Update: Be advised to stay off the neoboards, userlookups, false turmy/snowager links, or just anywhere on the site until TNT clears up the current mess. We recommend you stick to playing normal games and avoid other users this weekend due to an outbreak of CG scams. Have a safe weekend! The latest Cookie Grabber scam has been detected. This one affects user shops. If you are out to snipe a cheap codestone, beware. This scam lures users into shops with the offer of cheap codestones and valuable items being sold for only 1np. Experiencing technical difficulties If you visit the shop, your information will be stolen by the cookie grabber. So if you see any suspiciously cheap items stocking in shops, avoid restocking them. If you think you have visited an infected shop you need to change your passwords. Learn more about account safety here. Scams and cookie grabbers can easily be stopped by updating your browser to the latest version of Firefox and using the NoScript addon. This will block any malicious scripts and ensure your account safety. Infor mation found at jellyneo.net and is starting to be posted on boards!
Thanks. Useful to know actually as I probably wouldn't have seen this otherwise. +rep. Did you hear about the auction issues that were going about earlier this weekend? Sounds like they need to sort themselves out. I still can't work out why they don't have proper staff in over the weekend. Surely that's the time the traffic on the site is at it's heaviest?
Thanks for posting. i got CG'd last night by accident, but some nice people on here helped me out and my accounts are safe.. =] There are alot on user lookups aswell.
No never heard anything about the auction thing just this when I was surfing boards for a few things and jellyneo had a thing on it. All I could thing is regardless of legitness or not it sucks loosing accounts. The lack of staff on the weekend could be a good thing ... but in this case it isn't so I guess everything has its pros and cons :S I just hope all the accounts stay safe I installed the script thing that jellyneo suggested and it was cool because it did stop a couple CG's I managed to bump into. If it wasn't for that I think I would have lost my main account.
Just on a side note... how do CG's work? Obviously, through XSS, they can get ahold of your cookie values, but does that really allow for session hijacking? And shouldn't your login be locked to your IP anyways?
I wonder how TNT's filters would've let this one slip by. Sometimes, they won't even let me post some sunnyneo made stuff, and of course, no curse words Lol, failz, TNT got pwned Thanks for the reminder btw :kiss: , saved my account
Oh, thanks for the update. It's been on the boards, starting with the BDC of course, but I hadn't known the details. Installing NoScript now, and changed all my passwords last night.
That was my plan to but the firefox add on works amazing though I am taking a few more steps and avoiding usershops today
Ergh, NoScripts was driving me crazy so I just uninstalled it. :x (It was irritating me so much that I was lurking the PC like always, but couldn't see people's pets on the pet lookup pages.) I'm just avoiding usershops as much as possible, and only going to the userlookups of people who I already know/have seen around.
Just a warning, I would try to not post on the neoboards about clicking a CG incase mods are watching. I clicked a CG on the neoboards and I went back asking people what to do to keep my account clean and within minutes my account was frozen for falling for a scam (after I changed pass, cleared cookies ect.). Basically, I think TNT is freezing every account they know or assume to have clicked CG's to try and keep the scammers away from accounts.
Well its for your own safety. Glad I was away this weekend. I heard about this on a pluthera of sites. They are so strict on everything and yet they can't manage to stop it all.
I just don't understand why everyone is buzzing about this. Just PIN everything in your account, keep a minimum of nps on hand and you're good to go. The worst thing that might happen, you may lose the nps you have on hand and items in you inventory. People are freaking for absolutely nothing. On the neoboard, it's getting crazy. As soon as someone post a link, there's like 15 peoples posting "CG reported!!!!".
You could also lose your account entirely if they change the password/email. Knowing TNT, the likelihood of getting back your account is rather slim. :|
How can they change the password ? You need the password to do so and as far as I know, you won't find him it in the cookie string. Else, show me where cause I wanna know They won't be able to change the mail neither if the pin is present.
cant a cookie grabber get pin numbers too? I have no idea about it so I cleared my cookies today and changed my pass, as for the no script thing the only thing that sucks with it is that you have to constantly turn it on and off for example read a neomail you can keep it on tp reply to neomail you must turn it on you know that sort of thing. Im keeping it until all this is over.
Well, this goes back to my earlier post... why would the password or pin be stored in the cookie string? I really don't think it would be, especially the pin. [And to repeat myself, why wouldn't they lock your session to your ip address?]
PIN is obviously not recorded in cookies. Otherwise you wouldn't have to type your PIN everytime you want to access PIN-secured webpage. Reason for cookies is so you don't have to log-in everytime you visit a neo webpage. And I have no idea why it's not logged to your session IP. I do know that alot of websites don't have IP specific cookies, it might be a higher drag on resources that could be the reason.
password IS possible pin is not. Not going into big details but have trust And the reason people get frozen for "clicking" a cger is because the tnt IP ban the person who put the link to the cger. ........................................................................................................ It works like this: Account One ---------ip address 255.1 Account Two------ip address 255.2 Account Three --------ip address 255.3 Scammers IP address 255.4 ......................................................................................................................... The scammer logs in the first person & second persons account, so the 2 accounts now have two ip`s there`s and the scammers. Account One ---------ip address 255.1 & 255.4 Account Two------ip address 255.2 & 255.4 Account Three --------ip address 255.3 Scammers IP address 255.4 .............................................................................................................................................. The Tnt then catch the board and the scammers IP Is Banned , in which the first 2 people will be frozen for having the sammers IP address. Tnt Ip Ban 255.4 Account One ---------ip address 255.1 & 255.4 FROZEN Account Two------ip address 255.2 & 255.4 FROZEN Account Three --------ip address 255.3 Scammers IP address 255.4 FROZEN
Well, I'm assuming only if your account was used to propagate the CG link -- and there's no reason why the creator of the CG wouldn't. Oh, by the way, check this out: http://it.slashdot.org/story/09/06/29/2 ... -Scripting This would make XSS much much harder ^^.