Bay 12 Games Forum

Please login or register.

Login with username, password and session length
Advanced search  
Pages: 1 ... 3 4 [5] 6 7 8

Author Topic: WARNING steam mass hijack!  (Read 11847 times)

Megaman

  • Bay Watcher
  • What is love?
    • View Profile
Re: WARNING steam mass hijack!
« Reply #60 on: February 17, 2010, 07:25:07 pm »

personally I'm pro-death sentence, but for fuck sakes don't shot somone for stealign a twenty. IMO sentences are pretty short in the US... anyway, I only have Deon and some other guy on my friends list, so I probably wont me able to relate to you poor bastards very much.
Logged
Hello Hunam

Zangi

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #61 on: February 17, 2010, 08:02:03 pm »

personally I'm pro-death sentence, but for fuck sakes don't shot somone for stealign a twenty. IMO sentences are pretty short in the US... anyway, I only have Deon and some other guy on my friends list, so I probably wont me able to relate to you poor bastards very much.
Whatever, guess people arn't stopping...

In the US, people are in jail for a lot of reasons, lesser reasons.  Prisons are overcrowded already and they(gov't) are thinking of closing more of these places down.  No sense in crowding them more... though private prisons probably have no problem cramming another body that gives em money in a corner...
Logged
All life begins with Nu and ends with Nu...  This is the truth! This is my belief! ... At least for now...
FMA/FMA:B Recommendation

Nilocy

  • Bay Watcher
  • Queen of a Community.
    • View Profile
Re: WARNING steam mass hijack!
« Reply #62 on: February 17, 2010, 08:06:00 pm »

Guys, you've hijacked this thread for talking about the death sentance. STOP IT.
Logged

LeoLeonardoIII

  • Bay Watcher
  • Plump Helmet McWhiskey
    • View Profile
Re: WARNING steam mass hijack!
« Reply #63 on: February 17, 2010, 08:30:43 pm »

Not really, just talking about the penalties associated with phfishiking. That's so squarely on-topic it's weird to mention it.

Anyway, obviously the penalty for phishing can't be super high, for various reasons, but it's sad that it's not enforced.

And as for prodding their hosting company, it's probably hosted somewhere lenient if not actually in CZ. They don't care and the US doesn't have jurisdiction over the whole Internet.

That said, it would be hot stuff to be able to sign up for a blocking service that just blocked spammers and phishers, without blocking other content regardless of type. The company updates its block lists, you can turn it on or off whenever you like, but if you stop paying for their updates your block list gets increasingly out of date.

That way you'd get a little bleep saying they blocked it because it was a known scam site and you could manually disable to visit it if you liked, or add it to your personal allow list if you didn't agree that it was a scam.

That said, how much would I pay for such a service? If it worked 95% of the time, I'd pay $5-10 a year. But I'm hardly a typical software customer. I haven't bought a piece of software in years.
Logged
The Expedition Map
Basement Stuck
Treebanned
Haunter of Birthday Cakes, Bearded Hamburger, Intensely Off-Topic

qwertyuiopas

  • Bay Watcher
  • Photoshop is for elves who cannot use MSPaint.
    • View Profile
    • uristqwerty.ca, my current (barren) site.
Re: WARNING steam mass hijack!
« Reply #64 on: February 17, 2010, 08:38:56 pm »

If you want to see something scary, put
Code: [Select]
<a href="www.aaaaa.fake" onmouseout="window.status=''" onmouseover="setTimeout('window.status=\'http://www.bay12games.com/\'',0)">http://www.bay12games.com/</a>Into a .html file and open it. (Fortunately, it probably won't work on some browsers, and also, this example is harmless, but with little effort I could have made it link invisibly to a scam site that looks identical to the bay12games homepage. Worse, it could send you to the actual forum with some lingering keylogger, if my speculations are correct, and get you to log in.)

