jello by a swahili-speaking washington monument. |
Molly
|
Posted - 2003.07.02 18:02:00 -
[4]
"I haven't provided ANYONE my password for this EXCEPT I used the same username/password for http://www.eve-i.com 's website. Have 'they' been hacked or have a rogue webmaster?"
Not providing anyone with your data but giving it to one party is an antagonism, don't you think?
I don't want to blame eve-i, but you have to learn from this.
In case your money has been transfered you can check when it happened and who the payee is.
---
"Molly > funny thing is, if they warn me for attacking in 1.0, why does a GM wish me luck doing so?
Jash Illian > perverse sense of humor?
Molly > lol
Jash Illian > honestly tho, because he prolly doesn't know bships" |
Sykosys
|
Posted - 2003.07.02 18:06:00 -
[5]
Edit: Wrong topic sorry
Edited by: Sykosys on 02/07/2003 18:07:26 |
Dan Forever
|
Posted - 2003.07.02 18:08:00 -
[6]
I doubt eve-i admins would be responsible, but if you use the same username and pass, it could have been hacked from that site, seeing as they don't, and shouldn't need to, use SSL for registrations and logging in.
|
Setec
|
Posted - 2003.07.02 18:41:00 -
[7]
Sounds like it's time for you to go GOODWILL HUNTING!
___________________________________________
Space Invaders website: http://www.si-corp.net |
Garon
|
Posted - 2003.07.02 18:47:00 -
[8]
http://www.planetquake.com/jitspoe/images/funny/soccer.jpg sorry man, this is how it goes sometimes.....
Make sure the images you opst don't stretch the forums. -Elereth
"if you wish to live wisely, ignore sayings like this one" -Annonymous
|
Telon
|
Posted - 2003.07.02 19:52:00 -
[9]
Ok you said you were playing from work.... could someone from work that plays EVE logged on us you from your work PC and transfered your money to theirself?
Maybe you should see if anyone from work plays and see if they happen to be GOODWILL.
--
Telon |
drunkenmaster
|
Posted - 2003.07.02 19:57:00 -
[10]
no love for Setec's gag? Fie on you all.
I lolled.
.
|
Mr nStuff
|
Posted - 2003.07.02 19:58:00 -
[11]
Have you downloaded any third party proggies for EVE? Trainers, Macro Generators, ect?
Did you report the name GOODWILL to CCP before posting this thread? Maybe they can track the user, i'm sure the character is wiped by now though eh? Not sure how that works.
I know my lost money would all be worth it if the jag'off that stole from me was terminated though.
5 R&D Agents, 10months, Zero BPO Offers..
Onboard navigational [Planetary Avoidance] computer.
My account will be suspended at the end of the current play period.
Expires on 19. September 2004 |
Alexis Machine
|
Posted - 2003.07.02 20:33:00 -
[12]
lol@good will hunting.
Apple sauce bi*ch!
----------------sig----------------------------
Dtai'kai'-dte sa-de nau'gkon dtain'aun bpi-de.
if you don't wake up, i'll have to stop kissing you. all that flailing has made you sleepy. you rest while i untie you. stay here until they find you. My hand made mannequin. i won't let them get you. they'll know you're mine by the fingerprints on your throat. isn't she lovely? isn't she wonderful? like the *****s that we are, swatting flies from the wounds we design. |
cyberpir8
|
Posted - 2003.07.02 21:33:00 -
[13]
and it begins!
account hacking.
I left Mankind (mmog) cuz i lost 30mil in it.
I change my password to EVE once a week now. I never use the same login or password anywhere.
|
ShadowStrike
|
Posted - 2003.07.02 21:40:00 -
[14]
Best way to make passwords...
open a text editor, and start hitting keys randomly. Then go back and randomly delete parts of it till you get about 5-8 characters left. Use what ever remains as your password.
The hard part about random things though is that they are harder to remember... but thats the price you pay for security.
You currently have 157 skills and 26,183,909 Brain cells |
Ehxo
|
Posted - 2003.07.02 23:20:00 -
[15]
I think the problem isn't only in the user's head for using 3rd party programs and such. CCP wasn't too bright IMO by putting the username/password in the prefs.ini file. That means that anyone who can hack into someone's PC or create a 3rd party tool that will gather the info from that file can get your username and password.
