I'm glad I'm looking into other games right now.

Yet another SXR member has been hacked and gutted of all gear. That's MC5 chip number 4 gone. Thanks a fucking lot whoever you are you ignorant 12 year old prick.

The email address was changed to rento_webex69@hotmail.com. How fucking cute. They didn't delete the character this time. KK *might* roll them back and they'd get their stuff back. But now they just had them gutted of all their stuff and left dead in Plaza 1. Like 100k in fuckign credits is going to replace the ENTIRE setup of a capped (but INT of course) APU.

This was a player who changed their password weekly, was *not* an account sharer, and was one of the many of us who checked their email address registered at https://www.neocron.com/account/ regularly now thanks to the paranoia brought on by this god damn asshole. We don't save passwords anymore with the stupid box. We don't share passwords anymore. He does everything I can do to prevent being hacked. So I guess I'm up shit creek too then, eh.

Guess who's about to pack their bags and taking 50 people from Neocron with him?

To this fucking pansy-ass little fag of a hacker who doens't have the balls to fucking play the game as it was intended and instead attacks in the only way he can since he's obviously a sore loser and a shit player in the game...

FUCK YOU

fucking hacking pricks.

had my account hacked a while ago so i know how much of a pain it is.
:(

BASTARDO HACKEROS!

Y'know i'm sooo incredibly pissed right now...

But just as a 'friendly' reminder, everyone might want to check their email addresses in the account.

And wouldn't it be nice of KK to get the IP that created that bullshit email address? Aou know they won't tho. Not a fucking thing will come of this. Except another 100k out of the pockets of the GMs.

man that sucks, phiber yesterday and george dawes today :(

Anything that he needs i _can_ replace, ill have a full tank kit spare in a few days if he needs stuff to continue on with it

Disappointing to say the least.:(

Originally posted by -FN-

To this fucking pansy-ass little fag of a hacker who doens't have the balls to fucking play the game as it was intended and instead attacks in the only way he can since he's obviously a sore loser and a shit player in the game...

FUCK YOU

now really, you think thats gonna make him stop???

If i were you, i wouldnt assume this is some guy you "pwned" ingame, my guess is its somebody in your clan, who knows all members of the clan or possibly a ex-member. Because if this guy kept a close eye on his account to make sure this didnt happen, ie. changing passwords every week. How do you think the hack got the password??

unless your entire clan is using exploits with keylogers in them or backdoor trojans (im not saying you do, its really the only other way he could hack sooooo many of you).

the guys has to know something about your clan, the comm system you guys use if any, email addresses, account names, ect. ect.
and the only way i see someone getting that kind of data they would have to be in the clan or a ex-member.

[EDIT] IMO you shouldent trust anyone even if they are a clanmate.

Originally posted by Disturbed021
Disappointing to say the least.:(

sorry to hear it FN. Hope things work out whatever you decide to finally do.

https://www.neocron.com/account/ throws up an error in my browser saying the site isn't trusted. Did they change thier certificate?

I can replace anything APU wise as well. But what irks me... right now... sooo much... is this is the fourth god damn MC5 chip, and this one is a DS....

good fucking luck replacing a DS.

Tell me, when the the FUCK, after HOW MANY FUCKING HACKS, is KK gonna get a god damn clue and start LOGGING SHIT!?

What IPs Logged this account in the past 24 hours? Who did this account last trade with?

I put the 100k they'll offer on the fact they they don't have a damn record of any of that. How many people have to be hacked before they REALLY give a shit?

People who have been hacked CHANGED their passwords. People who have been hacked FIXED the associate email. So please, tell me, how the hell ISN'T this KKs fault?

Originally posted by -FN-
So please, tell me, how the hell ISN'T this KKs fault?

The devil was involved... therefore no fault can be placed on KK... they were under the influence of money, sex, drugs, satan, and Sir Elton John... no, he has nothing to do with satan, I just thought throwing him in would be funneh...

Originally posted by Seezur001
[B]now really, you think thats gonna make him stop???


Nope. I'd like him to hack my account. Then, when someone finds out who he is, I can come beat the living fuck out of this fag. There's some evidence for court when this punk turns up in a hospital.

Yes, I'm fucking pissed. And I probably don't mean that, but if I found out today, I just might.

We share tons of info. What club we went to last night. Where we want to attack tomorrow. It's all on our forums. But account info, specifically account info for the hacked account in question, and other hacked accounts in the past, is *nod* on the forum. A password, if ever given out, is done over voice and voice only, but is very rare anymore since this dickless fuck has started his little crusade.

i feel for ya, thats the worst nitemare of any online gamer.
Come on KK, do something about it, it happens too often now
O_o

Originally posted by Deanus_willis
i feel for ya, thats the worst nitemare of any online gamer.
Come on KK, do something about it, it happens too often now
O_o

I've been hacked twice for sure (maybe three times). I don't use third party programs simply because I can't trust them. I have a considerable amount of information on MY computer that would entice any hacker.....so why not go for that information instead of NC info? I'll tell you why. Because they are NOT hacking my computer. They are hacking from the Neocron end.

Here is the sad fact of the matter. KK CAN find these hackers. I am almost possotive who it is. THEY DON'T CARE!! The only thing they care about is your money. As long as they can keep in playing the game and paying that monthly bill they are satisfied....they don't WANT to make security measure, they don't WANT to add IP addresses to login, they don't WANT to add specific item numbers for rares......it's not that they CANT give a shit, it's that they don't WANT to give a shit.

