jkerouac Posted January 22, 2009 Report Share Posted January 22, 2009 I'm confused by the statement "someone has actually been trying to hack their computer through the forum, and has so far used seven IP variants." I hope someone can explain the attack strategy and vectors in more detail. As for compromising a paypal account, or any other account, for that matter, this seems like a separate type of attack. The first sounds like a denial of service attack. The second attack would be grabbing your credentials and impersonating you to steal your money. Both are serious business. By the way, last year I got a mini-token generator at a trade fair and use it as added protection for my paypal account. I think the use of such devices and its successors will become common in the coming years. Link to comment Share on other sites More sharing options...
TeeJay Posted January 22, 2009 Author Report Share Posted January 22, 2009 I'm confused by the statement "someone has actually been trying to hack their computer through the forum, and has so far used seven IP variants." I hope someone can explain the attack strategy and vectors in more detail. As for compromising a paypal account, or any other account, for that matter, this seems like a separate type of attack. The first sounds like a denial of service attack. The second attack would be grabbing your credentials and impersonating you to steal your money. Both are serious business. By the way, last year I got a mini-token generator at a trade fair and use it as added protection for my paypal account. I think the use of such devices and its successors will become common in the coming years. As I said before, I am simply passing on precisely what the person wrote to me. I can't clarify what they meant, as I simply do not know, I am simply going by what they said Link to comment Share on other sites More sharing options...
letter Posted January 22, 2009 Report Share Posted January 22, 2009 I dont think anyone needs to worry! Link to comment Share on other sites More sharing options...
RWG Technical Posted January 22, 2009 Report Share Posted January 22, 2009 I use different names for paypal accounts and different passwords for everything. As well, when I transfer money out of my paypal account, it takes a number of days, and added to that I only have one account linked to my paypal account. If anyone tried to change my bank account, not only would I know they were trying to change the account, it takes a number of days for the change and two deposits from PP to verify the new account. Unless someone used the hacked account to actually pay for a purchase, but then it would be easy to see where the money went, and put a stop to it. If I hacked into your account, you wouldn't be able to hack into it to see that I had depleted your account in the first place??? so how would you know that I had stolen your cash? Sound confusing to me. RG Link to comment Share on other sites More sharing options...
TwoTone Posted January 22, 2009 Report Share Posted January 22, 2009 Agreed Ziggy... I smell bullshit... And a whole lot of over exaggeration and drama... TT . Link to comment Share on other sites More sharing options...
HauteHippie Posted January 22, 2009 Report Share Posted January 22, 2009 Agreed The Zigmeister... I smell [censored]... And a whole lot of over exaggeration and drama... TT Ditto. The original description doesn't really make sense in the first place. Link to comment Share on other sites More sharing options...
The Mentalist Posted January 22, 2009 Report Share Posted January 22, 2009 It is impossible to clean out someone's Paypal account without tracing to whom and where it went to. I agree with TT. It smells like BS. Link to comment Share on other sites More sharing options...
dluddy Posted January 22, 2009 Report Share Posted January 22, 2009 Ditto +1 Makes no sense as presented. Link to comment Share on other sites More sharing options...
Nanuq Posted January 22, 2009 Report Share Posted January 22, 2009 A brief note to put people's minds at ease... so far there are no signs anything is amiss with the board and all digging we're doing is turning up nothing serious. Research continues but at this time people can relax. If anything remotely strange comes up, immediate and dramatic steps will be taken. Link to comment Share on other sites More sharing options...
bwhitesox Posted January 22, 2009 Report Share Posted January 22, 2009 Have you checked that the cleanpaypalaccount.exe is not running on the server.? Also watch out for Iamgullable.bat and buggeroffstoptalkingcrap.vbs. Link to comment Share on other sites More sharing options...
TwoTone Posted January 22, 2009 Report Share Posted January 22, 2009 Have you checked that the cleanpaypalaccount.exe is not running on the server.? Also watch out for Iamgullable.bat and buggeroffstoptalkingcrap.vbs. . Link to comment Share on other sites More sharing options...
Nanuq Posted January 22, 2009 Report Share Posted January 22, 2009 The only thing running on the server was TwoTone, in his ballet slippers and tutu again. Sheesh. We keep having to get him to climb down offa there. Link to comment Share on other sites More sharing options...
Shundi Posted January 22, 2009 Report Share Posted January 22, 2009 The only thing running on the server was TwoTone, in his ballet slippers and tutu again. Sheesh. We keep having to get him to climb down offa there. Well I'd say make it a "dry" forum and your problems with TT and Ken would be over but...hell, no one wants that! Link to comment Share on other sites More sharing options...
