open All Channels
seplocked EVE General Discussion
blankseplocked WARNING! - Pishing E-Mails Relating To The DDoS Attack!
 
This thread is older than 90 days and has been locked due to inactivity.


 
Pages: [1] 2 3

Author Topic

Verone
Gallente
Veto Corp
Posted - 2011.06.15 11:51:00 - [1]
 

Just recieved this, this afternoon :

Quote:
A message from our COO.

At 17:00 UTC today, CCP became aware of a distributed denial-of-service attack (DDoS) against the EVE Online cluster and web servers.

Our policy in such cases is to mobilize a taskforce of internal and external experts to evaluate the situation. At 17:55 UTC, that group concluded that our best course of action was to go completely offline while an exhaustive scan of our entire infrastructure was executed.

While some may feel that such a drastic reaction was not warranted, it is always our approach to err on the side of caution in order to ensure the best possible service for our players and the security of their personal, billing and account information.

We understand the effect this disruption has had for our players and apologize for not having been able to explain fully to the community what was going on. In these cases it can often be counterproductive to containment to give out information while we are in the process of evaluating the scope of any potential problem.

Our taskforce concluded at 22:05 that neither the game servers nor the CCP infrastructure had been breached. Further, we can also confirm that some personal details such as users' credentials or credit card numbers were exposed through this incident.



Please check yourself if your personal details was compromised by visiting Account Management page. (link omitted).

The servers were brought back online at 23:00 and we will continue to monitor the situation closely.


Again, we sincerely apologize for this disruption.

Regards,

Jn Hrdal

Chief Operating Officer



The link takes you to a .co.de hosted website that spoofs Eve's Account Security page and asks you to log in.

THIS IS NOT AN E-MAIL FROM CCP!

Be vigilant of bastards like this trying to cash in on your account and ISK due to the unforeseen downtime.

Some ass holes just don't know when to quit.


Zoroa Aulx-Gao
Koa Mai Hoku
Destiny Corrupted.
Posted - 2011.06.15 11:52:00 - [2]
 

Thanks for the heads up.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 11:55:00 - [3]
 

Edited by: Miilla on 15/06/2011 11:57:42



Can you post ALL the headers please and forward it to security@eveonline.com




It's all safe and rosey, nothing was compromised....

See you....



Next time...

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:04:00 - [4]
 


Here's something to think about..

How did they get your email and know you play Eve to target you with a phishing mail?


The GreenT
Posted - 2011.06.15 12:06:00 - [5]
 

to millia
1. ffs you trolling hard today
2. because phishing attempts never happen

Soden Rah
Gallente
EVE University
Ivy League
Posted - 2011.06.15 12:07:00 - [6]
 

bad people use bad grammar... ... personal details WERE stolen....

CCP should never send you an e-mail asking you to click on a link, they should direct you to go to the website on your own. They may or may not remember this basic part of security. But you should always consider any such e-mail suspect.

And yes always forward with all headers to security@eveonline.com (and petition)

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.06.15 12:07:00 - [7]
 

Originally by: Miilla
Here's something to think about.. How did they get your email and know you play Eve to target you with a phishing mail?

Ever used your email to register to some 3rd party site that was compromised ? There were quite a few. Ever used it to buy something EVE-related ? Ever posted something anywhere about EVE where your email was visible (like, say, ever asked for a buddy invite in another forum) ?
Plenty of ways.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:08:00 - [8]
 

Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.


Soden Rah
Gallente
EVE University
Ivy League
Posted - 2011.06.15 12:09:00 - [9]
 

Originally by: Akita T
Originally by: Miilla
Here's something to think about.. How did they get your email and know you play Eve to target you with a phishing mail?

Ever used your email to register to some 3rd party site that was compromised ? There were quite a few. Ever used it to buy something EVE-related ? Ever posted something anywhere about EVE where your email was visible (like, say, ever asked for a buddy invite in another forum) ?
Plenty of ways.


I blame facebook....

Syphon Lodian
Gallente
Posted - 2011.06.15 12:10:00 - [10]
 

I feel left out.. I didn't get phish'd.



(Definitely Facebook. Facebook is the plague.)