I had an account hacked, the password was definately NOT retrieved from my end, my PC is locked up as tight as possible (hardware firewall, software firewall, port monitoring, etc).

Did I bother to report it, nope, didnt see the point, a naked char with no apts / implants / items is of no use to me.

The amount of hackings going on is a real concern though :(

I saw Him kill himself in Plaza 1 guess it was the Hacker.. also he said "MUMBLYFISH is next"

PLEASE GOD.. I hope not, thought i better warn you guys:(

http://www.synergyxr.net/images/hackedletter.gif

I take it this kid is referring to his little "letter" on our forums. Awwww, did he have his little feelings hurt again :(

SuXoR wasn't nice to him.. whaaaaaaaa, I'm a pussy and can't earn any respect for myself. Stop hiding oh Mr. Holier Than Thou. I guarantee you this person doens't even have a set of balls or they wouldn't be hiding and hacking shit since it's all they can evidently do.

And ghandi has a great point. All the people who have been hacked.... don't you think they have MORE VALUABLE SHIT on the PCs than fucking Neocron login info?

KK has had more opportunities than I can count to catch this pissant. I'm not going to be surprise if they're "still implementing" something or some such BS.

THIS IS F**KIN REtarded :mad: KK have enough evidence to track this f**ker downO_o GET YA FINGERS OUT YA ASS KK AND DO SOMETHING:o

Originally posted by ghandisfury
I've been hacked twice for sure (maybe three times). I don't use third party programs simply because I can't trust them. I have a considerable amount of information on MY computer that would entice any hacker.....so why not go for that information instead of NC info? I'll tell you why. Because they are NOT hacking my computer. They are hacking from the Neocron end.

Here is the sad fact of the matter. KK CAN find these hackers. I am almost possotive who it is. THEY DON'T CARE!! The only thing they care about is your money. As long as they can keep in playing the game and paying that monthly bill they are satisfied....they don't WANT to make security measure, they don't WANT to add IP addresses to login, they don't WANT to add specific item numbers for rares......it's not that they CANT give a shit, it's that they don't WANT to give a shit. While i'm sure every hacker in the world wants the special porn on your computer... (end of the required JOKE on ALL MY FRIGGIN POSTS CAUSE IM A WHORE! A FILTHY COMMIE WHORE! MUHAHAHAHA!)

Maybe KK actually CANT do it... not like "it will bog everything down" cant... more like "we cant pee inside our hearts without ripping open the chest cavity" cant... like its physically impossible for them... why? *shurg* all I know is that things look cool when in between *'s...

maybe KK, as you say, doesn't give two shits... thats what I think it is for most of the issues inside this game... they realized this project sucks and want to drain cash to work on the next one that they pray will somehow be attractive, even if it does indeed suck...

theres also the possibility that man-power is an issue, which is probably true to some degree since KK is a small operation, about as many people involved as your average gender change operation...

maybe they dont realize what is actually going on... maybe they have no IDEA hackers are running around nekkid in the streets with jello smeared all over their hair... I dunno how they couldn't, but, ya never know young lamb...

Technical limitations would be a possibility... but you'd think that they'd develop some kind of SIMPLE ASS method at the very least...

the fact is, we dont know... and we never will because KK has "need to know" policy with its users... and we never need to know...

Isn't it KK's Obligation to track these perps down, Surely they are breaking the law and so they have to find out who it is. I mean, they can find out piss easy. So doesn't this thread mean that they are now obliged to do something about it?
If not thats plain stupid, they have stolen from you and thats against the law :confused:

This is getting beyond a joke, thats 2 accounts hacked in 24 hours that we know of.

Originally posted by Ascention
I saw Him kill himself in Plaza 1 guess it was the Hacker.. also he said "MUMBLYFISH is next"

PLEASE GOD.. I hope not, thought i better warn you guys:(

Yeah, we'd try and check that but Mumbly is the ONLY PERSON WHO KNOWS HIS ACCOUNT INFO so none of us can. That's what fuckface is obviously talking about in his little love-mail.

@ NeoLojik - Yes, it is a big concern. It's been a big concern. But from everything I hear, GMs don't like SXR for some BS reason so I'm getting the feeling KK sits there and laughs each time we're hacked. Just hearsay, but hell, they sure don't *act* like they give a shit.

A starting point would be as easy as getting the IP of the person Ascention saw logged on at that time. It's not rocket science. It's people like this that make me hope karma exists so he gets his nuts bit off by a rabid boar.

Do SXR use Roger Wilco at all?

Thats a nasty situation. Sorry to hear of your troubles.

Originally posted by Deanus_willis
Isn't it KK's Obligation to track these perps down, Surely they are breaking the law and so they have to find out who it is. I mean, they can find out piss easy. So doesn't this thread mean that they are now obliged to do something about it?
If not thats plain stupid, they have stolen from you and thats against the law :confused:

actually... thats a very fucked up line... they dont really HAVE to... and it may or may not be against the law for them to not look in to it... it all kinda depends on how high the lawyers are and if anyone has ever had sex with mandy moore's dog... if she even has one...

and they really didn't steal anything from you... since... its still up in the air weither your account is your property or not... since your not allowed to sell them on ebay anyway...

will KK do anything? If the wind moves JUST right... maybe...

