Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Any recent hacked accounts from Southperry users?
[SIZE="1"]I believe I saw him say somewhere that he hadn't changed his password for a year or so.[/SIZE]
Reply
LittlePrincess Wrote:Had you changed your password since the server upgrade right before the patch? My guess is probably no - that seems to be the common theam, but I wanted to check and add more data.

I've started leaving my main accounts logged in 24/7 since one of my accounts got comprimised.

No, but others have said theirs had been recently changed.
It's not having what you want - It's wanting what you've got.
Reply
Eosian Wrote:No, but others have said theirs had been recently changed.

Wait, when you stated that, do you mean:

a) That the original owner (not the hacker) had recently changed the password
or
b) That the hacker had recently changed the password

I'm assuming you meant "A", I'm just making sure.
Reply
Actually both would be true.
At least one person has claimed pretty much everything in this thread.
B) wouldn't be contextually relevant though, would it?
It's not having what you want - It's wanting what you've got.
Reply
Eosian Wrote:Actually both would be true.
At least one person has claimed pretty much everything in this thread.
B) wouldn't be contextually relevant though, would it?

True, since once they have access to the account anyways, it's pretty much game-over. They still got access to the account, regardless of whether they choose to change the original-password or not. Hmm
Reply
LittlePrincess Wrote:Had you changed your password since the server upgrade right before the patch? My guess is probably no - that seems to be the common theam, but I wanted to check and add more data.

I've started leaving my main accounts logged in 24/7 since one of my accounts got comprimised. (Naturally I changed all my passwords.)

My GF had her account hacked into just a few days ago and she had just changed her password (but was a weak password) 2 weeks before. The timing for this (at least for her and some of the victims) seems to be after a patch of SC they gotten hacked.
Reply
Eosian Wrote:Looks like someone wanted me to eat crow -
45 minutes ago my Maple character was broken into while I was playing Mabinogi and they proceeded to drain every drop of NX on the account by buying a Maple Leaf for the exact amount in MTS.

Neither my pin nor pass was changed, my gmail log shows that the only person who's accessed my email account was my own static IP address, I haven't played maple in months, a keylogger wouldn't have my PIN, the password isn't a dictionary one and isn't one I used anywhere else. I haven't been to any sites that Phish, I haven't replied to any fake Nexon emails, I have no keyloggers, trojans, or similar anywhere in my network, I'm not playing via unsecured wifi (LAN all the way).

I'm pretty sure the only reason I have my equips still is I bought permanent locks for everything (or it's Reverse) and then hammered them when it came out and maxed out those slots too.

I have no idea what they're doing to get in, but admit I was mistaken; clearly something is afoot.

pomegranate, we're falling like dominoes. I'm still scratching my head at what possible scenario this could be, because I honestly feel that changing my password and PIN won't make a difference.
Reply
Same old reply: start a serious list and make Nexon notice, leave your account on for 24/7 and hope they don't have DC hacks.
Reply
Kalovale Wrote:Same old reply: start a serious list and make Nexon notice, leave your account on for 24/7 and hope they don't have DC hacks.

[SIZE="1"]Afk in MTS all day.

Hopefully your internet doesn't suck (like mine) and decides to disconnect you while you're asleep. :|[/SIZE]
Reply
Chirdaki Wrote:That sounds super funny as horrific as it is. Its like some gold farmer that doesn't know how to play or what?...

As far as I know my stuff did not show up in the fm, half my friends were heavy merchants and would have known the second my shield would have been put in a shop. You don't see that type of thing for sale.

Just to help out the ticket thing, I knew tickets submitted under harassment never get actioned as that's a no brainer. I was going to submit it under the proper category of Account Related until a friend talked me out of it. I submitted it under Website - > Downtime as such technical based tickets need to be read, after 9 days it was "escalated" and its been sitting there for 3 weeks now. I have added 5ish updates to it and the hacker who rehacked me added one, which I had to denounce. No further response from nexon its in the void. I work at a helpdesk so my patience is supreme in such regards but man,,, I can also tell what SHOULD be going on. They obviously have no service level agreements or policys in place to regulate this stuff.

