Member
Posts: 112
Threads: 18
Joined: 2009-08
Tikey Wrote:I don't know if this will help anyone in Broa in spite of these so-called keylogged items, but here are some of my items to look out for:
The prices are low, and it's actually tempting to buy them.
I know the feeling. I followed my hacker for a few days, watching him sell off my items slowly. They kept getting cheaper and cheaper, it was depressing. Friends offered to buy them back, but I declined. Didn't want them to support his cause, even if it meant not getting my items back.
Senior Member
Posts: 329
Threads: 7
Joined: 2008-07
Can't wait to see how/when/if Nexon is going to react/respond to this.... :o
well, in the mean time why not get pumped for diablo 3
Junior Member
Posts: 13
Threads: 1
Joined: 2009-07
This really is the last straw for me. I did everything right, never shared info, never went to sites and I have lost about 1/3 of my wealth. Now I'm trying to sell what I have and quit and because things are so cheap now I can't sell for a decent price. I suggest everyone quit, it's the only way Nexon will hear us...I cannot continue playing, what's the point of investing ANYTHING into something that could go poooooooof at anytime?
Senior Member
Posts: 565
Threads: 20
Joined: 2009-03
Gender: Male
Sexual Orientation: Straight
Country Flag: Illinois
Server: Broa
Level: 14x
Job: Buccaneer
I logged in after the Aran patch and to my horror, found myself hacked. All my wealth and items gone. I thought I did everything right but as I can see something went horribly wrong. Guess I'll just keep playing Aion til nexon comes up with a solution... Sometime in the next millenium.
Posting Freak
Posts: 2,969
Threads: 56
Joined: 2009-07
So basically, now that they have my username, even though I changed my pass and pin, I'm screwed forever?
Posting Freak
Posts: 18,970
Threads: 319
Joined: 2008-07
DualReaver Wrote:So basically, now that they have my username, even though I changed my pass and pin, I'm screwed forever?
Until those authenticators come out anyway.
Posting Freak
Posts: 10,979
Threads: 369
Joined: 2008-10
DualReaver Wrote:So basically, now that they have my username, even though I changed my pass and pin, I'm screwed forever?
If they really wanted to get into your account again, yes. Though they still have to break your new password and pin.
Won't Be Coming Back
Posts: 1,586
Threads: 149
Joined: 2008-07
Wow, Nexon's really going down the poop hole. Glad I don't play anymore, but I wish the best for all those who are getting hacked...
Posting Freak
Posts: 5,136
Threads: 50
Joined: 2009-09
I really wish I knew my birthday and my last name for this account.
Posting Freak
Posts: 2,969
Threads: 56
Joined: 2009-07
Sigh, now I'm afraid of even attempting to rebuild. I made an 8 int 1 slot Blue Napoleon off of some scrolls the guy left, but I don't even know if I should attempt to sell it and live anymore.
Senior Member
Posts: 345
Threads: 36
Joined: 2008-07
2010-01-18, 07:05 PM
(This post was last modified: 2011-07-13, 01:26 PM by Hiepocrite.)
.
Senior Member
Posts: 402
Threads: 3
Joined: 2008-09
Gender: Male
Sexual Orientation: Straight
Country Flag: usa
Hopefully, if they do admit it was their fault they'll try to compensate players by doing the following:
- Confirm people were infact hacked.
- Help the player create a new account (after verifying they are accessing from the most frequently used IP address, or MAC address if that's recorded by Nexon's servers)
- Get authenticators
- Make showa mobs and a number of other mobs drop cursed scrolls in place of the usual 10 or 60%s.
- lots of 2x exp and drop events
- Give the new account a free permanent pet, free looting items, and depending upon the level of the character that was hacked, give them 1-100 million mesos, a 30 day 2x-10x exp card, and 2x-5x drop card (time slot will be decided by the player after speaking with the GM. As long as you don't access the Cash Shop after something is gifted to you, it supposedly doesn't begin losing time until you actually go into the cash shop). Also the cards will stack with the 2x exp events, or 2x rep.
- Discount the regular 2x exp and cards for those players who weren't hacked, so they don't feel alienated.
- Discount AP Resets to the 1$ per much like they were last summer.
Gonna happen? Probably not a chance in hell.
Posting Freak
Posts: 2,969
Threads: 56
Joined: 2009-07
Schrono Wrote:Hopefully, if they do admit it was their fault they'll try to compensate players by doing the following:
- Confirm people were infact hacked.
- Help the player create a new account (after verifying they are accessing from the most frequently used IP address, or MAC address if that's recorded by Nexon's servers)
- Get authenticators
- Make showa mobs and a number of other mobs drop cursed scrolls in place of the usual 10 or 60%s.