Originally posted by Ulle
Do SXR use Roger Wilco at all?

As far as I know the Roger Wilco exploits are in a recent release; SXR were hacked in another incident before they were found, weren't they?

Man this hacking cunt even had the nerve to email you from one of your own members accounts?

KK? Wake the fuck up and do something?

No SXR dont use roger wilco... we do use other voice communication software but in all my time on the SXR voice coms server I have never once heard someone utter their password.

No, we don't use RW. I read that alert tho, good to know. But we haven't used RW since the first week of SXR.

No third party programs have been used by any of the hacked accounts, including this most recent one.

We've all used the Flash Skill Manager probaly once or twice, but who hasn't? My registry is cleaned of all related NC info regularly as well. But it's fucking fruitless anyway since I DO NOT BELIEVE this hacking is happening on this end.

I expect you can add another hacked account to today's list as well. Mr. Hacker has a real-life adjustment problem and has the emotional state of a dysfunctional 4 year old. He's gone on quite the spree today.

What's funny is this account that was hacked is someone nearly capped, who *never* logs on except to fight at an OP battle then logs off so there's no substantial "you're not a nice person waa waa waa" to even back this hack up. It's just mindless attacks by an obviously infantile kid.

Me learnt my lesson? pfft you think a little camel shagging fucktard like your self could stop me playing the game as I would like to... dont think so shit for brains, I just changed my name and carried on doing what I have always done, you cant stop me you might have all the power at your fingertips now but I bet your a weedy little Mr Muscle look a like, playing with your cock over pig sex.

SXR will not be phased over your little attempts at being a big boy with your huggies on, SXR will just keep on going doing what we do best, killing mindless twast like yourself... You "hacked" my acount twice, do it again, and while your at it, leave a witty little remark when you do it in my mail box, kthxbye

Ok, you don't use RW, however, the security problems have be raised with this program....you think the same problems could be with other similar programs? Bleh, who am I to speculate, I don't know how hacks work so I would'nt know what they could work though.....

Chances are they didn't use roger wilco or neocron bugs to get the account information. Chances are they went straight to the website www.neocron.com and used exploites in the not-updated software to extract the information from the database.

Originally posted by -FN-
This was a player who changed their password weekly, was *not* an account sharer, and was one of the many of us who checked their email address registered at https://www.neocron.com/account/ regularly now thanks to the paranoia brought on by this god damn asshole. We don't save passwords anymore with the stupid box. We don't share passwords anymore. He does everything I can do to prevent being hacked. So I guess I'm up shit creek too then, eh.

i really don't know how he did, i mean maybe it was an insider in your clan or something, but i personally wouldn't change my pw weekly and WOULD save the pw with the box because if he's using a trojan or some type of prog that logs your keystrokes he would have a better chance of seeing what your pw is. just a tip for future reference.

not sure which country you are in, but in the UK, we have the RIP act, Regulation of Investigatory Powers Act, you can find the details on HMSO (as with all laws), and there was some uproar about it, because it forced ISP's to keep data on people, i.e. every web site I've gone to, my ISP should have a complete and total log of, so if the police wanted to find out where I have been, they can do.

Now, if the same kind of thing is in germany, then somewhere along the line, between your computer and KK's servers, someone would be legally obliged to keep track of who is entering where, however, that makes no difference, what needs to be done is for KK to log every connection and/or IP address, or at least, Level 3 should have, but again, its logging into X account. Seriously, the hacking is getting out of control, and I seriously hope people like Journalists, or even KK's future publishers are not reading this :-/

/edit - just a thought, how secure are the MySQL databases on the website itself? I know the page is HTTPS, but what about the Database?

Originally posted by Lexxuk
Seriously, the hacking is getting out of control, and I seriously hope people like Journalists, or even KK's future publishers are not reading this :-/

/edit - just a thought, how secure are the MySQL databases on the website itself? I know the page is HTTPS, but what about the Database?

now now funny little Lexxypoo...

I hope future publishers for KK ARE reading this... maybe they will back out and KK will be FORCED to fix the "nagging" issues... this being one of them...

and, good luck getting them to comment on stuff that should be commonly known by all... let alone something thats supposed to be "hush hush, just keep blowing... i have a present for you..."

Originally posted by redjacket
"hush hush, just keep blowing... i have a present for you..."

you have a present for me? :D <3 /me bends over

seriously red dude, if people keep sayin "nc gets hacked twice a day" who in their right mind will sign up? No one, cept you and I, cause we're not of the right mind.

I love how we have to have these threads come up every couple of weeks talking about security, technoligies, and laws. I also love how nothing has been done about any of it.

Except every time, there's the "well it's must be you guys since it keeps happening to you". Well wake the fuck up. It happens to a lot of people. I, and some others in SXR, just happen to be a hell of a lot more vocal about it. I know of Dark, PIMP, FF, and even remember PIMP accounts being hacked (Pluto clans). Someone mentioned they didn't even report it when they got hacked. But you know what, I feel I HAVE to make as big of a deal of it as I can, in public, because nobody, esp KK, pays any fucking attention to the issue if I don't.

I seriously try hard to help the community. In every beta test survey I've filled out, community is the most important thing to me in an MMORPG. Without the community, in-game or forum, the game is so without weight. I hope some people will recognize that and not see me as a hateful, disrespectful person, but on this topic, I can't help but lose my top.

