Accounts on vac mode hacked.

Locked
User avatar
schuesseled
Forum Expert
Posts: 1013
Joined: Thu Oct 13, 2005 3:05 pm
ID: 33241

Re: Accounts on vac mode hacked.

zugam1@gmail.com


If this helps Admin or stop any other traders alledgedy trading with a hacker.
12agnar0k be taking over this here account, argh!

Image
User avatar
schuesseled
Forum Expert
Posts: 1013
Joined: Thu Oct 13, 2005 3:05 pm
ID: 33241

Re: Accounts on vac mode hacked.

zaphor - 4602

funny that this account is named zaphor, zaphor sold his original account (though it was some time back) so one would assume his second account would have a higher ID, and that his first account would have a different name.
12agnar0k be taking over this here account, argh!

Image
Tekki
Forum Addict
Posts: 4332
Joined: Wed Aug 23, 2006 12:37 pm
ID: 0

Re: Accounts on vac mode hacked.

Um that account/ID has been zaphor's for years though and I never heard of him selling.

I got confirmation that zaphor got hacked. However the account is back on vacation (forcibly) so I think Admin did something - thank you for that Admin.
Spoiler
Initial masser on Field Marshal's 120t defence and on Rodwolf's 177t defence.

The forces of Rodwolf fought back with all they could, and managed to inflict 178,947,245,996,720 damage on Tekki's forces!

The forces of Rodwolf fought back with all they could, and managed to inflict 3 damage on Tekki's forces!
Jedi~Tank wrote:@ADMINS- ALL ADMINS, this is the absolute worst game forum I have ever seen (this sentiment is shared by many) It is amazing how ya;ll can go from good job to complete garbage in no time at all.

Jedi~Tank
A sentiment I can agree with, except some of them have never done a good job. For further details, PM me INGAME Id 9095.
---
Image
Image
Image
Spoiler
Image Image
Image Image
User avatar
CABAL
Forum Expert
Posts: 1310
Joined: Wed Apr 30, 2008 1:44 am
Alliance: Aquila Ignis
Race: Death Watch
ID: 0
Location: Holy Terra

Re: Accounts on vac mode hacked.

Dubby_CompGamerGeek2 wrote:I'm glad I came off vacation mode recently.

I think I will check my account on a semi-regular basis even when I am on long-term vacation mode.

here's a suggestion:
the quitting thread should require member login to view. :)

In fact, I suggest the whole forums should require more secure access.

Has anyone noticed the occasional posting by spambots?

it has happened in the SGW BattleCorp Forums, and I believe it has happened here as well.

5,000 Attack Turns as a Reward for information that puts someone in jail for fraud and hacking.


Lucky I gave away all my resources before quitting, eh? :smt047

On the other hand, I would like admin to change his db pass D:

Imo, someone who knows about acc details who have been on vac for a long time must have db access. And I would highly recommend looking in the logs to see if anyone has accessed the db other than anyone who is supposed to access it.

Admin could also go through logs, checking to see any suspicious login attempts which may actually be bruteforcing...

And a query: Does SGW have anything put in place in the login place to block repeated attempts to login?
And a statement: I hope all inputs have been sanitilized with mysql_real_escape_string - not add_slashes! And I hope admin has set inputs to only accept specific data types!
Image
Image

MS-1 -> T-26 -> T-46 -> T-28 -> KV -> KV-3 -> IS -> IS-3 -> IS-4 -> IS-7
User avatar
Shinobii
Forum Irregular
Posts: 297
Joined: Sun Dec 25, 2005 5:15 pm
Alliance: Tauri Alliance
ID: 37189
Location: SoCal

Re: Accounts on vac mode hacked.

I just remembered to log in again about this. I haven't heard back from admin, nothing has been reset on my account, i'm putting it on another ppt for now.

As for how I was hacked, dunno. To be honest, former password could have been dictionary attacked because it was embarrassingly easy. I haven't visited sgw or the login site for probably a good 6 months or so, so I don't think my password was sniffed. I've changed my pass to something I would use at work, so it should be very secure.

I requested that admin forcibly put my account on vaction mode, but I don't think he will, so oh wells. I'll have to remember to do that sometime this week.