- lots of 2x exp and drop events
- Give the new account a free permanent pet, free looting items, and depending upon the level of the character that was hacked, give them 1-100 million mesos, a 30 day 2x-10x exp card, and 2x-5x drop card (time slot will be decided by the player after speaking with the GM. As long as you don't access the Cash Shop after something is gifted to you, it supposedly doesn't begin losing time until you actually go into the cash shop). Also the cards will stack with the 2x exp events, or 2x rep.
- Discount the regular 2x exp and cards for those players who weren't hacked, so they don't feel alienated.
- Discount AP Resets to the 1$ per much like they were last summer.
Gonna happen? Probably not a chance in hell.
Only problem is that I'd prefer a 148 Paladin with 0 money and no equips than a whole new character with a bunch of perks. I have grown in my server with this IGN, and nobody is going to take my friends away from me.
Posting Freak
Posts: 5,136
Threads: 50
Joined: 2009-09
Hiep Wrote:Last Name
1) Log in to the account that you want the last name for.
2) Go to the referral window and put your email into the "Friend's Email" box. It doesn't matter what you put into "Friend's Name".
3) If you get an error, try again.
I don't I can tell you how to get your b-day though.
I don't see a referral window *has bad eyes*.
Posting Freak
Posts: 1,518
Threads: 40
Joined: 2008-08
2010-01-18, 07:21 PM
(This post was last modified: 2010-01-18, 07:24 PM by Typhoon.)
PirateIzzy Wrote:I really wish I knew my birthday and my last name for this account.
Do what Hiep said above. As for birthday, you're basically screwed unless you use a Bday cracker.
Or this for last name:
1. Go to Events page
2. Click any event
3. Scroll down to where you see a place to enter an Email and name
4. Enter your own email and any name and send
5. When you receive the email, it will say your first and last name you used to sign-up with.
buddypine Wrote:This really is the last straw for me. I did everything right, never shared info, never went to sites Unfortunately, Nexon gives everyone a Maple Tip in game that says you should choose your password carefully with numbers and letters, and change it periodically. If you haven't been hacked yet, and haven't changed your pass in the last week or so, go change it now.
Posting Freak
Posts: 5,136
Threads: 50
Joined: 2009-09
Typhoon Wrote:Do what Hiep said above. As for birthday, you're basically screwed unless you use a Bday cracker.
Or this for last name:
1. Go to Events page
2. Click any event
3. Scroll down to where you see a place to enter an Email and name
4. Enter your own email and any name and send
5. When you receive the email, it will say your first and last name you used to sign-up with.
Will it work if I send to another e-mail too?
Posting Freak
Posts: 1,518
Threads: 40
Joined: 2008-08
PirateIzzy Wrote:Will it work if I send to another e-mail too?
Yes.
Posting Freak
Posts: 5,136
Threads: 50
Joined: 2009-09
It doesn't send the message instantly, does it?
Posting Freak
Posts: 1,518
Threads: 40
Joined: 2008-08
PirateIzzy Wrote:It doesn't send the message instantly, does it?
Not sure how long it will take. Just keep checking back, and check your spam boxes as well.
Senior Member
Posts: 379
Threads: 27
Joined: 2009-07
Here's something I've been thinking about. I'm still in the process in gathering data. Right now we're suspecting someone is cracking MD5 hashes, but this also applies to any encryption employing hashes. What you want is a 'strong' password. This is sort of ironic since the whole epidemic might have been prevented (but not forever) if the so called exploit is via hash match-up.
Maple allows passwords up to 12 characters long, so symbols are allowed as well. I'm not sure if it was changed somewhere along the line, but I know a lot of people only use letters and numbers, because some other corporations exclude the use of symbols to prevent possible SQL injection and loophole exploit because %, ', ", _, are used for operators in a lot of languages. I don't know which ones Nexon rejects, if any, but supposingly all are allowed, that's 47 keys + shift lock = 94 different possible character. Since 12 letters are maximum, that lead to 94^12 combinations ~ 2^78.655 (ln(94)/ln(2) x 12 = change of base) which rougly translates to 78 bits of protection. 11 letters will be 94^11 ~ 2^72.1, which is 72 bits. Each bit double the protection in basic bruteforce term because it takes twice as long to check all combinations. Of course this is assuming the bruteforce method uses all 94 ascii for checkups, which might not be the case so symbols are highly recommended as of now, unless there are dominant cases where passwords with symbols are cracked or bypassed. 128 bits security is slowly become unsecured, with maple only allowing maximum of 78 bit true protection, you want yours to be high as possible don't you? (This is all assuming passwords are stored as MD5 hashes)
You may also want to do a short hash lookup with your new password, since MD5 is not collision-free, meaning there might be more than one password/passphrase/key that will generate the same hash, even though the occasion is extremely rare. More is detailed on previous pages as to how to go on about checking. If you want a password that you can remember easily, you can simply concatenate random symbols somewhere within your existing password to make it full 12-character length. Except I would suggest changing it to a whole new one, and simply not rely on the avalanche effect that MD5 has.
|