|
#1
|
||||
|
A Warning to the EQP99 Community: Database Hacking
With the recreation of The Mystical Order from the merging of two previously competing guilds to become stronger against opposition, the forums administrators of TheMysticalOrder.net quickly determined that something was amiss. With further research we found the possibility of a spy within the guild. That spy (or spies), however, had gone further than simply entering the ranks of a competing guild and reporting back to their own. It was obvious that a Transatlantic Rampage member had entered our ranks as not shortly after a post involving a bug was made public in the TMO forums (of which was removed and reported to the GMs considering it could be used for more than just harmless items) had been copied off of our forums and sent to the GMs.
Quote:
Not long thereafter, we had discovered a sum of suspicious illegal activity being recorded by the forum server. An individual with an IP that was a proxy or a VPN in the UK was logging in as one of the guild leaders/forum admins. The guild leader lives nowhere near the UK and was therefore an issue that was quickly looked into further. This IP was linked to an individual attempting to download backup copies of the entire forums database via the Admin Control Panel as well as other private intellectual property (coding/program) created by one of our other players. The posts viewed were very selective by the hacker and indicate a specific interest in Everquest related activity. Some of the activity recorded by the administrators includes the encrypted passwords of each and every member being downloaded and therefore compromised. Multiple non-existing portions of the site were accessed in attempts to fish further into the site. Whether or not the hacked download of the database and intellectual property succeeded lies in the hands of the individual that took such great measures to commit an illegal act. EDIT: I edited a pronoun in the phrase "had done it" to lessen confusion. | |||
Last edited by Aadill; 08-08-2011 at 02:48 PM..
Reason: i edited a pronoun!
|
|
#2
|
|||
|
Yay, I'll have something to read today!
| ||
|
#3
|
|||
|
It is a logical fallacy that because your database was hacked and because a TR member forwarded on an exploit you talked about (even in a "don't do this" way) on your member forums that a TR member hacked your database. We have had former/disgruntled TMO / DA in our app pool consistently for a solid 8 months, including apps received as recently as this morning. People offer us, unsolicited, a ridiculous amount of information about what goes on in your guild.
I am sorry you got hacked. I don't know jack and/or crap about database security, but it seems pretty out of line to point the finger without any actual evidence when this server is a cesspool of people who know entirely too much about the internet. We're not the only people your guild's leadership has pissed off. | ||
|
#4
|
|||
|
The fact that anyone, TR or not, would get so obsessive over an emulated video game as to illegally hack into a guilds' forums is pretty fucking sad.
| ||
|
#5
|
|||
|
Even if this information was provided by someone outside your guild as you say, wouldn't the ethical choice be to inform this other guild about who provided this information, and let them know that you were informing GMs?
| ||
|
#6
|
||||
|
Quote:
Guild in game spies is one things, having a member give u forum access or read you our forums is one thing. Having access to the admin control panel is completely another. | |||
|
#7
|
|||
|
Personal information including RL pics, discussions of where people live, and passwords to mail accounts and p99 accounts.
__________________
Zeelot <TMO>
| ||
|
#8
|
||||
|
Quote:
Honestly, is this thread anything more than innuendo intended to make TR look bad before it came out that you had exploits posted on your forums? Because as an unbiased observer I just don't see any other reason to bring this to the server's attention in this manner. | |||
|
#9
|
||||
|
Quote:
There's not a reason not to make it public knowledge; but yeah, one of the possible realities here is pre-emptive damage control. | |||
|
#10
|
||||
|
Quote:
Also, as our Swedish friend pointed out, everything happening behind the scenes = bad. And this is why people read the forums, because they want to know what's going on. Yeah, its guild drama, but everyone continues to open the thread... | |||
|
|
|