| | New Phishing RMT Scam | |
| | Author | Message |
---|
Tsumi Omaria Emir (Comandant Rosu)
Posts : 470 Join date : 2009-05-24
| Subject: New Phishing RMT Scam Fri Aug 14, 2009 2:40 pm | |
| To hack into peoples accounts RMT have been sending people tells claiming to be GMs. In it they say your account is about to be frozen and give you a website to go to and lodge a complaint to get it unfrozen. There it asks for all your account information and they then log onto your account and steal what you have. More info is on this thread: AllakhazamSE has only issued a general warning that they will never contact people in game and tell them their account is frozen or direct them to a website. Just keep an eye out since when a GM sends tells it will never appear as: FFXI GM>> or as FFXI>>GM>> Edit: I meant to say "or" not "but" here. Thanks for clarifying that Sair. What I was trying to show in the above examples is these people are trying to make it seem they GM by either typing GM as part of their character name or in the first part of the chat log.
Last edited by Tsumi on Fri Aug 14, 2009 7:09 pm; edited 4 times in total | |
| | | SamusKnight2K Igienic Preot
Posts : 230 Join date : 2009-05-24 Age : 43
| Subject: Re: New Phishing RMT Scam Fri Aug 14, 2009 5:13 pm | |
| A GM name will have [GM] as a prefix to the name. So it would be "[GM]Playername" if it were a real GM. And if someone approaches you pretending to be a GM remember a few things... 1) A GM will be wearing a special type of armor (Red and Grey colored.) not accessible to other players. 2.) A GM will have a special "GM" flag by their name and the name will be displayed in red font. 3.) A GM character can only be a male or female Hume as there is no DAT models for GM Tarutaru, Mithra, or Galka. GM Examples Link About GMs http://www.playonline.com/ff11us/rule/support01.html?pageID=support | |
| | | Tsumi Omaria Emir (Comandant Rosu)
Posts : 470 Join date : 2009-05-24
| Subject: Re: New Phishing RMT Scam Fri Aug 14, 2009 5:28 pm | |
| Thanks for the clarification Sair especially since it helped me see a mistype in my post. ;@.@.
Anyway it seems since the bans have players jumpy the scammers arebanking on people jumping on doing what they say without thinking so I thought it might be nice to give you all a heads-up. | |
| | | SamusKnight2K Igienic Preot
Posts : 230 Join date : 2009-05-24 Age : 43
| Subject: Re: New Phishing RMT Scam Fri Aug 14, 2009 6:56 pm | |
| - Tsumi wrote:
- Thanks for the clarification Sair especially since it helped me see a mistype in my post. ;@.@.
Anyway it seems since the bans have players jumpy the scammers arebanking on people jumping on doing what they say without thinking so I thought it might be nice to give you all a heads-up. That's okay Tsu. But unless it appears as: [GM]Playername>> Then it's not a GM. The [GM] must be tacked on before the name. And like Tsu said, a GM will never ask for your password, info, or direct you to another site to insert your information. Another big tips is if you visit/see these sites pay attention to the grammar and spelling on them. Majority of the time if it's a fake you can even spot it in the text on the page. SEI wouldn't make common mistakes such as forgetting periods, constant spelling errors, or poor sentence structure. An example would be a sentence that reads "Please insert your informations into box below" If you notice there is an extra "s" added onto word information, it should read "into the box", and there is an absence of punctuation being the period. It's little things that can give it away in a heartbeat. Most important of all, check the URL. I know Firefox does and I think IE should too, but in the bar at the bottom of the screen it should show the URL that the link will take you to. And I think SEI has mentioned this before... But any links regarding accounts should be linked directly to the official PlayOnline website ( www.playonline.com).And if all else fails, call an In-Game GM. If such information was true they'd confirm it. I know the whole thing is long-winded, I wanted to point out the lack of sense and half-assed attempts RMT try to go with. I almost find it funny at the pitiful attempts they make. With all the reports, people getting wiser, and mass bannings the STF make, how much money does the RMT profit from these days? Each time they're caught that's yet more money they need to spend on new software and time wasted restarting their operations. | |
| | | Tsumi Omaria Emir (Comandant Rosu)
Posts : 470 Join date : 2009-05-24
| Subject: Re: New Phishing RMT Scam Fri Aug 14, 2009 8:30 pm | |
| | |
| | | SamusKnight2K Igienic Preot
Posts : 230 Join date : 2009-05-24 Age : 43
| Subject: Re: New Phishing RMT Scam Sat Aug 15, 2009 4:21 am | |
| Oh that site... I went to that site when they had it listed on Alla... It's a mock-up of the LS Community website. Nothing happens until you insert your username/password (I put in fakes just to be sure.) then it takes you to a link to install a "complaint patch" which dl's an executable to your computer. Of course since I have Firefox it blocks all attempts for auto-downloads unless the site has permission. Serious, the website just uses the LS Community layout and images with their own broken "engrish" text.
