Bay 12 Games Forum

Please login or register.

Login with username, password and session length
Advanced search  
Pages: 1 ... 4 5 [6] 7 8

Author Topic: WARNING steam mass hijack!  (Read 11824 times)

Alexhans

  • Bay Watcher
  • This is toodamn shortto write something meaningful
    • View Profile
    • Osteopatia y Neurotonia
Re: WARNING steam mass hijack!
« Reply #75 on: February 18, 2010, 05:19:37 pm »

If you want to see something scary, put
Code: [Select]
<a href="www.aaaaa.fake" onmouseout="window.status=''" onmouseover="setTimeout('window.status=\'http://www.bay12games.com/\'',0)">http://www.bay12games.com/</a>Into a .html file and open it. (Fortunately, it probably won't work on some browsers, and also, this example is harmless, but with little effort I could have made it link invisibly to a scam site that looks identical to the bay12games homepage. Worse, it could send you to the actual forum with some lingering keylogger, if my speculations are correct, and get you to log in.)

If that took me 5 minutes to learn how to do(Well, a bit of past javascript experience, plus googling for about 5 features, maybe closer to 10 minutes?), what could someone do with years of experience, months of research, and weeks to perfect it?
Qwerty... this is good but any decent browser still shows the real reference.

But most people will just click it without checking it out...

Phising mails in Argentina are EXTREMELY common.  most of them involve messenger live accounts. 

They all have the classic bait for stupid people like:
"Learn who blocked you"
"Read other people's conversations"
Application that will tell you who said they were in love with you.
etc, etc...

People STILL fall for that.  Hence, the reason why most of them become ignorant netbot babysitters. 
I've responded to those before- it is really quite amusing.
Unfortunately they start to realize you are only dicking with them after the first three or four emails :D
lol... Nice!  It never ocurred to me... I thought that they usually returned automated responses or something.  I need to try it out some time... XD
Logged
“Eight years was awesome and I was famous and I was powerful" - George W. Bush.

Sensei

  • Bay Watcher
  • Haven't tried coffee crisps.
    • View Profile
Re: WARNING steam mass hijack!
« Reply #76 on: February 18, 2010, 05:56:53 pm »

Mind, for some spam, replying will just confirm that they have contacted an active account. The spam will not stop.
Logged
Let's Play: Automation! Bay 12 Motor Company Buy the 1950 Urist Wagon for just $4500! Safety features optional.
The Bay 12 & Mates Discord Join now! Voice/text chat and play games with other Bay12'ers!
Add me on Steam: [DFC] Sensei

Virex

  • Bay Watcher
  • Subjects interest attracted. Annalyses pending...
    • View Profile
Re: WARNING steam mass hijack!
« Reply #77 on: February 18, 2010, 06:05:54 pm »

Mind, for some spam, replying will just confirm that they have contacted an active account. The spam will not stop.

Most kinds of spam don't stop in the first place, so there's little to lose there ;)
Logged

neudialect

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #78 on: February 18, 2010, 07:30:07 pm »

There ya go:
Czechoslovakia

Not in the US and I highly doubt anyone there cares, therefore the perpetrator will likely never get caught or in any sort of trouble.

Actually they DO care, it's not like you can't get busted for internet crime around here (or most anywhere else in the EU for that matter). They even go after claims of copyright infringement, meaning you can frame just about anyone ;D.

P.S.: Also it's been czech republic for like 20 years (not that anyone cares).
Logged

Sensei

  • Bay Watcher
  • Haven't tried coffee crisps.
    • View Profile
Re: WARNING steam mass hijack!
« Reply #79 on: February 18, 2010, 07:32:52 pm »

But... but I care about the Czech Republic and Slovakia...  :'(

Which is sort of silly because I've never been to Europe. Whatever, I suppose it's not as bad as people who call the United States just 'America'.
Logged
Let's Play: Automation! Bay 12 Motor Company Buy the 1950 Urist Wagon for just $4500! Safety features optional.
The Bay 12 & Mates Discord Join now! Voice/text chat and play games with other Bay12'ers!
Add me on Steam: [DFC] Sensei

Mephisto

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #80 on: February 18, 2010, 07:45:42 pm »

This is bull. I decide to install Steam for the express purpose of changing my password, which I had forgotten.

