Forums

Lots of accounts hackedThread is locked

Quick find code: 14-15-609-66078476

of 5
ANON_420
Oct Member 2018

ANON_420

Posts: 35Bronze Posts by user Forum Profile RuneMetrics Profile
Ok so i thought it was just me but i started to search and cant count all the numbers of people getting hacked, so this post is dedicated not to the forums mods, but to the reals mods, the techs of jagex, and all the security team that could exist.

Is it really our fault? are we all dumbs? mods tell you " your account should be safe if you take all the measures" yes maybe that was one year ago but i believe things have changed now, hackers evolve they learn things they learn techniques and vulnerabilities the clear example is that they can turn off our internet connection, maybe that sounds like and easy things to the people that knows about that topic, but we the normal users the normal people that have a normal work that pays membership with a credit card to be able to play the game really chill have absoluty no idea of how someone can do that

i dont want to tell people how to do they job, i will try to be on the side of normal people and to speak with justice over all.

bank pin have existed since all my gameplay(15 years ago) its a bit annoying when you have to do something fast and you missclicked one square but well i think its really great that a bank pin exists.

Now Authenticator, why should i download another application in my mobile wich not only takes space but at the date im writing is useless, i mean they can hack my account and any account with authenticator, its not impossible but quite the opposite, a hacker doesnt even need to trouble with bypassing auth.

i follow on another post >>>>>>>>
No sera Plucho?

24-Jan-2019 21:07:13

ANON_420
Oct Member 2018

ANON_420

Posts: 35Bronze Posts by user Forum Profile RuneMetrics Profile
So my solution and im sorry for all the long writing but this is what i in my personal opinion as a normal user think it would help not only to evolve from that authenticator which only the "pros" use but to ensure real safety is adding the phone number such as google does with their accounts, and why do i think its the best option?

first jagex should recognize wich is the country im logging in, for example with an spanish number i of course would play from spain normally so when my account logs from another location lets say china, that location shouldnt be able to log in until i confirm that NOT BY AN APP but through a code send via SMS or by call to the number i set, and of course one could think, yes but if they have that pass they can change that number, no they wouldnt because that would need again a code to that same number, and or in case that i cant have access to that phone number, to my email address,

correct me if im wrong but a hacker maybe could acces my internet connection my email my pin and my auth, but can they read my sms? can they hear a call?

that will assure me that in case i accidentally click a pshing link and put all my data in their false page unless they steal my phone they cant access

Well maybe i will try to improve the idea because i really want to get back to playing but i will not until i assure its a safe game
I will set the same example i say to everyone that tells me "you need to be careful with links"
yes i should be careful on the streets and im not carrying a gun or a bulletproff armor when i go to work
No sera Plucho?

24-Jan-2019 21:14:14

Kinectr

Kinectr

Posts: 2Bronze Posts by user Forum Profile RuneMetrics Profile
I also logged on this morning with my bank cleared. My slayer helm, rings, all my sets, weapons, runes. I got wiped and I have no idea why. Also I have all the security options enabled.

24-Jan-2019 21:38:43 - Last edited on 24-Jan-2019 21:46:40 by Kinectr

Ladyolake
Jan Gold Premier Club Member 2008

Ladyolake

Posts: 3,127Adamant Posts by user Forum Profile RuneMetrics Profile
So, do you and the others hacked use OSbuddy? Runelite?
Another 3rd party software? you are litterly giving your info away
every time you log in.

Bank pins are so secure Jmods dont even know them.

Also no one logs in and says "oh hi everyone! i wasnt hacked today, or
last week or this month. I am having a fantastic time"..

I watch these forums because i try to post and help people and there are
no more or less hack threads than in last weeks months or even year.

If it was Jagex being the weak link litterly thousands would be on here
raising hell. ME included.

I know what its like to be hackedI2009). And then I took better precautions.

people click on sites from twitch that look like Jagex mods or even a
famous twitch streamer quitting when in reality those are phishing sites.

jagex has given us all the resources we need to be safe.

edit- Jag was a system where a person had to answer questions to log in.
it took up developers and other personel time when people forgot their
answers. So a phone would be same issue.. Just like now look on forums
of all the people who switch phones etc and need assistance.

