Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
GM hacked?
Sarah Wrote:While I know I told you to, it's still kind of your fault for logging on, haha.
Oh, I told you to, but you shouldn't have anyway.
Jon! Stop listening to peer pressure!

But yes, there you have it. The account needed a PIN to login. We speculated last night that it may have required both a PIN and a PIC, but that is unconfirmed.
Reply
imjon Wrote:I'm late in posting this, but yes, the account required a PIN. This makes me think that the PIC of the account wasn't actually set yet. Anyway, I was IP banned sometime yesterday (I was out of the house most of the day so I didn't know I was ipbanned until around 10pm est). Soo... Good going Nexon. :|

Were all the accounts connected to your IP banned as well?


As for the PIN issue, isn't it a requirement to set a PIC on your first time logging in if your PIN is still active? What was it that happened with Fiel's account again? Someone reset his PIC, and it was reset back to the PIN system?

In other words, this person got on the account, reset the PIC back into a PIN, and then cracked that?
Reply
Spideyjvc Wrote:Were all the accounts connected to your IP banned as well?


As for the PIN issue, isn't it a requirement to set a PIC on your first time logging in if your PIN is still active? What was it that happened with Fiel's account again? Someone reset his PIC, and it was reset back to the PIN system?

In other words, this person got on the account, reset the PIC back into a PIN, and then cracked that?

This is were i believe the gm have a differ client than us. They probably only need a pin to login to the account. Seeing that the gm account is not use to logging on our client it saw the gm as a mapler who didn't set their pic yet.

The pic reset exploit was fixed a few days ago.
Reply
street Wrote:This is were i believe the gm have a differ client than us. They probably only need a pin to login to the account. Seeing that the gm account is not use to logging on our client it saw the gm as a mapler who didn't set their pic yet.

The pic reset exploit was fixed a few days ago.

This is plausible but there's also the fact the maple GMs are NEVER ONLINE and there's a good chance that he just hasn't logged in since PICs were introduced.
Reply
Sarah Wrote:This is plausible but there's also the fact the maple GMs are NEVER ONLINE and there's a good chance that he just hasn't logged in since PICs were introduced.

But here is the thing thou, the gm had to log on to maple to put the notice up right?
Reply
Sarah Wrote:This is plausible but there's also the fact the maple GMs are NEVER ONLINE and there's a good chance that he just hasn't logged in since PICs were introduced.

Except he had to have logged in to set the notice with his info, yes?
Reply
Eosian Wrote:Except he had to have logged in to set the notice with his info, yes?

We don't know how the system works. It could be that he just had to log into his account from the website admin CP. which would also make him copy-pasting his username/pass more logical.
Reply
Sarah Wrote:This is plausible but there's also the fact the maple GMs are NEVER ONLINE and there's a good chance that he just hasn't logged in since PICs were introduced.
Which is what I thought at first, until I facepalmed.
The GM couldn't have not logged in because they had to have been logged in to set the notice in the first place.

GOD DANGIT TRIPLE NINJA'D.
Reply
Sarah Wrote:We don't know how the system works. It could be that he just had to log into his account from the website.

Notices are world specific according to the database. It's possible, but it'd be one of the only things we've ever seen them manage without actually logging in-game, ie: more sophisticated than they normally demonstrate.
Reply
Eosian Wrote:Notices are world specific according to the database. It's possible, but it'd be one of the only things we've ever seen them manage without actually logging in-game, ie: more sophisticated than they normally demonstrate.

Anyway, point is that at this point we can't be sure of how their systems work. We don't know for sure that they use a different client, different PIN/PIC set-up, can't do things through the system, or that they ever log in except to play stupid events with us.

All we know is that at the very least, a PIN was necessary.

This also scares me. You'd think that with a GM account they would implement those... things. The keychain things with randomly generated passcode.
Reply
I'm subtley lol-ing. If you still play this game after these past, what, 3 months of bull pomegranate I am amazed...
Reply
Spideyjvc Wrote:Were all the accounts connected to your IP banned as well?

It's not the accounts that are banned at all. Just my IP. So I can't log onto any of NexonAM's products in my house.
Reply
Jon's ban was actually a great thing.

Jon got banned because he logged onto someone elses account. This means that Nexon keeps a log of all IPs as they access accounts, which means that technically they have no reason to not have the people who have been stealing from others accounts. It's been speculated that Nexon doesn't keep such logs, but clearly Jon wasn't on the account when Nexon took action, the hacker was, and that means his IP was logged.

Nexon has no reason to not be dealing with all hacked accounts in the same way, especially because we now know that they can.
Reply
Sarah Wrote:Jon's ban was actually a great thing.

Jon got banned because he logged onto someone elses account. This means that Nexon keeps a log of all IPs as they access accounts, which means that technically they have no reason to not have the people who have been stealing from others accounts. It's been speculated that Nexon doesn't keep such logs, but clearly Jon wasn't on the account when Nexon took action, the hacker was, and that means his IP was logged.