I dunno what the common theme would be. Other than we were all on vacation mode and perhaps we all had 150mil+ accounts or something.

Sounds like it was a major issue though.
Image
User avatar
Caprila
Grand Master of the Inquisition
Posts: 2527
Joined: Mon Aug 27, 2007 4:51 am
Race: Immortal

Re: Accounts on vac mode hacked.

It did indeed sound as if Admin J was making progress in the meet last night.

I think all we can really do from our end, is continue raising awareness & passing on the id's we may find.

Like others have said, I would also be wary of accusing anyone with little/no proof.
Image

“Any fool can know. The point is to understand.”
User avatar
[BoT] Jason
Forum History
Posts: 10120
Joined: Mon Sep 29, 2008 12:37 am
Alliance: TA
Race: DIEDAYDIEDAY
ID: 13003152
Alternate name(s): Pimp,Slenderman
Location: Right behind you

Re: Accounts on vac mode hacked.

what we can do is all change our passwords....

http://www.goodpassword.com/
or
http://strongpasswordgenerator.com/

that way it will have nothing related to you
Pimping

Feb 06, 06:16 Field Marshall Attack defended 15 88,977,968 0 x,x62,635,278,400 900,114 details

| | Hero of the Year | |

Winner: BMMJ13
SlimD
Forum Irregular
Posts: 301
Joined: Sat Apr 28, 2007 4:23 pm
Race: Human
Location: Enjoying the real world

Re: Accounts on vac mode hacked.

I see another account of a mate of mine that has fallen off the black cusp.. it is back on now.. I was never able to contact the owner (sent PMs, which they would have replied to, if they were active.)

I can see that none of the UU was returned (it wasnt a massive amount & perhaps was the UU earned while off PPT-dunno)

Thank you admin, what ever you are doing now.
Cheers,
SlimD - sniffing around the forums
User avatar
GeneralChaos
Forum Addict
Posts: 3421
Joined: Wed Aug 16, 2006 3:56 pm
Alliance: Omega
ID: 59627

Re: Accounts on vac mode hacked.

Pimping D wrote:what we can do is all change our passwords....

http://www.goodpassword.com/
or
http://strongpasswordgenerator.com/

that way it will have nothing related to you


It does not make a difference, as until the passwords are encrypted and not stored in plain text on the server, the most secure password is well not secure, this issue was raised before when the server glitched out and shows the user there passwords on the login screen, the bug was fixed but no encryption was in place.
Deep within Noob Cave, you find a strange pool filled with a glowing blue liquid. You think back to what your mother told you about unfamiliar liquids found in caves.

You're pretty sure she said "Drink it! What's the worst that can happen?"
Lithium
Forum Zombie
Posts: 6085
Joined: Wed Jun 27, 2007 11:34 pm
Alliance: The Pirate's Panties
Race: Pirate
ID: 0
Location: Pantie's Island
Contact:

Re: Accounts on vac mode hacked.

i see very few possibilities that admin can track the hacker, except any big mistake of him.
if these resources has beeen sold only for $$$ the the one whcih has put his hands on db login have to many backdoors from where he can broker and get cash. the only way to find the one is reporting sells x chash so we check the paypal adress unless he doesnt have "many" (this is where that hacker might fail)

first thing that admin should had done since day 1 would have been to force pass change so the hacker couldnt use many accounts. second to change vaced accounts pass so they are not used aswell.
Image
Previously on GateWars Forum
The orgin of Guild
Spoiler
Lithium wrote:he was talkin bout me and remembering the days i was massing him wit one finger ;)
Guild wrote:is that the same finger you stick up your bum ? :smt060
Lithium wrote:no its the one who gave u life ;)
Field Marshall wrote:Lith put his finger up his bum and Guild arrived? :smt017
I wish that was genuinely true :)
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
MajorLeeHurts wrote:
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
Agreed that was the funnies **Filtered** ive read here!
Im sure JT is enjoying this thread , if he isnt hes in a coma !
Feedback Me
http://stargatewars.herebegames.com/vie ... 8&t=101259
User avatar
[BoT] Jason
Forum History
Posts: 10120
Joined: Mon Sep 29, 2008 12:37 am
Alliance: TA
Race: DIEDAYDIEDAY
ID: 13003152
Alternate name(s): Pimp,Slenderman
Location: Right behind you

Re: Accounts on vac mode hacked.

