forums.rs

Forums

Account HACKED after ~17 years

Quick find code: 408-409-122-66274040

Sub 0180

Sub 0180

Posts: 136 Iron Posts by user Forum Profile RuneMetrics Profile
I kept having Jagex ask me to add an authenticator. So I finally decided, what the heck, sure. I have billions in Rares I've collected, I guess it won't hurt to add every possible safeguard just to be safe.

I don't log in for a few months and I come back to 15+ years of work gone. Billions in santas, halloween masks, and other rares. This is what I enjoyed doing in runescape, getting 99s and collecting rares. Everything, GONE. I was saving up to have my favorite color party hat - Yellow. I was so close.

Bank pin- Gone. Why? How did they get my password? How did they get in without my authenticator? How did they remove my bank PIN? My E-Mail- Secure, no unknown IPs logged in. I have so many questions.

When I'm not on my computer, it is turned OFF. I live alone, nobody ever has access to my computer. I only login on this one computer. Nobody EVER has my phone BUT me to access my authenticator.

I am absolutely sickened by this and have no idea what to do as there's no way to contact Jagex about things like this. There is obviously something SERIOUS wrong with their authenticator or a Jagex employee found an account that wasn't active for a while and helped themselves. These are the only 2 things I can possibly think of as to how this has happened, as I have NEVER had my account compromised in any way.

Does anyone have any advice as to what to do? I've always been a legit player and have no reason to continue my ~17 year journey with everything I've worked hard for gone with no reason.

I know Jagex typically doesn't replace items, however, knowing I used every single system they have in place to safeguard my account, I think this should be an exception as this is their flaw not mine. I never received any information that my account was even being ATTEMPTED to be taken over via E-mail.

05-Feb-2023 20:34:28

Malua
May Member 2006

Malua

Posts: 43,113 Sapphire Posts by user Forum Profile RuneMetrics Profile
Hi there
Sub 0180


Start by checking the 'Linked Accounts' tab in account management.
If you can see any accounts linked in there, unlink them.
Click on 'Manage Steam' to check for a linked Steam account.
If the only account linked in there is your own, check the security of that linked account on its other website as the hijacker has access to it and has used that access to get into your RuneScape account.
Forum Community Helper -
Information about Moderators and Community Helpers

05-Feb-2023 22:36:08

Malua
May Member 2006

Malua

Posts: 43,113 Sapphire Posts by user Forum Profile RuneMetrics Profile
JMods don't need to "help themselves" to players items/gp.
JMod accounts can generate whatever they want.

Was your password changed by the hijacker or was it still the same?
Was your Authenticator disabled or was it still active?
Is your email still registered to the account or has the registered email been changed?
Has your Bank PIN been removed or is it still active?

The security instructions to work through to review your security setup are: Security tips
Forum Community Helper -
Information about Moderators and Community Helpers

06-Feb-2023 09:37:49

2_Tron

2_Tron

Posts: 23,025 Opal Posts by user Forum Profile RuneMetrics Profile
Sub 0180 said :
I kept having Jagex ask me to add an authenticator. So I finally decided, what the heck, sure. I have billions in Rares I've collected, I guess it won't hurt to add every possible safeguard just to be safe.

I don't log in for a few months and I come back to 15+ years of work gone. Billions in santas, halloween masks, and other rares. This is what I enjoyed doing in runescape, getting 99s and collecting rares. Everything, GONE. I was saving up to have my favorite color party hat - Yellow. I was so close.

Bank pin- Gone. Why? How did they get my password? How did they get in without my authenticator? How did they remove my bank PIN? My E-Mail- Secure, no unknown IPs logged in. I have so many questions. ... If you had RuneScape Authenticator installed a few months back ... it does mean someone has knowledge about your credentials, ALL of them, and has nothing to do with the installation of authenticator.
It was something that was coming at you but 'when' was an anybodies guess.

06-Feb-2023 11:08:24

Malua
May Member 2006

Malua

Posts: 43,113 Sapphire Posts by user Forum Profile RuneMetrics Profile
Sub 0180 said :
Password was not changed. Authenticator still enabled. Email not confiscated. If this is the case and you have checked and found no linked third party logins, the only other possibility is that you have been tricked into clicking on a dodgy link and have given permission to a hijacker to directly access your device.
They have used this access to get into your RuneScape account.

The only way to check this would be to examine your browser history. You said you had been away from the game for a few months and logged in to find that a hijacker had been in so there will be a lot of browser history to check! :(

Usually this type of hijack occurs very soon after your own login but it depends on what setting you had on your Authenticator. If you set your Auth to ask for a code only every 30 days, the hijacker would have had 30 days to log in. (I don't recommend setting Auth to ask for a code every 30 days)
Forum Community Helper -
Information about Moderators and Community Helpers

28-Feb-2023 22:17:32

The contents of this message have been hidden

06-Mar-2023 23:32:57

Quick find code: 408-409-122-66274040 Back to Top