Forums-->General game forum-->
| Author | How to Prevent Your Character From Getting Hacked |
|---|
| 1.1. Here, the hacker uses the tactic of promising you resources, diamonds etc. if you give him/her the password to your account. Such a request may look like – ‘I am having some extra diamonds/resources, and I would like to donate some. If you would like to have it, send me your password and I will fill those resources into your account’. Such a mail might seem absolutely ridiculous to many but believe me, there are many people who fall into this trap. You will never gain anything by replying and falling prey to such requests, no matter how promising the offer might seem to be. What should you do? Do not even reply to him/her. Forward the mail to character Insults. See Appendix to know how to do so.
1.2. This scheme could be referred to as ‘Character Exchange’. This is how it works. The hacker asks you for your character in exchange of his. In most cases, the hacker promises a stronger character, or one with a higher level. Remember – Even if this deal is successful and both of you successfully exchange your accounts like it was promised, both characters will be blocked for password transfer. What should you do? Just ignore the request and forward the mail to character Insults. See Appendix to know how to do so.
1.3. This particular scheme is a very tricky one and is not always used with the intention to gain control of your character. Rather, the main intention of this could be to help someone out. What happens in this case is that the hacker will ask you for your account’s password in exchange of doing combats and enrolling in your absence. Most people might give their passwords to their friends who might promise to do this for them. But there are 2 things to be considered here. Not everyone would actually turn out to be what you think. They might do this just to get hold of your character or gain some kind of benefits by the temporary use of your character. For instance, he/she could send out insulting mails through your character. The other point to be noted in this case is that such an arrangement is illegal according to the game rules and your character will be blocked under the password transfer rules. What should you do? If such a request is put to you by someone in the game you don’t know through PM, just forward the PM to character Insults. See Appendix to know how to do this. Or if such an offer is put to you by your real life friend, straight away deny his/her request and tell him that what he is suggesting is against the rules of the game. End that discussion then and there itself.
1.4. This particular case is very common not just in this game but in almost all online services. In such an attack, the victim receives a mail from a person who seems to look like an administrator of the game. A sample mail could look like – ‘Due to a recent MySQL crash, we need to update our databases. Please reply to this mail with your username, password and email id’. Remember, all such mails are fraudulent, the administration will never ask for your password through mail. Some mails could also ask you to pay some amount of money to get something done. All these mails do nothing but help the hacker to steal your character. Administration characters are part of the clans that start with ‘LWM’, e.g. #0 LWM – Administration. Some people who send you such fraudulent mails might have names resembling that of administration characters. Do not reply to any such mails and forward the mail to character Insults. See Appendix to find out how to do so. Also, if you find anyone having a name resembling any of the administration characters, report him/her in the Complaints and Application – Finance and Others section of the forum. | Now, let me move on to point 2.
2.1. If the hacker hacks into your e-mail which you have used in Lordswm, he/she could easily hack into your account. In this case, the attack is indirect. The hacker targets your e-mail id, but ultimately, he gets hold of your character. To protect such a theft, you should make your email account secure enough. This can be done by putting up custom security question and complex password for your e-mail account.
2.2. Most people have the same password for all their accounts on the internet, whether it is for their e-mail account, Amazon, e-bay or even Lordswm. If the hacker gets to know your password to any of the sites you have used it in, he/she can easily hack into your Lordswm character as the password you have used is the same. The best way to avoid such a happening is to use different passwords for different accounts spread across various sites on the internet. This will ensure that even if one of them is hacked, the other accounts shall remain safe. If you are too lazy to memorize all of them, even changing only one of the characters of your password can help. Also, make it a rule to not use your Lordswm password anywhere else, especially on clan sites. There have been cases where players have entered their Lordswm passwords in clan sites which have led to their character being infringed upon.
2.3. Do not use automatic input (autocomplete) forms especially if you are using someone else’s computer or if you are playing from a cyber café. Passwords saved in such computers for auto-filling can be recovered very easily. If you are playing with someone else’s computer, make sure you delete all cookies before leaving. Watch out that there are no key-loggers installed on the computer. Key-loggers are those softwares that track which keys you are typing on the keyboard and record them. Thus if you are typing in the password in a system where such a software is installed, your password could be captured. To avoid the effect of such softwares, use the virtual keyboard while logging in. When you finish the game, do not simply close the browser window, it does not log you out. You need to click the logout button to make sure that you are logged out from the current session.
2.4. Some people might offer you scripts that promise better gaming experience. But they in fact may prove to be a machinery to steal your password. Be careful while using any 3rd party scripts. The game has no official scripts, though there are some scripts officially recognized by the admins which are safe for use. By downloading or installing any unauthorized 3rd party softwares or scripts, you risk losing your property or even your entire character. The administration is not responsible in any way for the use of such programs. Even if you start a program and feel nothing happened, it doesn’t mean that your password is safe, your account could have already been compromised and recovery in such cases is very difficult.