Forum wrote:and on the vacation thing - on that too :) I have a feeling I know what it is, and I have put any accounts I thought could have been affected into vacation in the meantime, with new passes ... might take an email to support@ to get them back, but that is safer than doing nothing...I will post more on the 'forgot logon' page and something on main page.

j.



viewtopic.php?f=7&t=110592&start=765
Pimping

Feb 06, 06:16 Field Marshall Attack defended 15 88,977,968 0 x,x62,635,278,400 900,114 details

| | Hero of the Year | |

Winner: BMMJ13
Lithium
Forum Zombie
Posts: 6085
Joined: Wed Jun 27, 2007 11:34 pm
Alliance: The Pirate's Panties
Race: Pirate
ID: 0
Location: Pantie's Island
Contact:

Re: Accounts on vac mode hacked.

dude its not day 1
Image
Previously on GateWars Forum
The orgin of Guild
Spoiler
Lithium wrote:he was talkin bout me and remembering the days i was massing him wit one finger ;)
Guild wrote:is that the same finger you stick up your bum ? :smt060
Lithium wrote:no its the one who gave u life ;)
Field Marshall wrote:Lith put his finger up his bum and Guild arrived? :smt017
I wish that was genuinely true :)
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
MajorLeeHurts wrote:
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
Agreed that was the funnies **Filtered** ive read here!
Im sure JT is enjoying this thread , if he isnt hes in a coma !
Feedback Me
http://stargatewars.herebegames.com/vie ... 8&t=101259
Lithium
Forum Zombie
Posts: 6085
Joined: Wed Jun 27, 2007 11:34 pm
Alliance: The Pirate's Panties
Race: Pirate
ID: 0
Location: Pantie's Island
Contact:

Re: Accounts on vac mode hacked.

adding info regarding a forum account hack due trades

viewtopic.php?f=130&t=155262
Image
Previously on GateWars Forum
The orgin of Guild
Spoiler
Lithium wrote:he was talkin bout me and remembering the days i was massing him wit one finger ;)
Guild wrote:is that the same finger you stick up your bum ? :smt060
Lithium wrote:no its the one who gave u life ;)
Field Marshall wrote:Lith put his finger up his bum and Guild arrived? :smt017
I wish that was genuinely true :)
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
MajorLeeHurts wrote:
Lithium wrote:oooo why there isnt any emo for this one , id have dropped of chair dead :smt042
Agreed that was the funnies **Filtered** ive read here!
Im sure JT is enjoying this thread , if he isnt hes in a coma !
Feedback Me
http://stargatewars.herebegames.com/vie ... 8&t=101259
User avatar
[BoT] Jason
Forum History
Posts: 10120
Joined: Mon Sep 29, 2008 12:37 am
Alliance: TA
Race: DIEDAYDIEDAY
ID: 13003152
Alternate name(s): Pimp,Slenderman
Location: Right behind you

Re: Accounts on vac mode hacked.

Lithium wrote:dude its not day 1
that was posted a hour ago
Pimping

Feb 06, 06:16 Field Marshall Attack defended 15 88,977,968 0 x,x62,635,278,400 900,114 details

| | Hero of the Year | |

Winner: BMMJ13
User avatar
Caprila
Grand Master of the Inquisition
Posts: 2527
Joined: Mon Aug 27, 2007 4:51 am
Race: Immortal

Re: Accounts on vac mode hacked.

Lithium wrote:adding info regarding a forum account hack due trades

viewtopic.php?f=130&t=155262


Norbe wrote:LOL. Okay I can see you all being suspisous of Elite here. I can 100% guarentee this is him that posted it and he is not out to scam people. Whilst I applaud you all for pointing out what he has said to you and treating this suspisously, in this case and this alone you need not have. It is legit.

If you need further details PM me either me or Elite.

~Norbe~


Be careful of making accusations with no evidence.. not everyone issue/misunderstanding is due to the hacking.
Image

“Any fool can know. The point is to understand.”
Locked

Return to “For Admin Archives”