Originally posted by Lexxuk
you have a present for me? :D <3 /me bends over

seriously red dude, if people keep sayin "nc gets hacked twice a day" who in their right mind will sign up? No one, cept you and I, cause we're not of the right mind. *slap*

aye... i understand lexx... but at the same time, no one really wants to play a game where KK hides the truth/does nothing/downloads porn all day... I'd like them to fix the issues, but if they continue to work out their "sitting" muscels, i'd rather the hamster be let out of the rectum... wouldn't you?

btw... seckzi you is...



Originally posted by -FN-
I love how we have to have these threads come up every couple of weeks talking about security, technoligies, and laws. I also love how nothing has been done about any of it.

Except every time, there's the "well it's must be you guys since it keeps happening to you". Well wake the fuck up. It happens to a lot of people. I, and some others in SXR, just happen to be a hell of a lot more vocal about it. I know of Dark, PIMP, FF, and even remember PIMP accounts being hacked (Pluto clans). Someone mentioned they didn't even report it when they got hacked. But you know what, I feel I HAVE to make as big of a deal of it as I can, in public, because nobody, esp KK, pays any fucking attention to the issue if I don't.

I seriously try hard to help the community. In every beta test survey I've filled out, community is the most important thing to me in an MMORPG. Without the community, in-game or forum, the game is so without weight. I hope some people will recognize that and not see me as a hateful, disrespectful person, but on this topic, I can't help but lose my top.

I completely understand... and its sad that nothing will come of this as well... maybe one day when all the lamers are killed in a cleansing fire, we will all be saved...

see, genocide isn't right... but killing only stupid people... theres a REAL idea...

Fucking insane. Please look into this KK.

we all know I'm sexy red :p and yes, KK shouldnt hide problems, they should fix them, out in the open and say "WE HAVE FIXED THEM!", ideally before they get their ass's sued (its a no win, no fee culture in the UK now, anyone can sue KK and if they dont win, they wont pay a penny).

If you read this thread.

http://forum.neocron.com/showthread.php?s=&threadid=81678

its a link to something that was on a clan forum somewhere, with "omg, i wish i could hack so I could hack lexxuk!" etc.. followed by "ohh, i know someone" so this shit does happen, and KK should be taking the hard line of public prosecution, yes red, prosecution, not prostituion, cant imagine Odin standing on a street corner charging $150 an hour :p

Originally posted by Lexxuk
and KK should be taking the hard line of public prosecution, yes red, prosecution, not prostituion, cant imagine Odin standing on a street corner charging $150 an hour :p Odin? $150 an hour? maybe 25... but... 150? Little extreme...

anyhoo... sick comments aside for about... 2 seconds... I'd like you to wax my balls (bowling balls, you sicko's)

I do agree tho... too many people have said they've been hacked... i doubt its bullshit... -FN- isn't a homo (not to mean he doesn't like it in the ass... i mean more along the lines of a lamer, retard, spaz, idiot, joker, someone who must die, ect...) but to not hear ANYTHING from KK is... downright... wrong, man...

/me goes and hugs a tree... and weeps for the children...

think of the little ones... *cry*

Originally posted by -FN-
I love how we have to have these threads come up every couple of weeks talking about security, technoligies, and laws. I also love how nothing has been done about any of it.

Except every time, there's the "well it's must be you guys since it keeps happening to you". Well wake the fuck up. It happens to a lot of people. I, and some others in SXR, just happen to be a hell of a lot more vocal about it. I know of Dark, PIMP, FF, and even remember PIMP accounts being hacked (Pluto clans). Someone mentioned they didn't even report it when they got hacked. But you know what, I feel I HAVE to make as big of a deal of it as I can, in public, because nobody, esp KK, pays any fucking attention to the issue if I don't.

I seriously try hard to help the community. In every beta test survey I've filled out, community is the most important thing to me in an MMORPG. Without the community, in-game or forum, the game is so without weight. I hope some people will recognize that and not see me as a hateful, disrespectful person, but on this topic, I can't help but lose my top. Phiberdelic Phreaker in my clan just got hacked yesterday. :( And he is the usual paranoid secure computer type guy. In addition to whats happening with SXR I am certain that the hacking is being done on the www.neocron.com side of things.

Did he share his account with some one? I have noticed that lots of people who have their accounts hacked share the account with some one.

Originally posted by -FN-
Nope. I'd like him to hack my account. Then, when someone finds out who he is, I can come beat the living fuck out of this fag. There's some evidence for court when this punk turns up in a hospital.

Yes, I'm fucking pissed. And I probably don't mean that, but if I found out today, I just might.

We share tons of info. What club we went to last night. Where we want to attack tomorrow. It's all on our forums. But account info, specifically account info for the hacked account in question, and other hacked accounts in the past, is *nod* on the forum. A password, if ever given out, is done over voice and voice only, but is very rare anymore since this dickless fuck has started his little crusade.

what voice program do you use??? he could have been exploiting that, the only way for him to know what program is to be in the clan. im sure there are other ways but for this fool to target only you guys, and to get alot of you, seems to me he might be somebody close

[EDIT] BTW for someone to get access to a account password it dosent have to be said, typed or stored in any physical manner. Also you SXR guys need to make sure your forum account names and passwords are different from you ingame Name and pass.

because dude could just be exploiting IE to get forum p/w then using that to gain access to your ingame account.

there are many ways this guy could be doing it, and i seriously doubt he is hacking the neocron DB, considering its behind a pretty serious firewall i really dount he would go through all that just to hack a game account.