Nexon has no reason to not be dealing with all hacked accounts in the same way, especially because we now know that they can.

The issue is that, heavy handed as Nexon is, they're liable to screw that up as baddly as they're screwing up the CURRENT round of IP bans.

Take my situation for example. Main reason I still play Maple is because of all the IRL's I have that still play the game. I'll occasionally bring my laptop to their home(s) and we'll do a boss run or some such from there. Knowing nexon, if they started monitoring IP changes, there's a good chance that something would go horribly wrong in that situation or any number of other issues of traveling maplers. If on the other hand they were responsible about it and only started blocking IP's when wrongdoing was reported, then that might work. But frankly I don't have that much faith at this point...
Reply
Lumancer Wrote:The issue is that, heavy handed as Nexon is, they're liable to screw that up as baddly as they're screwing up the CURRENT round of IP bans.

Take my situation for example. Main reason I still play Maple is because of all the IRL's I have that still play the game. I'll occasionally bring my laptop to their home(s) and we'll do a boss run or some such from there. Knowing nexon, if they started monitoring IP changes, there's a good chance that something would go horribly wrong in that situation or any number of other issues of traveling maplers. If on the other hand they were responsible about it and only started blocking IP's when wrongdoing was reported, then that might work. But frankly I don't have that much faith at this point...
And then there's the fact that, if Nexon were to start doing this sort of thing, there would be people who would go out, make a new account, go to a new IP, transfer the stuff, and then report it as a hack.

It's not really something easily trackable.
Reply
imjon Wrote:It's not the accounts that are banned at all. Just my IP. So I can't log onto any of NexonAM's products in my house.

You can get past the ban.

Sarah Wrote:Jon's ban was actually a great thing.

Jon got banned because he logged onto someone elses account. This means that Nexon keeps a log of all IPs as they access accounts, which means that technically they have no reason to not have the people who have been stealing from others accounts. It's been speculated that Nexon doesn't keep such logs, but clearly Jon wasn't on the account when Nexon took action, the hacker was, and that means his IP was logged.

Nexon has no reason to not be dealing with all hacked accounts in the same way, especially because we now know that they can.

I thought this was confirmed long ago when they did the first MWLB applications and pretty much knew all of the accounts tied to your IP, including those that were banned.

In any case, it's not a problem that Nexon wants to use any manpower to enforce. In a situation like this, they use such force because it's an important account. Important accounts seem to be the ones that have the most luck when it comes to getting customer service from Nexon.
Reply
Spideyjvc Wrote:You can get past the ban.

I can't get my IP to change. LOL Sad
Reply
http://www.anchorfree.com has a program called hotspotshield. its called a VPN program (not to confuse with a proxy). anyways that program is free to use and doesnt slow your connection down, and encrypts your ip. i use it to logon to maplestory accounts made after the european block from inside europe, should work for your ip ban too.

this is not a hack or something, its just a program designed for traveling buisnessmen who want to encrypt their data/ip while loggin onto public wireless networks such as wireless networks on an airport.

this may be a temporairy sollution for you

edit: the downside to this program is that you can only stay logged on for 4hours. and occasionally (not that often) my connection does get slowed down if too many users us that thing at the same time, i have no idea how thats possible though. either way even then its not very noticeable, i go to horntail runs often with that program still running and no problems.

edit2: i even remember weird server laggs where literally everybody on the server (kradia) got disconnected, except for the people who used vpn. this happened multiple times. i dont know exacly what went wrong but it most likely has something to do with the fact that our data was encrypted and the other peoples data wasnt.
Reply
Lumancer Wrote:. If on the other hand they were responsible about it and only started blocking IP's when wrongdoing was reported, then that might work. But frankly I don't have that much faith at this point...

What about put it in the hands of the players - if you wish, you can set a whitelist of IPs that can log onto your account (home, friend's house, etc.). If someone off that list attempts it, it tells them the password is incorrect (or whatever) and it notifies you when you next log in. Just require going to the website, entering personal information & email confirmation to update the list when your IP changes, or if your IP changes too frequently just don't use it.
Reply
y0y0y0y0shi0 Wrote:And then there's the fact that, if Nexon were to start doing this sort of thing, there would be people who would go out, make a new account, go to a new IP, transfer the stuff, and then report it as a hack.

It's not really something easily trackable.

Sorry, I thought it was clear. It is easily trackable because I highly doubt the people mass-attacking accounts were changing IPs each time the logged onto an account. Look at all of the reports of being hacked, look at who accessed their accounts, look for similar IP accesses between them, track IP and report them to the proper authorities, reimburse account owner.

This would ensure that only people who were effected by the massive attack were dealt with. Some people would be missed, of course, but it's still a better plan of action than what they're currently doing which is nothing.
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)