Just to re answer some of the common questions that keep popping up, I can reference some people from khani sw section as I monitor that as well:
--doesn't seem to matter when the last time you changed your pw, I knew a few people who changed them then got hacked later that week. (Ratarata)
--people who haven't logged onto the site in months also get hacked
--seems to be older based accounts but that's not always true since Infinium just clarified his friend got hacked on an April 2009 account
--my 2nd page aran got stripped to if you can call it that, logged on and took the only thing of any worth off it, a white maple dana
--The rest is pretty much well covered, the only variances seems to be the means, pw or pin changed, some are some not. email hacked or not? Happening to accounts tried to free providers such as hotmail, gmail, yahoo and even some private ones, Aubog007 who's account was older then mine was just as secure as me, and had a private email.

There have been many many hacking epidemics in this game that goes in waves, but they have always been in game power levelers, fly hacks, vacs ect. Survived them all. Unless this happened before (only happened in MSEA to my knowledge) this is the only time accounts are being demolished. Almost every account hacked pre-december can be tied to some sharing account, keylogger, info snafu whatever.

dont know whether you got my PM on here, but that Detox dude was the one who had PM'ed a few people on SW their "new" account info after stripping their accounts. Don't know why he wouldnt have been banned earlier as one of those people was a staff memeber on SW.

I think, the more i think about it, we have to go by the general idea and disclude anyone who might have shared info. Try to find common threads among the others, because if you think about it, what better time to take advantage of "friends" then one you wouldnt likely be blamed for? If there is massive widespread legitimate panic caused by secure people losing their stuff, then if you knew someone's info, it would be simple for them to become "just another victim" and if thats the case (which, im sure to a degree it is) then a few odd details here and there wouldn't be that odd. I still think that database leak is unlikely, but that maybe nexon at some point created a partial list on usernames and passwords or something, and that got leaked. It does seem like mostly older accounts are getting hit. And thats at random, so just username/password/pin wouldnt tell anything about account profitability. This may be from some recovered data from an old harddrive nexon threw out when they "upgraded server hardware" or it could be an ex-employee. I've been told that, unless you physically destroy the harddrive, the data has a good chance of being recovered. Then again, im no expert and either seems like it should be something a company such as nexon could easily prevent.
Reply
A little off topic at the moment, but I can't believe that even with this kind of hacking incident going on, Nexon has a B+ rating while Blizzard has a B rating on the BBB! Time to file some more complaints?
Reply
If there was ever something to possibly "call to action", wouldn't this be it?

I mean seriously, what the pineapple do we have to do to get nexon to keep an EYE out for trouble at least... I run a business in real life and to act as if
nothing is wrong, telling your customers to wait (but not what they are waiting for) and doing nothing is just making people more upset.

I lost almost all that was worthwhile, 2 years of equips self made just gone... I am over that now though (and about $50 bucks more poor cause of locks I bought).
What I'm having trouble getting over is the thought that is will continue to happen to more and more people, all we can do is sit idle and watch.

I'm just waiting for the guy who said "I can't get hacked! You all must be fucking morons?!!" to get hacked. Then all hell is gonna break loose lol.
Reply
Nexon has always been protective of their BBB rating. Hmm, perhaps more should file complaints here.
Reply
I'm doing that asap once I get done filing my own paperwork for university today. I'll write up 10 fcking pages (for a complaint) if I must.
Reply
in order to come up with possible details for something or other, my account had 5 characters in demethos, they got rid of nearly every equip except for untradables (the only untradable I lost was my spearman's ultimate agent shoe, 50+ hours to get that piece of pomegranate in the trash) and an 8atk WG that was moved into my aran (it was on the spearman). I lost a few ETC items (basically items that had use, such as ludibrium warp scrolls) and every USE item on my account is gone. They only missed two scrolls that were on my aran's MTS transfer inventory. they even took my sin's icicles.
as for social engineering, I don't use facebook, myspace, I use msn but not the windows live messenger; I use pidgin, and I didn't receive any voice clips. I never expected something to happen so I never changedmy password ever since I made the account, which has to be pretty old since I'm an international user and nexon blocked my region from connection.
nothing at all could have tied anything from me to my username, since although it's not a randumb string of letters and numbers, it's not similar to any of my character's IGNs and stuff. they altered none of my account's information, and appear to have left my bellocan and mardia characters (which don't amount to much, really) alone. only my demethos characters were wiped.
the e-mail registered to it is a gmail account which has not been accessed or received any e-mail recently, not to mention that it's an e-mail I only ever used for the maplestory account; never used it for anything else.
Reply
Duelman Wrote:I'm just waiting for the guy who said "I can't get hacked! You all must be fucking morons?!!" to get hacked. Then all hell is gonna break loose lol.