And yes I did a virus/spyware scan afterwards. Since I didn't allow the keylogger to execute it didn't compromise my system. Plus, POL is set up to save my password anyway... I lock my PC when not in use and only others in the apartment are my roomies.
EDIT: Something occurred to me... Couldn't SE use a disposable PC (Something that could probably be reformatted/cleaned.) to visit the site, let the keylogger install, then track where tries to send the data? From there they log the IP, contact the ISP provider where its sent then take legal action. I don't know if the above theory is applicable but if so it'll be a great way to find out where they're doing their operations from and nail'em.
EDIT 2: Off-topic but I LOVE the .hack//SIGN OST! | |
| | | Chessirin New Rookie
Posts : 22 Join date : 2009-06-07 Age : 39
| Subject: Re: New Phishing RMT Scam Sat Aug 15, 2009 10:29 am | |
| - SamusKnight2K wrote:
- EDIT: Something occurred to me... Couldn't SE use a disposable PC (Something that could probably be reformatted/cleaned.) to visit the site, let the keylogger install, then track where tries to send the data? From there they log the IP, contact the ISP provider where its sent then take legal action. I don't know if the above theory is applicable but if so it'll be a great way to find out where they're doing their operations from and nail'em.
EDIT 2: Off-topic but I LOVE the .hack//SIGN OST! Indeed they could, but see the problem here is... it'd require work. More then what they're being allowed to do. They COULD do that, but see the other problem is that tracking back to them when using such a method can also be considered against the law as you're entering a foreign computer yourself and thus, you are also guilty of hacking. Certainly, you'll find the location and the evidence, but the evidence would be gained through unlawful means and thus would be compromised in any form or fashion. It's partially the reason they take SO long to get any work done. They're going through the longest and most contrived channels to succeed. On the second note: Indeed! It's a wonderful soundtrack! | |
| | | Sponsored content
| Subject: Re: New Phishing RMT Scam | |
| |
| | | | New Phishing RMT Scam | |
|
| Permissions in this forum: | You cannot reply to topics in this forum
| |
| |
| March 2024 | Sun | Mon | Tue | Wed | Thu | Fri | Sat |
---|
| | | | | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | | | | | | | Calendar |
|
LAST WARNING! Back up your stuff now! | Sat Nov 06, 2010 5:20 am by SamusKnight2K | Just an update, this is the last day for the forums. If you haven't backed up your stuff yet do it now. I will be closing the forums probably around 5PM PDT today, that is within 13 hours of this notice. It's been a fun run all, again if you are still interested in RP and play FFXI on the Asura server be sure to visit Nesirae's new forums:
http://duskblades.enjin.com/
And if you happen to play …
[ Full reading ] | Comments: 0 |
Sfant Umbra Has Closed | Wed Oct 27, 2010 7:44 am by SamusKnight2K | Well unfortunately things come to pass and over time we have to say goodbye. As of now Sfant Umbra is now closed and thus is going into retirement. However if you are still seeking RP options on Asura Sfant Umbra's former leader Nesirae has formed a new linkshell named DuskBlades.
http://duskblades.enjin.com/
Best of luck to all RPers out there!
All but the OOC section has now been locked and …
[ Full reading ] | Comments: 0 |
Attachments Enabled! | Wed May 12, 2010 4:36 am by SamusKnight2K | I wasn't sure how at first but I've finally figured out how to enable attachments for postings! So now if you have any DAT files you wish to share or other stuff you can. But there are a few rules...
1.) No Porn/Illegal Material. This goes to say, it's in our rules anyway but just stating it again.
2.) Attachments are capped at 800KB per attachment, 5 attachments per message. Please note due to …
[ Full reading ] | Comments: 0 |
|