Jagex has a good system.. better than some and in some cases worse I will
give you that.

I just dont want you to think that the recent hacks are because Jagex isnt
secure.
The richest person is not who has the most. It is who Needs the least.

24-Jan-2019 21:46:47 - Last edited on 24-Jan-2019 21:49:41 by Ladyolake

ANON_420
Oct Member 2018

ANON_420

Posts: 35Bronze Posts by user Forum Profile RuneMetrics Profile
of course they are because jagex isnt secure haha, if they security work we wouldnt get hacked.

people can change phone, but do they change their phone number so frequently? and you by saying that are giving me even more reason, i lose my phone with my authenticator application what now?, but i lose my phone and i buy a new phone with the same old number i had.

and that jagex has more work to do just to prevent hacks, i dont see the bad part of that, they should work even more because as i say, im paying my membership with a credit card, im working to pay that credit card, they can rest in not working too much but i have to keep paying when someone hacks me? that doesnt make sense
No sera Plucho?

24-Jan-2019 21:59:53

CM Nick

CM Nick

Local Moderator Posts: 1,294Mithril Posts by user Forum Profile RuneMetrics Profile
Hey Anon_420

These forums are only to be used for specific issues with accounts, and not for more general threads like this, so I've moved the topic to General.

24-Jan-2019 22:16:25

ANON_420
Oct Member 2018

ANON_420

Posts: 35Bronze Posts by user Forum Profile RuneMetrics Profile
I know exactly how and why I got hacked am I asking that ? You didn't even read I was distracted I wasn't thinking that someone could mess my internet if I,again, accidentally put my data there

Again, is this a game? Or are we playing some experimental top secret stuff? The only time I had to be that paranoid was when I was in jail .

I'm just suggesting a protection to accidents , like my accident of clicking a pshing link, and accident happens to everyone
No sera Plucho?

24-Jan-2019 22:43:48

Transcendent
Jun Gold Premier Club Member 2010

Transcendent

Posts: 34,702Sapphire Posts by user Forum Profile RuneMetrics Profile
@ANON_420

I've read your proposal and it comes down to having a secure email, otherwise the hijacker will simply change the email associated with the account.

If someone will fall for a phishing link and enter their info there, no amount of security will keep their account safe.

Except when a Jmod goes rogue and hijacks an account and as a result gets fired and the police called on him or her, Jagex is generally secure, and Authenticator and a bank pin works if you don't fall for phishing links and if you don't use third party clients which you give your info away if you use.

So the weakness in the security is not with Jagex, it is with the player who needs to learn to not fall for phishing links and needs to not use third party clients which give their info away or could include malware.

Authenticator already requires the person to have a phone or USB flash drive to get the code to log in, so unless someone types the code into a phishing site their account will be safe.

The problem is too many players type their authenticator code into phishing websites and can't tell the difference between a legitimate website and a fake one.

If players would never click links under videos on Twitch or Youtube or other sites and if they did not enter their info on those sites trying to log in to fake forums, most accounts would probably not get hijacked.
Hi.

24-Jan-2019 22:45:41

ANON_420
Oct Member 2018

ANON_420

Posts: 35Bronze Posts by user Forum Profile RuneMetrics Profile
Transcendent said:

I've read your proposal and it comes down to having a secure email, otherwise the hijacker will simply change the email associated with the account.

they wouldnt be able to log in because they are not from a know ip, even if they take the trouble to find my phone number and they set an spain IP the new security program would detect it as a not frequent site so they will send me an sms telling me someone is trying to access my account from an unknown site

Transcendent said:

If players would never click links under videos on Twitch or Youtube or other sites and if they did not enter their info on those sites trying to log in to fake forums, most accounts would probably not get hijacked.


same example again," maybe if i wasnt driving i wouldnt get a car accident " accidents happend you can be distracted you could share an account with your 10 years old brother and well again that things can happend of course its our fault of course its my fault.

i just want things to evolve i was on your place i never thought this could happend i told the same to everyone standing in the ge asking of that weird prices that facebook giveaway but guess what? it happend to me because i wasnt thinking i had my head in something else and it happend

The more things you can add to ensure people safety the better it is.
No sera Plucho?

24-Jan-2019 23:05:47

Quick find code: 14-15-609-66078476Back to Top