SXR, do you guys know of any guy that you really might have pissed off in-game? In the past at anytime. I mean like soemthing big you did.


I just don't get it. It's odd that this guy got this pissed off by ONLY sxr if SXR didn't do anything too serious to him. How has he NOT been "pissed off" by anyone else then?

I really wanted to post a really long rant in the same vein as FN did, but this sickens me so much I am, really, crying. As in tears crying. Sigh... this is so depressing...

And this time he even had the gall to write an ingame mail. Come on... fucking hell this is fucked...

shit...

3 of our acc's got hacked too... like 1 or 2 months ago tho =(

.cy

I`m sorry for what happened to your clan FN, it really sucks.

I got a question for you techies out there. If I wanted to hack a persons account, how would I be able to find the ip for the computer of some in-game character? How do one make that connection?

I`m asking cause the attacks are very focused on a certain group. I`f I was gonna put out a trojan for some reason other than getting neocron account information it wouldnt matter who it infected right? I would have a large target group. But for this, someone going only after neocron accounts, doesnt this require that you know who to attack? And if its possible to make that connection, why cant it be done in reverse to find out who has done a hack?

Sorry if its silly questions, I know very little about this, thats all.

Currently I'm really HOPING KK has been wise enought to harden the security with MySQL in disabling the ability to make network connection to it outside the server.

If not, then we all are fucked.

Sorry to hear this has happened to SXR, again. KK really needs to hire an outside security consultant to check out if their network is vulnerable.

// Wannabe

I honestly dont know why someone has a beef with a clan, i feel for you guys. A clan mate had this problem quite a few times but eventually it got sorted....

Just remembering something that happened a while ago ingame, when sxr owned tyron but when it got hacked all clans got the message except for sxr which was unfair to say the least and we're all discussing this ingame. I hope you guys can get this sorted because this is getting beyond a joke, KK help them out or you WILL lose as FN said 50 of his clan members.

Hope it gets sorted FN

how do they do it? it seems like ppl have no defence against a determined hacker who knows what they are doing?

Originally posted by Mirco
I`m sorry for what happened to your clan FN, it really sucks.

I got a question for you techies out there. If I wanted to hack a persons account, how would I be able to find the ip for the computer of some in-game character? How do one make that connection?

I`m asking cause the attacks are very focused on a certain group. I`f I was gonna put out a trojan for some reason other than getting neocron account information it wouldnt matter who it infected right? I would have a large target group. But for this, someone going only after neocron accounts, doesnt this require that you know who to attack? And if its possible to make that connection, why cant it be done in reverse to find out who has done a hack?

Sorry if its silly questions, I know very little about this, thats all.

well you dont have to have a IP to hack someone's account, just a user name and password. since none of these guys are experiancing data loss or the like, a trojan prolly isnt the answer. A keylogger on the other had can be setup to send you the keystrokes in a email, so the hacker gets a text file of all keys pressed in a certain amount of time on his doorstep, no ip is needed for this.

the guy probably is using a keylogger, easiest way to do it. now the question is how did the SXR's who got hacked get the logger, a cheat program is one way but probably not, they did mention that they use a comm program, so maybee a member of the clan is the hacker or is working for the hacker, and instead of DL'ing the comm software from the maker they downloaded it from said hacker who attached a keylogger to it. this is just a example of how he could have done it, not fact.

Now generally a hacker will use a trojan or backdoor virus to attack someone with a static IP (one that dosent change) becuase if its dynamic there really is no telling what ip the trojan has infected.

hope that helps a little

Our forum and in-game are not related. Passwords on the forum are not permitted to be the same in-game. We caught on to that wayyy back when all this BS started.

Passwords aren't shared anymore. If for some reason someone needed to log someone else, those two ppl would move to a private channel, work out a temp pass and that would be that. Coo and I, real life friends, have done that in the past.

And it's not just us as I said. There are 2 other incidents reported today that are not in SXR.

Fact is, the account hacked today had the password changed a day and a half ago and nobody else knew it. His email address was also not rento_webex69@hotmail.com a week ago.

I can't stress this enough to KK how unfuckingbelievably paranoid we have ALL been since this started. We cannot do anythign else as players.

If this were his fault, don't you think his Alts would be hacked? Don't you think more important things than stupid video game logins would be hacked? Wake the hell up and get a clue.

It was the same thing with FN when he was hacked. I get the run-around asking if I use 3rd party programs, if I shared the password, blah blah blah. I'm a Systems Administrator with a degree in IT, A+ cert, Network+ cert, MSCE cert, working on CCNA, a decade of computer and network system security under my belt, and at the time, had the ability to log up to 8 different characters and generally did each night.

Yet it's my fault because ONE character of mine was hacked. Right.

--

@ Seezur001

Like I said, if it were a key logger, why would NC info be stolen when there's more valuable data? Why only one account and not the alts? Since the hacks many members have been using BlackIce and reputable programs of the like to prevent this BS from happening on our end.

Originally posted by -FN-
Our forum and in-game are not related. Passwords on the forum are not permitted to be the same in-game. We caught on to that wayyy back when all this BS started.

