Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
MMOPRG's Virus attack
Teran1987
Member UncommonPosts: 202
Ok, just so everyone's up to date, this morning MMORPG did have 3 virus' that attacked your computer when you visited the home page, and just visited, didn' have to click anything. My computer immediately shut down all IE and killed the virus, dunno bout anyone elses, but the virus was PWS-Lineage, or something close to that and its a keystroke recorder (i.e. it records passwords you type in and sends them to a remote location) the other 2 virus' i only hear about but 1 is a jpg and the 3rd i dunno. If you google PWS-Lienage, or w/e it is, you'll find the files it creates to copy your crap. And i haven't seen it, but if MMORPG has an official statement someoen link it to me plz kthnxbai
"Life is not judged by the breaths we take, but by the moments that take our breath away."
Comments
A friggin KEYLOGGER??
Grand... so at least I know who to sue when I get fired... MMORPG.COM
- - - -
Support Independent Game Developers
That does not negate the responsibility MMORPG.com has to prevent their users from having their PC's infected by a virus they know is there. They should have taken the site offline.
If I get fired... I will persue legal action.
- - - -
Support Independent Game Developers
That does not negate the responsibility MMORPG.com has to prevent their users from having their PC's infected by a virus they know is there. They should have taken the site offline.
If I get fired... I will persue legal action.
Good luck with that.
There isnt any legal duty of a free site in any respect, so you're swimming upstream legally (yes, I am a lawyer) -- if you can't prove a duty of care (and there isn't one here), there isn't any hat to hang liability on.
Quoting people doesn't make you clever, in fact, it makes you all the more stupid for not bothering to read the quotes you post in the first place.
McAfee jumped on the trojan as soon as I entered mmorpg.com front page, but the trojan still got installed and comes back every time I re-start my computer. Someone suggested trying to start the machine in safe mode, I will try that tomorrow and hope to god it helps.
I will be using Firefox from now on, but the fact is that it may be too late for me now....
i got 2 of these viruses and at 1st i thought it was the music i was downloading last night lol
i pwned those viruses they werent very serious either
"Life is not judged by the breaths we take, but by the moments that take our breath away."
You could always do: Start > Run > msconfig
And check for anything suspicious running on startup.
IRC Operator @ ForTheGamers
Visit my website ...
Upon further research, all FWS-Lineage does is copy..lineage account info and a few other games that i've never heard of. According to mcafee
"Life is not judged by the breaths we take, but by the moments that take our breath away."
Hey guys, we are very sorry about this and we have been fighting this problem non-stop since yesterday. Unfortunately at this time we cannot stop the hackers from placing the virus script on our page(s) - all we can do is remove them once they appear. Meddle and I are sleeping in shifts until this is resolved.
To make it really clear, this is NOT coming from the ads. The hacker(s) are actually modifying the pages on our site to fire the script. They have used a few different tactics which slows down the process of removing them.
The attacks appear to originate from Korea. We have found reports of other websites experiencing the same attacks, and it appears to be a coordinated effort to exploit a venerability in Windows with the ANI cursor files.
As people have stated, this attack uses ActiveX, so disabling this in your firewall or IE should protect you. Also using a non-IE browser should keep you safe as well.
- MMORPG.COM Staff -
The dead know only one thing: it is better to be alive.
Not post this now after there was several topics about it, and most of the people were allready warned by their anti virus programs.
I know you are trying to avoid potential damage to your site. But keeping this quiet was a bad idea in my oppinion....
"Before this battle is over all the world will know that few...stood against many." - King Leonidas
Leaving a site up that is knowingly infecting visitors with a virus certainly crosses into some seriously questionable territory. How the hell isn't that neglecting duty of care? It would be one thing if they DIDN'T know about it... but they do.
- - - -
Support Independent Game Developers
That sucks! I hope everything is resolved soon.
Good luck guys!