TwoTone Posted January 22, 2009 Report Share Posted January 22, 2009 The only thing running on the server was TwoTone, in his ballet slippers and tutu again. Sheesh. We keep having to get him to climb down offa there. TwoTone likes "TuTu's"... . Link to comment Share on other sites More sharing options...
KB Posted January 22, 2009 Report Share Posted January 22, 2009 Well I'd say make it a "dry" forum and your problems with TT and Ken would be over but...hell, no one wants that! We got bigger problems than that. Cornerstone keeps dropping the soap in the office showers. Ken Link to comment Share on other sites More sharing options...
Nanuq Posted January 22, 2009 Report Share Posted January 22, 2009 We got bigger problems than that. Cornerstone keeps dropping the soap in the office showers. Ken These are times that try the souls of even the most stalwart of men. Rest assured we will get to the bottom of this! Link to comment Share on other sites More sharing options...
bruce79 Posted January 22, 2009 Report Share Posted January 22, 2009 Hold on here guys...check out this thread on another forum... replace the xx with tt hxxp://www.rolexforums.com/showthread.php?t=64888 I've never had any issues with paypal hackers but I suppose it could happen... Link to comment Share on other sites More sharing options...
Stephane Posted January 22, 2009 Report Share Posted January 22, 2009 Agreed Ziggy... I smell bullshit... And a whole lot of over exaggeration and drama... TT + 1 TT. Credit cards, debit cards, PP, MB, whatever is money related leave traces and will be fixed anyway in favour of the owner of the money. I had only one fraud debit on one my cards (in around 25 years) and it was credited back to me immediately by Visa Link to comment Share on other sites More sharing options...
Admin Posted January 22, 2009 Report Share Posted January 22, 2009 Let me just say that whatever has happened to this member, it has not come from this forum. Our servers are very well protected and there is only 1 person with access to them, and thats me. Several different scans are performed every day to avoid anything to happen. (Rootkithunter, CHKROOTKIT, nobody-scan, etc)We have a solid brute-force protection system in place + anybody trying to get access to any vital areas and don't know the username/password, will be locked out by our firewall after 5 tries. Even if somebody should manage to get access to our system, it won't do them any good. All user passwords are MD5 encrypted. So let me just assure you that you are all safe when you do your daily surfing on RWG. Link to comment Share on other sites More sharing options...
bwhitesox Posted January 22, 2009 Report Share Posted January 22, 2009 Plus make your paypal pasword different to any other forum passwords you use. Link to comment Share on other sites More sharing options...
wiseman Posted January 22, 2009 Report Share Posted January 22, 2009 (edited) It could be that someone used a Cross Site cripting attack through the forum through I doubt that. More on cross site cripting here: http://en.wikipedia.org/wiki/Cross-site_scripting Edited January 22, 2009 by wiseman Link to comment Share on other sites More sharing options...
bwhitesox Posted January 22, 2009 Report Share Posted January 22, 2009 cross site cripting attack? Link to comment Share on other sites More sharing options...
stilty Posted January 22, 2009 Report Share Posted January 22, 2009 paying for intangible goods on the internet paying for goods and trying to get them shipped to another delivery address i'd imagine the user will be able to reverse the transactions - contact paypal asap ! As I mentioned in my post. every transaction can be traced. even if they try to have something shipped to another addres... there is a trail. Link to comment Share on other sites More sharing options...
TeeJay Posted January 22, 2009 Author Report Share Posted January 22, 2009 Agreed Ziggy... I smell bullshit... And a whole lot of over exaggeration and drama... TT . Have to admit, I hadn't considered the point Ziggy made... As mentioned, I was only going on what I was told, and trying to warn other forum members if anything untoward might have been going on. Thanks for looking into it Link to comment Share on other sites More sharing options...
cornerstone Posted January 22, 2009 Report Share Posted January 22, 2009 We got bigger problems than that. Cornerstone keeps dropping the soap in the office showers. Ken Whoa!! Back up pardner!! 3 FACTS: - It was you and Miss Understood that originally petitioned for a 'communal shower' whereas my proposal for private baths with prostitutes was dismissed as 'expensive, unworkable and contagious'. - It's you that is in charge of the soap purchasing, and you buy 'Mr Slippy' every time, whereas I have repeatedly PM'd my preference for 'Iron Grip Dove' (I find it milder). - While it's an undeniably tempting sight - you could resist occasionally you know!!! Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now