If that took me 5 minutes to learn how to do(Well, a bit of past javascript experience, plus googling for about 5 features, maybe closer to 10 minutes?), what could someone do with years of experience, months of research, and weeks to perfect it?
Logged
Eh?
Eh!

Sir Pseudonymous

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #65 on: February 17, 2010, 09:42:31 pm »

Not really, just talking about the penalties associated with phfishiking. That's so squarely on-topic it's weird to mention it.

Anyway, obviously the penalty for phishing can't be super high, for various reasons, but it's sad that it's not enforced.

And as for prodding their hosting company, it's probably hosted somewhere lenient if not actually in CZ. They don't care and the US doesn't have jurisdiction over the whole Internet.

That said, it would be hot stuff to be able to sign up for a blocking service that just blocked spammers and phishers, without blocking other content regardless of type. The company updates its block lists, you can turn it on or off whenever you like, but if you stop paying for their updates your block list gets increasingly out of date.

That way you'd get a little bleep saying they blocked it because it was a known scam site and you could manually disable to visit it if you liked, or add it to your personal allow list if you didn't agree that it was a scam.

That said, how much would I pay for such a service? If it worked 95% of the time, I'd pay $5-10 a year. But I'm hardly a typical software customer. I haven't bought a piece of software in years.
Actually, there are lists like that, and Firefox (and I believe Chrome does too, but I haven't used it and so don't know first hand) accesses them automatically. Granted they're not perfect, but they're both very good and free.
Logged
I'm all for eating the heart of your enemies to gain their courage though.

Goron

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #66 on: February 17, 2010, 10:17:33 pm »

Not really, just talking about the penalties associated with phfishiking. That's so squarely on-topic it's weird to mention it.

Anyway, obviously the penalty for phishing can't be super high, for various reasons, but it's sad that it's not enforced.

And as for prodding their hosting company, it's probably hosted somewhere lenient if not actually in CZ. They don't care and the US doesn't have jurisdiction over the whole Internet.

That said, it would be hot stuff to be able to sign up for a blocking service that just blocked spammers and phishers, without blocking other content regardless of type. The company updates its block lists, you can turn it on or off whenever you like, but if you stop paying for their updates your block list gets increasingly out of date.

That way you'd get a little bleep saying they blocked it because it was a known scam site and you could manually disable to visit it if you liked, or add it to your personal allow list if you didn't agree that it was a scam.

That said, how much would I pay for such a service? If it worked 95% of the time, I'd pay $5-10 a year. But I'm hardly a typical software customer. I haven't bought a piece of software in years.
Actually, there are lists like that, and Firefox (and I believe Chrome does too, but I haven't used it and so don't know first hand) accesses them automatically. Granted they're not perfect, but they're both very good and free.
THe problem is that a phishing site has something like a 2 hour lifespan at max.
So to keep a list (or even worse actually pay for one) is silly and pointless.

Soulwynd

  • Bay Watcher
  • -_-
    • View Profile
Re: WARNING steam mass hijack!
« Reply #67 on: February 18, 2010, 12:11:04 am »

Actually, there are a few organizations that keep and maintain a list of phishing and malware stuff. Some for free, others are paid. The one firefox uses to check for phishing sites is paid, for example.

As for steam, they could easily block phishing sites by warning you whenever you put in your username while browsing a non-steam server.
Logged

Neonivek

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #68 on: February 18, 2010, 09:41:44 am »

I never click on links given out of the blue... Frankly people should really stop doing that.
Logged

Starver

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hack!
« Reply #69 on: February 18, 2010, 10:02:08 am »

Change your passwords, with the quickness people if you followed the links.
Friends of mine got a Phishing email once, got suspicious after the fact and called me for advice.  I rushed over, confirmed things and got them to change the compromised passwords they'd let out five minutes before.  Five minutes later, they got another email saying "Thank you for supplying your details, but it appears you have changed them again since, please could you reconfirm the new details via <link>this</link> page."