Passwords aren't shared anymore. If for some reason someone needed to log someone else, those two ppl would move to a private channel, work out a temp pass and that would be that. Coo and I, real life friends, have done that in the past.

And it's not just us as I said. There are 2 other incidents reported today that are not in SXR.

Fact is, the account hacked today had the password changed a day and a half ago and nobody else knew it. His email address was also not rento_webex69@hotmail.com a week ago.

I can't stress this enough to KK how unfuckingbelievably paranoid we have ALL been since this started. We cannot do anythign else as players.

If this were his fault, don't you think his Alts would be hacked? Don't you think more important things than stupid video game logins would be hacked? Wake the hell up and get a clue.

It was the same thing with FN when he was hacked. I get the run-around asking if I use 3rd party programs, if I shared the password, blah blah blah. I'm a Systems Administrator with a degree in IT, A+ cert, Network+ cert, MSCE cert, working on CCNA, a decade of computer and network system security under my belt, and at the time, had the ability to log up to 8 different characters and generally did each night.

Yet it's my fault because ONE character of mine was hacked. Right.

--

@ Seezur001

Like I said, if it were a key logger, why would NC info be stolen when there's more valuable data? Why only one account and not the alts? Since the hacks many members have been using BlackIce and reputable programs of the like to prevent this BS from happening on our end.

I dont hink its your fault, its the fault of some jackass kid with nothing better to do. Also with the education you have you should know that the NC DB are secure, if this punk is only after you nc account i doubt he would hack neocron.com just to get the acct. of you sxr char. It may not be on your end, but i can almost say for sure its not on KKs end.

You said it yourself, why take NC account info when there is more important data there. If he could hack the NC account DB, whats to stop him from getting the Credit Card used on the account????

This guy is obviously a script kiddie with nothing better to do, KK does need to help find him, becuase you and i know anyone smart enough to make a MMO has to be smart enough to log IP's. But just because you take proper precautions dosent mean it isnt on your side, blackIce is a piece of SOFTWARE it has holes.

now i ask this, any SXR member been hacked using a hardware firewall/router??

Originally posted by Seezur001
now i ask this, any SXR member been hacked using a hardware firewall/router??

Yes........me.

Originally posted by ghandisfury
Yes........me.


well its not impossible, was it before or after they encrypted the PW in the registry?

This recent account, yes, was behind a hw firewall. I am always behind a firewall as well.

The accounts that have been hacked are claimed "never safe" again. The hacker, until now, has been hitting the same accounts over and over again which makes me think he's found a way thru the script vars knowing he can fill in enough blanks to get through them.

Also, the Creditcards are handled through WorldPay, not KK. And knowing what I know about MySQL, there's less security in it than PostgreSQL or Oracle. MySQL is only as secure as the server it's on. Many MySQL servers can easily be bypassed with pass auth to run any code you want on it. Granted, I don't think the hacking is at that deep a level because there would be much more chaos then just targetting the players they have. But there is a common link between all of them, there has to be and one of those obvious ones in the neocron.com site. Not everyone uses the same skill guides and calcs or mods or whatever that launcher thing was awhile ago.

is there noway to log the ips that an account was accessed on? unless its a dynamic ip in which case it wouldnt really matter either, but u might be able to find out who has that ip on which specifc day i dunno

Originally posted by enigma_b17
is there noway to log the ips that an account was accessed on? unless its a dynamic ip in which case it wouldnt really matter either, but u might be able to find out who has that ip on which specifc day i dunno

That's one of the questions of the year. KK takes no stance on showing any level of responsitbility in any of this. It's not a threat, but as this trend continues, they will lose players. Players = Money. You would think they'd at *least* care about that.

I was also hacked twice and I dont use 3rd party programmes on my computer, I am also close to getting the same qaulifications as FN so I do know how to secure my computer and evenything to do with my computer and network, I have got A* grade BTEC ICT, A levels in IT which I am working on , A+ cert, Network+ cert, MCSA cert.

I know my shit when it comes to 3rd party crap, I know all about system support if theres a problem I know how to fix it 95% of the time, I dont go to learn these things and have one poxy little 12 year old get access to my computer, this is KK's fault and if not fixed then soon I see neocron being abandoned by 50+ members all at one time.

Originally posted by -FN-
This recent account, yes, was behind a hw firewall. I am always behind a firewall as well.

The accounts that have been hacked are claimed "never safe" again. The hacker, until now, has been hitting the same accounts over and over again which makes me think he's found a way thru the script vars knowing he can fill in enough blanks to get through them.

Also, the Creditcards are handled through WorldPay, not KK. And knowing what I know about MySQL, there's less security in it than PostgreSQL or Oracle. MySQL is only as secure as the server it's on. Many MySQL servers can easily be bypassed with pass auth to run any code you want on it. Granted, I don't think the hacking is at that deep a level because there would be much more chaos then just targetting the players they have. But there is a common link between all of them, there has to be and one of those obvious ones in the neocron.com site. Not everyone uses the same skill guides and calcs or mods or whatever that launcher thing was awhile ago.


this "never safe again" statement could also mean he has installed a keylogger somewhere as well, im not saying its whats going on, its just if someone got pissed about INGAME shit, he probably is a irrational kid who would be taking the easy way out, he obviously is a script kiddie, anyone who knows the first thing about hacking knows that IPs get logged, and they can trace you from the IP.