2.5. Another common method is password theft through other sites. There are cases where a player is invited to go to third party sites and asked to enter their username and password there in return of promise to provide your character with lots of resources, diamonds, etc. After typing in your account information in the site, you are not getting anything. You are merely giving your account to the intruder. In most cases, the accounts are not hacked immediately. After receiving account information of many accounts, only then sometimes the hacker infringes into those accounts. Thus even if nothing happens that particular instant, you are 100% bound to lose your character some day. Recovery in such cases is almost impossible. And also, giving your character information through such sites make you responsible for password transfer and your account will hence be blocked. | General Steps to Ensure Account Safety:
1. Use complex passwords. What I mean here by a complex password is a password consisting of a combination of upper and lower case letters, numbers and special characters. A sample password could be – Sup&eRmAn9867.
2. There are many people whose passwords resemble their usernames. Take an example of a guy X whose account name is ‘Aloha’ and password is ‘Aloha1’. Many people do this, mainly because it is very easy to remember. There is a reason why many famous websites do not allow their users to have their usernames within their password. It compromises your account to a huge extent.
3. Do not tell your password to anyone, not even to your friends. You never know when they could betray you. Keep it your own personal secret.
Make sure that you take all precautions to stay safe. There is no use crying over spilt milk.
P.S. The administration reserves the right to disclose confidential data (e-mail addresses, login time, IP address, passwords, etc.) to law enforcement authorities. Offenders can be punished under Illegal Access to Computer Information and prosecuted to the highest extent possible by the law.
Appendix:
A. To forward a mail to character Insults, click on the reply button in the PM you have received. Now change the name in the ‘To’ box to ‘Insults’ and send the mail. The PM you received will be automatically forwarded to Insults. | | B. The only officially recognized scripts for ths game are those by LazyGreg, xo4yxa, HapblB, and Antviolence. Beware of forgery. | buddy, try to get yourself clear on the definition of 'hack' and 'crack'.
in short:-
1. in most cases, password leaking happen due to 'phishing'.
2. Of course, a 'too simple' password was easy to be guessed. for exmaple: your id is 'ABC' and your password is 'ABC1234'. you might not telling other on your password. but, someone might just try to key in 'ABC123', and try the next 'ABC1234'; then you lose your id.
3. staff will never ask for your password. they have the power to direct access the database to change any data IF they have to. they dont even need your password. for example: Empire give prize on event, keeper give penalty.
your password? that doesnt matter for them. | | Just tried to translate was Lexa said there :p | For Vlaer: before posting it, you have to take a look at lexa post.
That is Russian but he used blank line, paragraph, heading, proper propositions etc to make his there readable(look-wise).
you missed some blank lines and heading which make this thread like a story | you missed some blank lines and heading which make this thread like a story
I agree, it could have been more presentable. But all I tried was to make a ready reference to anyone wanting to get a brief idea of what Lexa had said. Its not too hard to read what I have written in there I guess. Yes, I might have missed out some points but I guess I have retained the essence of what Lexa wanted to say (though not too presentable :p). | for Vlaer: Good job :)
Even though most people know these things it is still going to help those who dont :) | Even though most people know these things it is still going to help those who dont :)
Exactly. Most of what I have described here is pretty much obvious. But still, I did this cause I had seen someone in the forums saying it would be great if we had a similar thread here :p | cause I had seen someone in the forums saying it would be great if we had a similar thread here :p hehe :) well i am sure he must said it coz he seen some threads like this
https://www.lordswm.com/forum_messages.php?tid=1921795 etc.
Anyway nice work :P | | for Mohini: you are prtty much right :p | 99% of people who have been 'hacked' weren't 'hacked' in the usual sense.
Pang has it right in saying that most players who have lost their accounts either;
A) Clicked on a malicious external link and thus rendered their password through some form of malware etc.
B) Gave their password to another player/friend/family member and found that they lost control of their account.
C) Left their account logged in and someone, be it friend, family or stranger, changed the password.
Maintaining a strong/hard to guess password is common sense and applies to any site. You ought to have given the TLDR version in post 1, not post 4. It would have been better to have removed all of the large chunk of text, I am too lazy to read it, many others would have been too ;) | Maintaining a strong/hard to guess password is common sense and applies to any site. You ought to have given the TLDR version in post 1, not post 4. It would have been better to have removed all of the large chunk of text, I am too lazy to read it, many others would have been too ;)
Guess you are right :p But all I have done is covert what Lexa wrote in English :p | Very good work Vlaer. The point is very clear to anyone that reads it regardless choice of words or layout.
I still fear that the effort might be wasted. The ones ignorant enough to give out their password will probably not read this post anyway.
I have previously written about the reason why roulette might be good to have in a game. It is because if players lose enough here, they are less likely to lose real money in RL. The same could be said about LWM characters. If they lose their character here, they might be more cautious when handling their bank accounts and credit cards. | | for STBs: Very true. Most people who do it won't stumble upon this thread, but even if I am able to save one account from being hacked through this thread, will be a great achievement for me. Already we are low on numbers...good players being hacked is the last thing we would want. | | Hey , how do you know my password is Sup&eRmAn9867. Haha , i'm just kidding. | I'd say that whatever you did here is commendable at least from my side. I read all of your posts and it does make sense. Though, I know all of the things written there; still I liked to remind myself of some 'not so difficult to maintain' precautions for saving you months/years of character-building work.
Good job :) | Hey , how do you know my password is Sup&eRmAn9867. Haha , i'm just kidding.
Let's see if someone hacks into your account :p |
This topic is long since last update and considered obsolete for further discussions.
Back to topics list
|
