ShawLOL 50 Posted October 31, 2020 There are currently tons of legit hackers, who creating cheats for APB. Unbelievably how many Share this post Link to post Share on other sites
cowhorseman 441 Posted October 31, 2020 On 10/30/2020 at 12:10 PM, ArtDeco said: Again, none of us have any idea how are accounts got hacked into. I personally never downloaded any keygens, never ran suspicious software, never shared account info or anything that would jeapordize the account. This is a strange incident. it depends on a person. how much they hate you or if you have something you want. if i know right theres software that can basically tag you while your online like ips or what not and from there they can basically go on a hunt to find out what your account is or they use logic to try and think like you and guess what your account could be. like for instead said friendly man isnt so friendly so saying you like horses might lead him to think your account could horselover420@emailnamehere.com and then bingo hes in Share this post Link to post Share on other sites
wHisHi 206 Posted October 31, 2020 10 hours ago, LaFuggitiva said: It doesn't fail, you can still login even if the codes changes you still use the same one the app told you 1 min ago. Oh btw, yes, even 2FA can be brute forced or bypassed in the most gg way, like hackers do with youtubers, they just duplicate your browser/pc so they don't need any password or code, they are alredy logged it, but that's an issue related Chrome, idk if this thing can be done on other browsers or in other ways. Changing passwords and activating 2FA Can help, but isn't secure anymore in 2020 even with those active. If the video is true and if that guy can do things like take emails and psw easy peasy like nothing, who got auth off is f*, maybe he/she has also a 20 chars password that nobody can even think of. Damn I cant put haha smile again... Can you say something more obvious please? Share this post Link to post Share on other sites
(Xbox)MortisedGuide 46 Posted November 1, 2020 On 10/30/2020 at 1:49 PM, ArtDeco said: Hello, I want to give attention to a an issue where a number of APB accounts have been breached in the past day or so. As some of you may know some accounts in EU have been reported to have been hacked in the today and yesterday. Mostly targeting well known "theme maker" accounts so far. One of my alternate APB accounts have also been hacked as my friend in Dischord pointed out that one of my chars in that account were seen "speed hacking" in mission districts while I was not home and at work. I'm not going to name any names or victims but I will give a hint of the suspected culprits as some of you in the APB community already know them, Snipped Name and Shame ~@mayii Just take some precaution and change your passwords and set up a 2 step verification process with your APB Gamer first accounts! As for how our accounts got hacked we don't know, I never did anything stupid to have my information stolen like that. I think this is a real issue that Little Orbit should take a look at. I will now take this up with Support. Chrome had detected a compromised password back in september. I knew this shit was gonna happen Share this post Link to post Share on other sites
Aymes 0 Posted November 1, 2020 (edited) Not saying he is a cheater - but you have to look at all angles, here we go - Oh look the cheaters making up some crap saying oh no my account has been banned due to a speed hacker hacking my account. now his cheater friends can make out they were not cheating by also saying oh my account too was hacked, and there you have it escaped a ban - isn't that how it goes? that could be a possibility - How do you even get your account hacked, especially when you said hackers are targeting "theme maker accounts" and how would you know if they were "theme maker" ones in the first place? you would have to literally ask them if they were theme maker accounts, why even ask in first place if they were or not. something is not adding up. Edited November 1, 2020 by Aymes Share this post Link to post Share on other sites
ArtDeco 55 Posted November 1, 2020 10 minutes ago, Aymes said: Not saying he is a cheater - but you have to look at all angles, here we go - Oh look the cheaters making up some crap saying oh no my account has been banned due to a speed hacker hacking my account. now his cheater friends can make out they were not cheating by also saying oh my account too was hacked, and there you have it escaped a ban - isn't that how it goes? that could be a possibility - How do you even get your account hacked, especially when you said hackers are targeting "theme maker accounts" and how would you know if they were "theme maker" ones in the first place? you would have to literally ask them if they were theme maker accounts, why even ask in first place if they were or not. something is not adding up. Oh man, I'm not even going to bother correcting you, you probably won't have the mental capacity to understand my explanation anyways. I'm gone from this thread, don't expect me to come back here and explain things, I've made it clear from my previous posts already. Share this post Link to post Share on other sites