also did you check the fw logs of outgoing data? maybee some clues in there

[ edited for violation of the forum rules - trolling ]

Originally posted by MayhemMike
[ edited ]
Next time, how's about some fucking decency?

shit happens

[ edited for violation of the forum rules - flaming ]

LOL!!!!111ONE ONE ONE 5 WORDS

ah mikey, always showing off that brain of yours :lol:

Originally posted by MayhemMike
LOL!!!!111ONE ONE ONE 5 WORDS

LOL, not only are you a troller....but you can't even count :lol: :lol: :lol: :lol: :lol: :lol:

Originally posted by Ulle
Do SXR use Roger Wilco at all?
I am not SXR nor have every been , nor do I even know any SXR. I have never used a teamspeak program. I have one thing open while playing Winamp playing only internal mp3's I dont even use online radios. I close everything else out, and then check my processes so I have better CPU performance for Neocron playing.

PLZ explain my situation. Oh well fuk it, it happens again I'm outy, My account info contains my creditcard information which I'm not going to risk just to play a game.

Let's be completely objective here........everyone ASSUMES that the hacker used some sort of technical "hack" ie used technology(keylogger, trojan etc)

MOST security breaches, of ALL kinds (not just computers) occur when a HUMAN link in the chain breaks.

I am not ruling out an IT attack, but whenever I hear of a break in security I think firstly of the individuals who had access to the system (not just PCs, I mean the whole package including security concepts).

It is ALWAYS possible it was a clan member that did it. Sorry to breach a potentially sensitive area, but even your best friend IRL could be a suspect. Think thats BS? There are cases of "best friends" murdering people they knew from childhood because of a petty grudge which the victim probably didnt even think was significant. I am NOT suggesting your clan mates and RL friends are closet psychos, just saying illustrating how varied human life can be and how dark it gets. Some of the "victims" may not be telling the truth either. I AM NOT SAYING THIS IS THE CASE, MERELY ILLUSTRATING ALL THE ANGLES.

You HAVE to examine ALL possible avenues. Of course KK must reciprocate and do all that they can. If only one side makes the effort the community will never know the truth.

I SUSPECT that KK HAS investigated but for some reason if unable to communicate the results of that to you. It is inconcievable to me that a company making its money via the internet, whatever the product, would allow its security and hence financial viability to be called into question.

it was bob^^

Originally posted by Bob Monkhouse
Let's be completely objective here........everyone ASSUMES that the hacker used some sort of technical "hack" ie used technology(keylogger, trojan etc)

MOST security breaches, of ALL kinds (not just computers) occur when a HUMAN link in the chain breaks.

I am not ruling out an IT attack, but whenever I hear of a break in security I think firstly of the individuals who had access to the system (not just PCs, I mean the whole package including security concepts).

It is ALWAYS possible it was a clan member that did it. Sorry to breach a potentially sensitive area, but even your best friend IRL could be a suspect. Think thats BS? There are cases of "best friends" murdering people they knew from childhood because of a petty grudge which the victim probably didnt even think was significant. I am NOT suggesting your clan mates and RL friends are closet psychos, just saying illustrating how varied human life can be and how dark it gets. Some of the "victims" may not be telling the truth either. I AM NOT SAYING THIS IS THE CASE, MERELY ILLUSTRATING ALL THE ANGLES.

You HAVE to examine ALL possible avenues. Of course KK must reciprocate and do all that they can. If only one side makes the effort the community will never know the truth.

I SUSPECT that KK HAS investigated but for some reason if unable to communicate the results of that to you. It is inconcievable to me that a company making its money via the internet, whatever the product, would allow its security and hence financial viability to be called into question.


finally someone sees where im coming from.

95% of the time its somehow related to a person, ie a insider from the clan. Just because you have a firewall dosent mean you are protected. i dont trust anyone with anything that is remotly related to my account. neither should sxr especially right now, dosent matter if they are in the clan chances are he is a clan member.

Yes FUCK THEM

Originally posted by Seezur001
this "never safe again" statement could also mean he has installed a keylogger somewhere as well, im not saying its whats going on, its just if someone got pissed about INGAME shit, he probably is a irrational kid who would be taking the easy way out, he obviously is a script kiddie, anyone who knows the first thing about hacking knows that IPs get logged, and they can trace you from the IP.

We traced his IP when he posted on our forums a while back. Ended up somewhere in Mexico after many more hops than usual. Proxy server = very well hidden. Same goes for him logging into NC to use our characters, having an IP won't get us much when the number is "fake".

Our first assumption was an inside job. We did a lockdown, kicked the more unknown members and slowly lessened the security. Right now it's still much higher than it was.

I strongly believe the hacks are being done by a player on Pluto who knows SXR and the other big clans. That means he's reading this thread right now. You've probably fought him/with him in the past. And this person doesn't take kindly to be treated poorly, deserved or not.

I don't know what to say. I really don't.

This. Fucking. Sucks.

Someone out there is had a major fucking malfunction, and they know just enough to make life just that bit harder for others.

But then, it seems as if there is a larger problem, and I hope KK is looking into it. There are a few steps that need to be implented AS SOON AS POSSIBLE.