Alpine 69
Rubbish Superheroes
Posted - 2011.06.15 12:10:00 - [11]
 

Thanks for the heads up, V. Wink

Mister Rocknrolla
Posted - 2011.06.15 12:11:00 - [12]
 

Originally by: Soden Rah
bad people use bad grammar... ... personal details WERE stolen....

CCP should never send you an e-mail asking you to click on a link, they should direct you to go to the website on your own. They may or may not remember this basic part of security. But you should always consider any such e-mail suspect.

And yes always forward with all headers to security@eveonline.com (and petition)



Never ever click a link in an unsolicited email. Ever. The idiots in CCPs marketing dept (or whoever keeps sending those stupid surveys) should be made to write that 1.000 times.

Don't click on a link in an unsolicited email EVER.


Never.
Ever.


Verone
Gallente
Veto Corp
Posted - 2011.06.15 12:13:00 - [13]
 

Originally by: Miilla
Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.




The email it was sent to happens to be my character name @ a very well known free mail host you stupid tool.

I'll warrant you with a more civil response when you :

A) Post with your main.
B) Learn to troll even half as competently as most on these forums.

Oh, and for reference, the mail was forwarded to CCP as soon as I saw it, you halfwit.


Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:15:00 - [14]
 

Originally by: Verone
Originally by: Miilla
Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.




The email it was sent to happens to be my character name @ a very well known free mail host you stupid tool.

I'll warrant you with a more civil response when you :

A) Post with your main.
B) Learn to troll even half as competently as most on these forums.

Oh, and for reference, the mail was forwarded to CCP as soon as I saw it, you halfwit.




Ahh yes, At least I'm not a halfwit that uses my CHARACTER name as my email or account name.


DeODokktor
Caldari
Dark Templars
The Fonz Presidium
Posted - 2011.06.15 12:16:00 - [15]
 

for security reasons, all but 2 of my accounts have unique email address's.. eve-resources that I am required to register for I use another email addy.

I can confirm that none of my 8 emails received any msg of this sort.

Karl Planck
Labyrinth Obtaining Chaotic Kangaroos
Posted - 2011.06.15 12:16:00 - [16]
 

Originally by: Mister Rocknrolla


Never ever click a link in an unsolicited email. Ever. The idiots in CCPs marketing dept (or whoever keeps sending those stupid surveys) should be made to write that 1.000 times.

Don't click on a link in an unsolicited email EVER.


Never.
Ever.




Tbh there are actually quite a few general never-do's with regard to pc security that we all have become aware of throughout the years. I am shocked that there isn't a mandatory course for grade school children on how to protect yourself. Its certainly more important that learning cursive.

Verone
Gallente
Veto Corp
Posted - 2011.06.15 12:18:00 - [17]
 

Originally by: Miilla
Originally by: Verone
Originally by: Miilla
Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.




The email it was sent to happens to be my character name @ a very well known free mail host you stupid tool.

I'll warrant you with a more civil response when you :

A) Post with your main.
B) Learn to troll even half as competently as most on these forums.

Oh, and for reference, the mail was forwarded to CCP as soon as I saw it, you halfwit.




Ahh yes, At least I'm not a halfwit that uses my CHARACTER name as my email or account name.




My account name is totally different, and the email account was set up specifically for use with Eve so I didn't have to use my ISP's email account, you massive idiot.

Cry Moar.


Rhivre
Caldari
TarNec
Posted - 2011.06.15 12:19:00 - [18]
 

Edited by: Rhivre on 15/06/2011 12:20:25
Originally by: Miilla
Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.




I guess all those WoW emails I get telling me to confirm my account details must be due to a leak on their servers too, cos holy crap, I have a WoW account...same with the ones from my bank....and those targetted Eve adverts I only get when I have an active eve account..

Consider 2 options:

1) People read about the DDOS attack, think "Lol, wonder if we can get some of them to provide login details", and send bulk phishing attempt

2) People who did ddos attack got details, but only managed to get email addresses.

Which of those seems more probable?

EDIT: Just checked the 5 email accounts I have for eve, no dodgy emails on them, annoyingly no offers of extension for body parts either :(



Myra2007
Millstone Industries
Posted - 2011.06.15 12:20:00 - [19]
 

Edited by: Myra2007 on 15/06/2011 12:20:59
Originally by: DeODokktor

I can confirm that none of my 8 emails received any msg of this sort.