several of them have been.
Reply
Honestly at this point I don't think it would be unreasonable to threaten Nexon with a gross negligence lawsuit. There's more than enough evidence against them (not just in this case, but overall) and that might seem a little extreme but at some point they really need to learn that they can't continue to treat their customers and players like garbage and need to be held accountable. We are entitled to a certain amount of security, regardless to what we agreed to in the ToS (I'm sure that if anyone went over it with a fine-tooth comb they could easily find something that is covered by the UTCCR) and at this time, no one is getting that security they deserve.

It's something I've thought about for a while because I'm so disgusted with the way they run their company but nothing as severe as this has ever been just brushed off by them for so long and it is cause for action.
Reply
MS is mostly played by kids and Nexon knows this, the likelihood of some kid taking them to court is remote and Nexon is banking on that. But if you had NX that were stolen, thats property theft regardless of what Nexon can do or in this case not do anything about. In the real world if this happens one can report to the police and "some" actions will be taken by them, but in a virtual world this is mostly untested but should still be cover by the same laws. So you don't really need to hire a lawyer and file a suit against Nexon, you should be able to get the law enforcement to investigate Nexon or at the very least get some negative media coverage to Nexon.
From various hacking posts on a number of different forums I had read. This makes me think its the work of some gold farmer(s) harvesting mesos, either with some inside help or actually have someone working inside Nexon.
Reply
ctblack Wrote:MS is mostly played by kids and Nexon knows this, the likelihood of some kid taking them to court is remote and Nexon is banking on that. But if you had NX that were stolen, thats property theft regardless of what Nexon can do or in this case not do anything about. In the real world if this happens one can report to the police and "some" actions will be taken by them, but in a virtual world this is mostly untested but should still be cover by the same laws. So you don't really need to hire a lawyer and file a suit against Nexon, you should be able to get the law enforcement to investigate Nexon or at the very least get some negative media coverage to Nexon.
From various hacking posts on a number of different forums I had read. This makes me think its the work of some gold farmer(s) harvesting mesos, either with some inside help or actually have someone working inside Nexon.

Basically the intent would just be to put some pressure on them. We all know Nexon cares a lot about how they're seen (BBB responses) and the threat of a lawsuit would be likely to make them act. Not to mention that, while according to their 'rules' our characters are actually their property, our personal information is not and they are putting everyone that they should be protecting at risk of all sorts of attacks by doing nothing. There's more than enough information through just this last year of negligence when dealing with consumers to make a strong case against them, even if there's no proof that something they've done (or haven't done) is responsible for these attacks.

It's extremely disappointing at this point that they haven't even made an official attempt to respond to those who have been hacked. An actual announcement would be a double-edged sword (would make people aware but nervous, could breed more social hackings, etc) but they NEED to do something.

Flooding the BBB with notices about this would be the first step since Nexon isn't responding to us. Everyone needs to put a lot more pressure on them instead of just accepting that they'll never do anything or falsely hoping that they will sensibly deal with this in time. They won't. They never have.
Reply
I lost about 8 or 9k of NX when I was attacked, after I'm off work I'll check to see what date that was (as if it matters). The hacker bought GfA 60%'s with them apparently..

On the filing a complaint category: Someone spell out what we need to do, and I'm on board to help out as much as I can. What is the best course of action at this point?
Reply


Forum Jump:


Users browsing this thread: 4 Guest(s)