The password shouldn't be saved in a file, but rather hidden in the registry which is most likely to be protected against hacking (depending which OS you have...).
I think that this only is a serious lack of security and that it should be addressed by CCP asap in a very serious manner.
In the mean time, anyone that wants to play it safe, simple do NOT check "Remember password" and type it everytime you want to log into your character, that way it won't be stored in the prefs.ini file.
It's partly the fault of the user for neglecting its own security, but it's mostly the fault of CCP for making it that easy to get the account info from someone.
Edited by: Ehxo on 02/07/2003 23:20:34
|
Drefsab
|
Posted - 2003.07.02 23:38:00 -
[16]
Another possability is that someone has installed a key logger on his pc and has captured his username and password (among god knows what else) that way.
"Death Before Dishonor" |
Ehxo
|
Posted - 2003.07.02 23:43:00 -
[17]
No matter what the reason is, CCP HAS to do something to store the password elsewhere than in the cached preferences (prefs.ini)
|
Kalric
|
Posted - 2003.07.03 02:17:00 -
[18]
Well...here's an update of HOW it was accomplished:
There was a file that was e-mailed to me which was infected with the Optix Pro v1.31 virus. Norton didn't have the update for it until the June 28th patch, and since the file was opened on June 23rd...I had no way of knowing that I was infected.
NO...I DIDN'T download any macros for Eve...I think it's pathetic that anyone WOULD use them...so don't even go there people!
I found that I was infected with this virus after I hooked a network sniffer up to the computer (Ethereal - free at www.ethereal.com) and logged all traffic from the one computer while BOOTING UP. In there was a TCP stream which showed an e-mail being sent to [email protected] stating Eve 2.0 installed, TCP backdoor port and Trojan password for entry.
So apparently someone has written a script or something that looks for Eve on a computer and e-mails them. They are relaying through Earthlink mail service anonymously...which I find repulsive since you shouldn't allow anonymous e-mail relaying in the first place.
I have received 1 response from a DEV which was: Did you give your password out? WHAT?? ARE YOU KIDDING?? Haven't heard anything SINCE and it's been 2 days.
GLAD TO SEE THEY'RE WORKING SO HARD HERE!! Post some more pictures of you guys drinking on your website...REALLY makes me feel warm and fuzzy that a bunch of drunks are working behind the scenes!! http://www.ccpgames.com
Sorry...little P.O.'d here. Figures if I'm paying a monthly fee..they'd be a LITTLE QUICKER!!
|
Ehxo
|
Posted - 2003.07.03 02:55:00 -
[19]
Thanks for the update man.
the wise thing to do would have been to immediatly (as soon as you realised what was going on) send a copy of the email content, then attachement and all those details in a support requestr (through the web site, click on suport), and let CCP deal with the homemade EVE trojan. They could probably find a way to block it in the next couple patches.
And btw, I was talking abotu MS Excel vbscript macros... not mouse/keyboard macros.
|
Georg Inekn
|
Posted - 2003.07.03 03:22:00 -
[20]
"There was a file that was e-mailed to me which was infected with the Optix Pro v1.31 virus."
... which you opened?
|
zeker
|
Posted - 2003.07.03 03:34:00 -
[21]
just so happens to have moo in the name lmao come on,
dam moo gets it from each direction. my station has a bar in it and thats were i stay no need to leave the comforts of the lounge.
|
Kalric
|
Posted - 2003.07.03 04:30:00 -
[22]
Inekn:
Well...if you scan the file first for viruses, and it doesn't detect any, AND it's from someone you know - which I'm not speaking too anymore - I'd think it was safe to open.
Since I thought it was work related...I really didn't think twice about it.
I suppose you just delete all your e-mail that has any attachements? I forgot..there ARE people in this work who do this....you must be one!
|
Cptn Stardust
|
Posted - 2003.07.03 11:50:00 -
[23]
Well i thought it was common knowledge, you NEVER open email file attachements, unless you are 100 percent certain it's come from someone that you trust, and even then, you need to run an up to date virus checker on anything that you intend to open, that's been sent to you over the net.