Pheeewwww, words can't express my relief. For a moment there I was worried that DeODokktor's e-mail address could've been compromised. Thanks for making a press release ASAP so we can all sleep again.

Ga'len
Veto.
Veto Corp
Posted - 2011.06.15 12:21:00 - [20]
 

People, keep posts on topic here and stop trying to troll Verone. He's trying to help the EVE Community and ultimately help protect all your stuff.

How else are we going to pirate it from you in game, eh?


Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:21:00 - [21]
 

Originally by: Verone


My account name is totally different, and the email account was set up specifically for use with Eve so I didn't have to use my ISP's email account, you massive idiot.

Cry Moar.




And you wonder why you got a phishing email, to an email that matches your character name.

Halfwit genious.


Zag'mar Jurkar
Minmatar
Advent of the Blood Sun
Posted - 2011.06.15 12:23:00 - [22]
 

OR they sent massive emails to random emails in hope that some of them are Eve Players, because phishing is all about sending emails to a large pool to have few responses.

Hell, a lot of people get WoW emails and they never played that game.

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:24:00 - [23]
 

Originally by: Zag'mar Jurkar
OR they sent massive emails to random emails in hope that some of them are Eve Players, because phishing is all about sending emails to a large pool to have few responses.

Hell, a lot of people get WoW emails and they never played that game.


Maybe you should?

The GreenT
Posted - 2011.06.15 12:26:00 - [24]
 

Originally by: Miilla
And you wonder why you got a phishing email, to an email that matches your character name.

Halfwit genious.




Miilla, did you get c*ckblocked last night or something? I mean, usual trolliing is a bit expected from you but you are running at full boar today. Go jerk off to you avatar and come back when you calm down

Zag'mar Jurkar
Minmatar
Advent of the Blood Sun
Posted - 2011.06.15 12:27:00 - [25]
 

Originally by: Miilla
Originally by: Zag'mar Jurkar
OR they sent massive emails to random emails in hope that some of them are Eve Players, because phishing is all about sending emails to a large pool to have few responses.

Hell, a lot of people get WoW emails and they never played that game.


Maybe you should?


Maybe I should what? Play Wow? Got bored...

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:28:00 - [26]
 

Originally by: Verone
Originally by: Miilla
Originally by: The GreenT
to millia
1. ffs you trolling hard today
2. because phishing attempts never happen


They got a 100% target success with him didn't they.

Bingo, Eve player, receieves eve phishing mail, day after DDOS.

Just a coinkidink.




The email it was sent to happens to be my character name @ a very well known free mail host you stupid tool.

I'll warrant you with a more civil response when you :

A) Post with your main.
B) Learn to troll even half as competently as most on these forums.

Oh, and for reference, the mail was forwarded to CCP as soon as I saw it, you halfwit.




So, where are the headers here?

It would help the "community" if you posted all headers here so WE know what to look for.

Troll on.


Chribba
Otherworld Enterprises
Otherworld Empire
Posted - 2011.06.15 12:28:00 - [27]
 

In this thread Miilla has a high post percentage... what's her angle? Laughing

Jovan Geldon
Gallente
Lead Farmers
Kill It With Fire
Posted - 2011.06.15 12:34:00 - [28]
 

Originally by: Chribba
what's her angle? Laughing


Obtuse.

Akita T
Caldari Navy Volunteer Task Force
Posted - 2011.06.15 12:35:00 - [29]
 

Originally by: Syphon Lodian
I feel left out.. I didn't get phish'd.
(Definitely Facebook. Facebook is the plague.)

Me neither. Then again, I never got a facebook account, and don't remember registering anywhere on a 3rd party site with the email used to register to EVE. Thank you, free email service providers, for letting me have as many as I can remember (and then some).

Miilla
Minmatar
Hulkageddon Orphanage
Posted - 2011.06.15 12:35:00 - [30]
 

Why don't you post the headers so we can all see?

Wouldn't that be HELPING the Eve Community?



Pages: [1] 2 3

This thread is older than 90 days and has been locked due to inactivity.


 


The new forums are live

Please adjust your bookmarks to https://forums.eveonline.com

These forums are archived and read-only