Unique item ID's. Even if they are only applied to future items.
The ability for a user to call up IP/Login time information for their account. They have a right to this information, and it would be of extreme use when tracking down events such as this.
The optional ability to flexibly RESTRICT the ip's/domain space that your account can be accessed from. With a ban list featuring known open proxies, new ones could be submitted.
The ability to log onto a secure https page and DISABLE your account during certain hours.


I'm sure more could be thought of, but at the moment I am seeing holes. With incidents like this seemingly on the rise, it is scary, and I hope the culture of denial does not continue.

Originally posted by Kr3Yc3K
shit happens

[ edited ]

Oh damn, then I hate to see whats going to happen to your sorry ass8|

Sorry to say this, but BoB Monkhomeowner has an extremely good point.




I think after so many hacks you would kinda start looking at your clanmates.


Sorry, I hate to say that but it could be true. :(

Several non-Shared Gang accounts were hacked back in our heyday. Money stolen out of the clan funds, rares stolen, etc.

Same deal as what happened to SXR. But since most of us were quitting at the time, we didn't really give a shit.

Damn hacked accounts has to suck big f***ing time :( I dont know what I would do if I get my account hacked and all the shit was gone..

But as many have said there could be thousands of possibilities for someone assuming they know what they do. But my idea of a "good" hacker dont do this kinda stuff tho. There is no such thing as a 100% secure computer 99% maby but there is still that 1% chance that someone is smarter or just sees things different to you and finds a way thru It has always been that way and probably always will be that way. I do understand how some ppl feel about getting hacked or no I dont understand it but I can imagine atleast, But you should not mock the guy who is doing this tho, he sure is getting a kick out of doing this shit and mocking just fules the fun for him. It could be someone you know. It could be a keylogger or any other trojan on your own computers, it could be a hole in neocron.com allowing him to access the password databases.

And never think that even if you got all the certs in the world that you are 100% safe from hacks/trojans/and other evil shit. That is the worst thing anyone can do.

But again my view of the real hackers dont do stuff like this, never hit me that a smart hacker would bother with theese kinds of stuff. It's probably some "script kiddey" that must have a grudge against alot of pluto ppl.

Some people are just morons, nuff said.

After reading this thread and what SXR people said about tracing that IP etc, I'm kinda sure I know who did it.

And I think FN knows also who did it. Perhaps you should read your forums again, and certain part there explaining "I was busted while hacking ...". Think who was person who MOST hated me from SXR thus could also delete my tank? Well, you know now who I am refering? 8|

lol...funnily enough i know who LV is on about!

Oh fuck... LVirus is right... and it ties in PERFECTLY with another post made by "misterqwerty" on the SXR forums stating...

"One last thing, everyone needs to stop coming up with all these theories about how they think these accounts were stolen.

It has NOTHING to do with hacking the NC servers. Nothing to do with 3rd party programs or registry stealing or unsecure websites."

Unless that's some SERIOUS fucking coincidence, I'd say you have your "hacker" labeled RIGHT now. I'd investigate immediately, FN. I think you guys could have this solved in a few days if this turns out to be right...

I don't care if you're the biggest prick in the world ingame...no one, and I mean NO ONE, deserves to have their account hacked and characters screwed over. Some comments by certain members of the community were way out of line here. o_O

This stuff has got me nervous now.

KK needs to make an official statement of some kind on this hacking and security issue.

Regards,
Jake Cutter

Originally posted by Jake Cutter
This stuff has got me nervous now.

KK needs to make an official statement of some kind on this hacking and security issue.

Regards,
Jake Cutter

Oh really? :( If this would happen to me I don't know what to do. If I'd lose both of my characters (and/or all of their stuff) then I would most likely quit. The hacker's name would be good to spread around these forums once it's sure who it was. I mean why should anyone protect such an asshole? He deserves it.

And for SXR, yes, there's few guys in your clan that I consider as annoying pesky little kids that would deserve a skullfuck and proper asskicking before letting them touch the keyboard. But as someone already said no one deserves this. I really hope the hacker get caught and gets his fucking ass drilled by an ancient mammoth! I wish I could help you :(

If you guys at SXR think you know who is the likely culprit I suggest you email as much evidence as you can to abuse@neocron.com. I don't know if phpBB has the facility to log the IP of posters (Some BB setups do, some don't), but that sort of information may well be worth it's weight in gold to KK in tracking this sad little freak down.

I'm kind of hoping this guy is US-based. That way when they find him KK can hammer him with the DMCA, which for a first offence carries a penalty of up to US$500,000 AND up to 5 years inprisonment, and repeat offenders can face up to double both of those.

I'd rather not get too far into this as I don't know any of the parties involved but :

1) You all have my symapthies. I'd be gutted if I were in your position.
2) Most hacks are not very technical as has been said. Never rule out internal threats.
3) Despite point 2 I'd say there is substantial evidence of a serious security issue at KK. My first guess would be a current or ex-employee with access to client info or KK systems. If I were KK I'd be carrying out a full security audit of all their systems at this point.


I have some questions too :

1) Can KK confirm the certificate status of their account page please? (The warning box is hardly reassuring even though it's perfectly normal)
2) Has anyone been hacked on servers other than Pluto? If so when?
3) Of those people on Pluto that were hacked, how many had non-lowbie chars on other servers and where any of them messed with?

This thread, once with some valid posts has degenerated into alot of name calling and slander. To -FN-, please make sure you contact the helpdesk and/or forward all important info you may have regarding the situation at hand.