Cheeky.
Logged

Starver

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #70 on: February 18, 2010, 10:15:30 am »

Someone in cz land has a lot of time on their hands and is an A+ script kiddie...
Maybe, or probably someone just using a cz domain for some untracability.  And these days you also get toolkits that allow you to put together malware and phishing sites with tickbox things like "apply Proxy redirection", "seach for media files on target computer", "follow on with first <number> of contacts in address book" or whatever is appropriate.  All without the technical know how to actually construct your attack, but done for you by the toolkit itself.

(Actually, that's old news.  About a decade old, if not longer.  They probably do something different these days and even more "no brain needed"...)
Logged

Pillow_Killer

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #71 on: February 18, 2010, 11:26:57 am »

I applaud to the authors of this phish. Really shows a level of GI of your average steam user.
Logged
Quote from: x2yzh9
every man faps to every person he knows/likes. I've done that for about 2 girls that I've liked really, and it's because they have big boobs. 'Nuff said amirite?

Megaman

  • Bay Watcher
  • What is love?
    • View Profile
Re: WARNING steam mass hijack!
« Reply #72 on: February 18, 2010, 03:00:30 pm »

the way phishers previal are from- stupid people, unaware people, people who are not paranoid, people who are in a drunken/other dazy mental state.
Logged
Hello Hunam

Tilla

  • Bay Watcher
  • Slam with the best or jam with the rest
    • View Profile
Help!
« Reply #73 on: February 18, 2010, 03:18:18 pm »

PRIVATE AND CONFIDENTIAL

From:
Avis Eyadema,

Dear  Sir,

 
This proposal may come to you as a big surprise, but I believe it is only a day that people meet and become great friends and business partners.

It's my pleasure writing you this mail, I am a Togolese by Nationality. My name is AVIS EYADEMA, I am one of the numerous sons of Late GNASSINGBE EYADEMA, with so many wife and children which am one of them, former President of Togo who rule for 38 years and later was succeeded by my half brother and the first son FAURE EYADEMA. Before my father died he deposited huge amount of money in a security company here in Accra, Capital city of Ghana.

Before my father died, he instructed and confined in me as his son about his business and secrecy. As a matter of fact, my father gave me some documents bearing the name of a Security company in Accra capital city of Ghana, which he told me was the place he deposited huge amount of money, Gold and Diamond when he was assigned for special duty.

Armed with this documents that my father gave to me, I flew to Accra , Ghana where I confirmed the documents. The Company showed me two sealed trunk boxes with the inscription "FAMILY ARCHIVE" with my name being used as the next of kin in the deposit form.

However, my father had earlier informed me that he cleverly packed the Fifteen Million, Five Hundred Thousand US Dollars ( $15.5 Million ) in one sealed trunk box the second box contains Gold and Diamond and told the Company that they contain the works of art. This he did in order to conceal the money from being detected.

Now with my father exit, I need a foreign partner with the image of God in him who will assist me to receive this proceeds in abroad , and who will equally not sidetrack me when this money get into his possession.

On completion of this transaction, I wish to offer you 25% of total sum for your assistance,10% for unforeseen or miscellaneous and 65% for I and my family and my family will also come over to your country for a joint investment according to your directives.

I am here in Ghana because of a treat of my life by my half brother, FAURE , the current President now, who is trying all means to confiscate the funds from me after knowing that my late father made a huge deposit with my name as his next of kin.

Contact me with the above mentioned information's if you know with can work together for more details.

Yours truly,

Avis Eyadema.

Please email me at: emailaddressthatisnotheonethismessagecamefrom@yahoo.com
Logged

Goron

  • Bay Watcher
    • View Profile
Re: WARNING steam mass hijack!
« Reply #74 on: February 18, 2010, 03:27:35 pm »

I've responded to those before- it is really quite amusing.
Unfortunately they start to realize you are only dicking with them after the first three or four emails :D
Pages: 1 ... 3 4 [5] 6 7 8