Ok i finally got hacked.
- Thread starter Bladewind
- Start date
There has to be a legitimate explanation for all this.
I refuse to believe that some underground black-market ring of hackers is working around-the-clock to decipher people's D2 passwords.
I understand that virtual items can be sold on eBay for real-world cash, but it still seems like the end profit would not be great enough to justify so much work.
It seems more likely that you (or someone else in your family who plays diablo) inadvertantly downloaded a keylogger or other fishing program.
Anyway, I wouldn't want to be in your shoes.
I refuse to believe that some underground black-market ring of hackers is working around-the-clock to decipher people's D2 passwords.
I understand that virtual items can be sold on eBay for real-world cash, but it still seems like the end profit would not be great enough to justify so much work.
It seems more likely that you (or someone else in your family who plays diablo) inadvertantly downloaded a keylogger or other fishing program.
Anyway, I wouldn't want to be in your shoes.
DarkTyrian
New member
Actaully it would be extremely easy to "brute force" an all numbers password. If the hacker knew that the password was all number for sure it would probably only take him an hour or so to crack the password.
If he did infact get your email password and request a lost password for your accounts then there is a simple explaination why he wouldn't just steal the whole account by changing the password. He can be tracked that way. If he took control of the account completely it would make him an easy target for blizzard if he were reported. Besides, characters are generally useless since you can make them within a few hours. The items are what's important.
Also take note. To move things from your account to his he either had an accomplice which would now make 2 badies, or he's using a d2loader which he'll prly get caught for sooner or later.
If he did infact get your email password and request a lost password for your accounts then there is a simple explaination why he wouldn't just steal the whole account by changing the password. He can be tracked that way. If he took control of the account completely it would make him an easy target for blizzard if he were reported. Besides, characters are generally useless since you can make them within a few hours. The items are what's important.
Also take note. To move things from your account to his he either had an accomplice which would now make 2 badies, or he's using a d2loader which he'll prly get caught for sooner or later.
someone could crack the forum, get your ip. Then just scan your ports see if there's a way in, if there is it's keylogger time. The version of vbb is right down there at the bottom (vBulletin Version 3.6.2) they release patches and things but if someone is quick with their exploit...
Got a firewall running?
Though, if you did just use numbers, chances are it was just brute forced.
Got a firewall running?
Though, if you did just use numbers, chances are it was just brute forced.
templeofnogwa
New member
Isn't there a limit to how many times one can incorrectly type in the password at one time? Then the account freezes for a while, I think.
That's another reason why I think that these "brute force" hacks don't happen very much. I mean, if you are just guessing someone's pw, even if it is all numbers, that should take an incredibly long time to pull off. Even using a sophisticated program. I log in often enough that I would probably notice if someone has attempted to break their way into my account, and I would act accordingly. I think most of these hackings are due to keylogs, viruses, ect.
If these brute force hacks are common, it would be fairly simple to stop them. After two or three unsuccessful attempts to log in, the account should be shut down, and only activated when Blizzard receives an e-mail from the e-mail address that was registered.
If these brute force hacks are common, it would be fairly simple to stop them. After two or three unsuccessful attempts to log in, the account should be shut down, and only activated when Blizzard receives an e-mail from the e-mail address that was registered.
You mess up a pw three or more times in a row? Maybe it would need to be five or so. I can't imagine anyone accidently messing up a pw more than five times. I agree though, it would be inconvenient. I don't think its necessary though, like I said, I don't think most hackers come through the front door, so to speak.
ArchsageVal
New member
Sorry for your losses, they must have did it for revenge, not items, because it is quite easy to hack a diablo 2 account, or any online game account at that.
SirDooFuss
New member
Dude, I'm very sorry for your loss. I'm sure you didn't knowingly download any hacks, keyloggers, or anything else. But...nothing against your sister or anybody else in your home, but I'd be very suspicious of a real world theft of some kind. Do you keep your account names and passwords written down near your computer? Have you EVER given them to ANYONE for any reason?
Hmmmmmm, have you used an internet cafe recently? I've heard some nasty stories lately about dirty computers and shady employees.
Frosty_The_Snowman
New member
- Did you ever typed your password on D2 elsewhere than in the login box (I'm thinking about the DND scam) ?
- Did you ever give your password to anyone else (or did you write it down somewhere ?)
- Is your password specific to D2 or do you use the same password elsewhere ?
- Did you ever give any information (length, composition...) about your password (on these boards or elsewhere) ?
:scratch: :scratch: :scratch:
- Did you ever give your password to anyone else (or did you write it down somewhere ?)
- Is your password specific to D2 or do you use the same password elsewhere ?
- Did you ever give any information (length, composition...) about your password (on these boards or elsewhere) ?
:scratch: :scratch: :scratch:
1)I never write my passwords near my computers.
2)I don't play at internet cafes.
3)The only 2 persons that know my account pass is my bro and sis who played diablo 2 because i gave them the privllege to take stuff of my mules if they need. But they have stopped playing D2 for almost for 6 months, so its unlikely them. :/
4)I never fell for the Dnd rank scam.
5) I never gave anyone my length or composition of my passwords anywhere else.
2)I don't play at internet cafes.
3)The only 2 persons that know my account pass is my bro and sis who played diablo 2 because i gave them the privllege to take stuff of my mules if they need. But they have stopped playing D2 for almost for 6 months, so its unlikely them. :/
4)I never fell for the Dnd rank scam.
5) I never gave anyone my length or composition of my passwords anywhere else.