I don't know about the strange sense of justice you have. But if the virus is put to their site against their will, it's certainly not their fault. And as long as you aren't paying the anything for viewing their site, they don't have any responsibility towards you - including no responsibility to prevent their site from being used to attack you.
Just go sue those Koreans (or whoever is making the attack in the first place), they are the criminals, and leave the victims they are using as their tools alone.
Anyone who has entered this site from computer withouth AV, and with IE was infected. They know about it. Yet they decided to keep it quiet.
If it would compared to legal , and life experience , it would be same as
Person having sex with the woman that has HIV. She never tells him. But when heu finds out, she says that she is battling it , and that she got it because she was raped by thug.
Was this legally and morraly right ? No. She would be prosecuted , for endangering life of another person. Even though she was victim.
Back to mmorpg.com
At least 1% of site visitors were knowingly infected with keylogger trojan. And they were not warned.
And although the trojan attacked mmorpg.com site , it was targeted at users of this site.
If admins didnt manage to destroy the virus. They should have closed the site to prevent their users getting infected.
Ok , so they didnt want to lose 1 day worth of advertisment money....
But a warning is the least thing they could do. Yet they decided for silence.
"Before this battle is over all the world will know that few...stood against many." - King Leonidas
I wouldn't even know i fi got infected because my subscription to my anti virus ran out and i use ie lol so hope i did not get it but i haven't used a cc on this pc since i started going on this site though
Hello everyone,
I am very sorry about our handling of this. To be honest it really caught us by suprise and in retrospect I do agree we should have posted a warning about this and/or shutoff the web site completely. Most of today we thought we were finding solutions to the problem when in fact we were not...and it kept coming back. Apparently someone in Korea really had it out for us and had their hooks deeper into our machines than we realized.
You might have noticed that our site was down for over 5 hours earlier today - this was when we realized we were not winning this battle and needed drastic measures to counter the threat. We have taken these measures and we are fairly confident that it will not happen again (3 hours since updates and still clean - *crossing fingers*)
During this time we were doing what we thought was our best to stop this attack and we probably removed it from our code over 30 different times, I agree we could have helped by posting a notice, but honestly it would have pretty much been a notice to let you know you were just infected if you were running IE with no anti-virus protection - because in this case it got you on the first page.
I apologize for any mistakes we made here - but please don't fail to recognize that none of this would have happened if a) some evil bastard did not make this virus and hijack our site and b) Microsoft did not leave a giant exploitable hole in their codebase for .ANI files (also note there should be a Windows Update to fix this very, very soon from Microsoft).
Rattrap: We did not try to hide from this at all, I located every thread I could find in the past 2 days and answered people's questions the best I could and explained what we were trying to do to stop it. Both Meddle (Ben) and I made every effort to "firefight" this mess from the moment we discovered it and we never left our servers infected when we knew they were. When we realized we could not stop the attacks we DID shut the site down and took drastic measures to try and block it. I don't think we did the best we could have and countering this threat, but we did ACT and our motives were not greed as you implied in your message...
- MMORPG.COM Staff -
The dead know only one thing: it is better to be alive.
I think what you miss here is personal responsibility and CHOICE. Everytime you choose to have sex, even with a condom, there is a chance you might contract something. You engage in the activity knowing this fully. If you ask your partner if they know of something they have and they deny it, only then does it even go into a questionable area.
The same goes for websites. You know that they could have all kinds of stuff on there, but you go there knowing this fully, you probably even have antivirus software on your computer just for THAT reason... you KNOW its out there. Your own anti-virus is evidence that you apparently know of it and chose to protect yourself, not be protected. You could go to some sites that are barely legal, or not legal at all, and are known (or at least rumored) to be full of trojans, probably intentionally. That's your choice, and MMORPG.com didnt in any way or form swear or pledge to you that they are virus free, it's just your assumption or demand. But as i already said, the existence of anti-virus software already proves that while you might avoid sites you dont think are save you still prepare for possible virii, since it can, and did, happen like it did here.