If you're spending time on the net, like in your case playing eve both at work and at home, then it's your job to protect yourself
In this day and age it pays to be highly sceptical and to never automatically trust anything. I know it's sad, but true |
Kalric
|
Posted - 2003.07.03 12:23:00 -
[24]
Cptn America:
What didn't you get about:
"There was a file that was e-mailed to me which was infected with the Optix Pro v1.31 virus. Norton didn't have the update for it until the June 28th patch, and since the file was opened on June 23rd...I had no way of knowing that it was infected."
I scanned the file with the MOST up to date dat file...the damned virus had just come out!!
Also, I'm not posting here to get flamed or lectured about opening files with viruses. I just ASKED if anyone had this happen to them...and from some of the other topics, there are.
K
|
Terrapin
|
Posted - 2003.07.03 14:46:00 -
[25]
Ehxo:
"It's partly the fault of the user for neglecting its own security, but it's mostly the fault of CCP for making it that easy to get the account info from someone."
While I feel for the original poster, I don't agree with that statement.
First of all, the password is not stored in the prefs.ini in plain text. It's encrypted.
Secondly, if your pc has been infected by a trojan people with bad intentions can have full control of your machine.
Which means they can access the registry or any kind of data on your machine as easy as you yourself can. Using keyloggers, or network scanners.. it's all a piece of cake.
Once a trojan is active on your system, you're in deep doo-doo.
It's not CCP's responsibility to keep unwanted people out of your system, that's your own responsibility.
They even posted a warning about this on the news section, so I don't see how CCP is to blame here.
---
|
Kalric
|
Posted - 2003.07.03 14:54:00 -
[26]
Terrapin:
I never did blame CCP, what I was mad about with their less than stellar response time and the dumb question about giving my password out. :)
I agree totally that it is the users responsibility to make sure their computers are virus free, however when a new virus is released, and the virus companies don't have an update that catches them for a week after you're infected (Thanks Norton!) I don't feel that I was at fault. NOR do I hold CCP to blame...don't get me wrong...I'm HOOKED on this game (play at work too), but I just wanted that little jerk that took my money to have to give it back.
I figured that they could look in the transaction logs and just reverse it. I'm not asking for REAL monetary compensation or anything, just return what I worked so hard for over the past few weeks.
K
|
Dancer
|
Posted - 2003.07.03 15:11:00 -
[27]
Kalric,
Registering your ingame-character with our site has absolutelly nothing to do with your EVE login information. You enter your eve-i login and password, if you enter anything else, it has absolutelly no effect except that you get an errormessage telling you that this is no valid eve-i-login/password-combination.
Everybody who thinks that eve-i is anything more than a loyal community site can buy himself a ticket, fly over to Germany and have a look at the server/code himself.
Dancer
Head Administrator
EVE-I
http://www.eve-i.com
|
Kalric
|
Posted - 2003.07.03 15:35:00 -
[28]
Dancer...
HELLO...where did this come from?? The only thing I stated was that I used the same username/password on Eve-i.com as I used in Eve-Online. This was in response to the Dev asking if I'd given out my password to anyone, and I wondering if your user/pass database had been compromised. I have since found that it had NOT...please don't take offense.
I was just throwing ideas out there asking if anyone knew of anything.
K
|
Terrapin
|
Posted - 2003.07.03 15:39:00 -
[29]
Kalric,
I hope for your sake that CCP will look into it and catch the people behind this and will ban their asses.
As a matter of fact I've been trying to get a site that I know is spreading a trojan disguised as an 'Eve macro tool' closed for almost a week now. (Angelfire and Serverpro were pretty quick to close their site, but they have since moved to a Polish website, which isn't being so helpful yet).
So to anyone who's still considering installing 3rd party software for Eve: I wouldn't if I were you, unless you're looking for a similar experience as Kalric's.
---
|
Kalric
|
Posted - 2003.07.03 15:51:00 -
[30]
Terrapin:
AGREED! I just want a home address now. I have some vacation coming...I'd REALLY like to show up on their doorstep and confront them about it in person...but that's just a dream.
Oh well. :)
K
|
| |
|
| Pages: [1] 2 :: one page |
| First page | Previous page | Next page | Last page |