forums.rs

Forums

hacked second time-auth active

Quick find code: 408-409-379-66274627

TooFast

TooFast

Posts: 8 Bronze Posts by user Forum Profile RuneMetrics Profile
Hello Jagex,

I am sorry for this, idk how will sound like, i am just so pissed off.

I got hacked second time on my account with the authentificator active.
I lost billions - money, party hats, santa hats, weapons, armors and so on. Everything it was tradable its gone.

So.. i am asking you, JAGEX, this time to fix it. I dont care so much how you do it, roll back or whatever, i just want my things back because i pay for this service and i have the authentificator active. (ITS THE SECOND TIME)
Its not hard to see who/how and from where they logged on my account because i didnt logged in for alot of days.

I am pissed off because jagex in some way give a guarantee that the account its not hackable while using the authentificator.

"Your account is protected from hijackers and you will need your code generator each time you log in."

Also i know that jagex will try to fool me and to say.. but what about ur email.. because on the same page we can see this

"It is also really important to keep your email account secure."

Well guess what Jagex, my email is ok, the auth its still active so they pass the auth. That mean its just YOUR FAULT FROM NOW ON.


As i said, i am waiting to recive all my things back because i am paying for this service. As i lost so much time on this game i will also do the formal way if i dont get a solving.

I am posting here because guess what again, i cant even find where to post a ticket. Everything is so dodgeable here just to make it harder.

I am sorry for my english, its not my native language.

Waiting for a solving as soon as possible. Thx.

14-Feb-2023 17:50:49

Mrs Ana

Mrs Ana

Posts: 9,010 Rune Posts by user Forum Profile RuneMetrics Profile
Hi, TooFast.

Do you use third-party software to play RuneScape? Do you have any linked accounts? If you use third-party software to play RuneScape, please remember that A) the usage of these programs are
at your own risk
and B) the creators of these programs have complete access to your account while you log in using their services. Furthermore, if you have linked accounts -- either because you set them up or because someone else (a hijacker) did -- these allow you or a hijacker to easily log in without having to enter the password and bypassing the Authenticator.

If you want to see if they are any linked accounts that were not added by you, please follow the steps below and appropriately remove them if they are not recognized:

1. Go to the yellow/orange "
My Account
" or "Account" link at the top right corner of your computer screen:



2. Once there, head to "Linked Accounts" and click on it:



3. You will be presented with the image below. If you don't recognize any of the linked accounts, remove them. If you do, ensure that they are completely secured by following the instructions on the Security tips Support page for Google's 2-Step Verification; Apple's two-factor authentication; or Steam Guard:

14-Feb-2023 18:46:26

Malua
May Member 2006

Malua

Posts: 43,113 Sapphire Posts by user Forum Profile RuneMetrics Profile
There are three methods to get past an active Authenticator without disabling it.
1. with physical access to the Auth code generator
2. logging in through a third party linked account.
3. through an insecure computer. Meaning the computer has a keylogger or trojan.

Mrs Ana asked you to check for a linked account. Did you check? I know you said you don't have a linked account but, did you check?

If you are certain your Auth code generator has not been used by anybody and you are certain you don't have any linked accounts, have you reviewed your computer security?
Checking your computer for keyloggers or trojans is necessary in a case like this.

If your Authenticator is still active, is it set to remember your device for 30 days?
It's better to have it ask for a code at every login as the 30 day thing just makes it easier for a hijacker.
Forum Community Helper -
Information about Moderators and Community Helpers

15-Feb-2023 06:41:37

TooFast

TooFast

Posts: 8 Bronze Posts by user Forum Profile RuneMetrics Profile
yes, i checked. On my side everything is ok. I am not coming here to acuse jagex of something, but they are providing some insecure connections as i see.

I am not a kid and i am pretty good on using computers.

I never got hacked on anything.. never but in runescape, so what that mean ? They are not interested on my crypto coins, my bank account or my businesses if they have access on everything ?

No, they got access only on runescape.

I also understand all the questions but better ask jagex to check what happend and to retrive my items if its not a problem from my side. I have seen that jagex doesnt give the items back on hijack and now i am asking.. when they are saying that without authentificator a user cant login and still this happen, who fault is ? Why is this a paid service anymore if they dont even solve the security problems? What am i paying for ?

There are also laws on this world, dont forget about that. Taking money from users for a service that doesn't even protect their accounts or worst, maby their personal data are breaking some laws.

If its not enought that i lost my years on playing on that account, i even lose my time now without having any real help and making people understand that even if this is a game is still a paid service.

Again I am sorry for my english, its not my native language.

Waiting for a solving as soon as possible. Thx.

15-Feb-2023 07:02:33

2_Tron

2_Tron

Posts: 23,025 Opal Posts by user Forum Profile RuneMetrics Profile
@TooFast, for the record, if you wanna find out if you are/have been a target for internet criminals
https://haveibeenpwned.com
... <-(link) this might be a start to look for.

Bragging about your wealth and business isn't a wise move and no those criminals aren't interested in such things as they have the chance of meeting law enforcement too soon, so they avoid such things.

Jagex/JMods check their steps everyday moreso as much as they can, including all employees, meticulously if they need to, if there are signals that justify these investigations. If their employees are breaking laws they find themselves sooner than later in jail or in front of justice ... than you and I do know of.

What Jagex/JMods do hope is that players do as much as possible, and follow Jagex's lead in '
Jagex's Support Centre
' ... Security tips ... <- (link) and secure their accounts as well as their computers pretty tight, to reduce the risk of being hacked/hijacked.

Why does Jagex have a 'paid service'? That's quite simple, to develop/manage/update/upgrade/maintain/secure etc. etc. an online game like 'RuneScape/OldSchool RuneScape' ... and moreso develop newest games, Jagex does need to have a paid service to pay their employees for doing soo much work and effort to offer us these games.

Offer player protection is absurd to suggest. Nobody does know what you are doing online, and simply said, nobody likes to know as that hasn't anything to do with playing an online game. Although ...

Now ... I hope you do realise that somehow somewhere at your end something is out of order and you need to fix that before it is too late.
Don't jump too fast to conclusions but workout the help that is offered as you might be missing something overlooking a small detail of great importance.

15-Feb-2023 08:37:27

Quick find code: 408-409-379-66274627 Back to Top