To change my password, I need to... know the last password that they assigned to me. Really? Who keeps that junk?
Logged

SHAD0Wdump

  • Bay Watcher
  • Hiding in SPAAACE!!!
    • View Profile
Re: WARNING steam mass hijack!
« Reply #81 on: February 18, 2010, 08:13:48 pm »

This is bull. I decide to install Steam for the express purpose of changing my password, which I had forgotten.

To change my password, I need to... know the last password that they assigned to me. Really? Who keeps that junk?
Peeps with common sense.
Logged

Mephisto

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #82 on: February 18, 2010, 08:27:42 pm »

Seeing as I kind of, you know, changed my password from the one they assigned me? Assigning someone a stupid "security" question like that is a bad idea. Are they going to eventually up the number so that I have to know all of my previous passwords to be able to reset my current one?
Logged

Cthulhu

  • Bay Watcher
  • A squid
    • View Profile
Re: WARNING steam mass hijack!
« Reply #83 on: February 18, 2010, 08:31:37 pm »

How did you login without knowing your password?
Logged
Shoes...

Duke 2.0

  • Bay Watcher
  • [CONQUISTADOR:BIRD]
    • View Profile
Re: WARNING steam mass hijack!
« Reply #84 on: February 18, 2010, 08:35:10 pm »

 Accounts for some places don't allow you to define a password on account creation, but assigns you a password through E-Mail notification while registering. From there one can simply paste the password in the password box and never use it again after changing it to whatever password system they use.

 The best bet is to check old E-Mails depending, on how old the steam account is. Otherwise, dammit Steam! That is a horrible security measure!
Logged
Buck up friendo, we're all on the level here.
I would bet money Andrew has edited things retroactively, except I can't prove anything because it was edited retroactively.
MIERDO MILLAS DE VIBORAS FURIOSAS PARA ESTRANGULARTE MUERTO

x2yzh9

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #85 on: February 18, 2010, 08:52:44 pm »

Why didn't you just change the password as soon as you registered to something easy to remember?

Jreengus

  • Bay Watcher
  • Si Hoc Legere Scis Nimium Eruditionis Habes
    • View Profile
Re: WARNING steam mass hijack!
« Reply #86 on: February 18, 2010, 08:56:21 pm »

Mind, for some spam, replying will just confirm that they have contacted an active account. The spam will not stop.
Use a second account, they send out so many e-mails they wont realise they never sent you one.

http://www.419eater.com/
Logged
Oh yeah baby, you know you like it.  Now stop crying and get in my lungs.
Boil your penis. I'm convinced that's how it happened.
My HoM.

Mephisto

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #87 on: February 18, 2010, 08:58:27 pm »

Accounts for some places don't allow you to define a password on account creation, but assigns you a password through E-Mail notification while registering. From there one can simply paste the password in the password box and never use it again after changing it to whatever password system they use.
Bingo. Sign in with their password when you created the account ages ago and immediately change the password.

RE: x2yzh9
I did change the password. I guess I thought it would be easy to remember at the time, but I guess not. The problem is that the password reset form has a security question. The security question asks for the last password that Steam support assigned me. As that was a year or so ago, I no longer have that particular email.
Logged

Alexhans

  • Bay Watcher
  • This is toodamn shortto write something meaningful
    • View Profile
    • Osteopatia y Neurotonia
Re: WARNING steam mass hijack!
« Reply #88 on: February 18, 2010, 09:05:44 pm »

Mind, for some spam, replying will just confirm that they have contacted an active account. The spam will not stop.
Use a second account, they send out so many e-mails they wont realise they never sent you one.

http://www.419eater.com/

Can you post some examples of the touch and go you had with the scammers?  I'd like to see how and what did they answer.
Logged
“Eight years was awesome and I was famous and I was powerful" - George W. Bush.

Jreengus

  • Bay Watcher
  • Si Hoc Legere Scis Nimium Eruditionis Habes
    • View Profile
Re: WARNING steam mass hijack!
« Reply #89 on: February 18, 2010, 09:08:04 pm »

I don't bait myself, I don't have the patience/creativity but there are a lot of examples on the site.
Logged
Oh yeah baby, you know you like it.  Now stop crying and get in my lungs.
Boil your penis. I'm convinced that's how it happened.
My HoM.
Pages: 1 ... 4 5 [6] 7 8