Flaws 1033 Posted November 1, 2020 2 hours ago, Aymes said: - Oh look the cheaters making up some crap saying oh no my account has been banned due to a speed hacker hacking my account. now his cheater friends can make out they were not cheating by also saying oh my account too was hacked, and there you have it escaped a ban - isn't that how it goes? that could be a possibility Every game's management has full access to logs of who logged into every account at which date, exact time with physical location data, IP addresses, HWIDs and other kinds of fingerprints. Excuses such as that won't hold any water if the evidence shows otherwise. 1 Share this post Link to post Share on other sites
Mitne 724 Posted November 1, 2020 On 10/31/2020 at 8:42 AM, xHenryman90x said: But both password and authentication code can be brute forced right? Injectable software that works in-game login screen. I live by principle that flawed security measurement is better than nothing. While everything can be brute forced (although from what I know 2FA change code after each failed verification - so good luck with that) - it's harder to get password AND somehow guess 2FA code at current given time over just password which might as well been leaked somewhere in random darkweb notepad. I just can't figure out why 2FA isn't based on SMS too. That would be better verification method for me. Share this post Link to post Share on other sites
thelinux 51 Posted November 1, 2020 On 10/31/2020 at 10:13 AM, Kevkof said: What issues are you running into? Can you recall/check if maybe the time sync is being a pain again? Your codes expire in about 30 seconds, does it only fail if in the first X or in the last X seconds of that timeframe? Correctly entered codes were simply treated as invalid, I think I couldn't figure out an algorithm to solve it, felt quite random. I've stopped using it a few months ago for that reason, but I will give it a try again. Share this post Link to post Share on other sites
Esurient 17 Posted November 1, 2020 22 hours ago, LaFuggitiva said: Oh btw, yes, even 2FA can be brute forced or bypassed in the most gg way, like hackers do with youtubers, they just duplicate your browser/pc so they don't need any password or code, they are alredy logged it, but that's an issue related Chrome, idk if this thing can be done on other browsers or in other ways. Changing passwords and activating 2FA Can help, but isn't secure anymore in 2020 even with those active. Can we please just note that youtubers who were "hacked" were hacked via stolen cookies due to loading exploitable emails/extensions to their browser, same can be done with links. Share this post Link to post Share on other sites
Saxtus 497 Posted November 2, 2020 On 11/1/2020 at 12:55 PM, Mitne said: although from what I know 2FA change code after each failed verification 2FA codes are time sensitive. As long as you enter the correct code within the time period, even if you entered wrong code before, it should work. I am not saying that measures against brute force shouldn't be taken by LO, just 2FA doesn't work that way. https://security.stackexchange.com/a/185917/66167 On 11/1/2020 at 12:55 PM, Mitne said: I just can't figure out why 2FA isn't based on SMS too. That would be better verification method for me. I am against SMS 2FA or 2FA that use proprietary apps in general. SMS 2FA codes comes with other problems, like trouble with routing, making your code either arrive with big delay or never, essentially locking you out. Not to mention the SIM swapping threat (although this is mainly a targeted attack) In my opinion Google Authentication compatible 2FA codes are the best in this case. Share this post Link to post Share on other sites
Ilyas 15 Posted November 2, 2020 On 10/30/2020 at 8:38 PM, ArtDeco said: gmails were hacked into which are connected to APB. Let me get this straight: multiple players that know each other, have their gmail account breached, just to get into their APB account. Ok, so either the ppl that did this know the emails you use for APB somehow (you subscribed somewhere to wrong forum or website, got fished through mails, or installed the same spyware/keylog/backdoor by all victims). Or the more likely scenario this is just another fictional story. Share this post Link to post Share on other sites
Noob_Guardian 418 Posted November 8, 2020 (edited) On 11/2/2020 at 3:27 PM, Ilyas said: Let me get this straight: multiple players that know each other, have their gmail account breached, just to get into their APB account. Ok, so either the ppl that did this know the emails you use for APB somehow (you subscribed somewhere to wrong forum or website, got fished through mails, or installed the same spyware/keylog/backdoor by all victims). Or the more likely scenario this is just another fictional story. My original gmail which i used APB on, has been part of like 12 hacks, from Chegg, armor games, Edmodo, to unverified batch 1. So I mean... stranger things have happened? Edited November 8, 2020 by Noob_Guardian Share this post Link to post Share on other sites
OfficerHot 22 Posted November 9, 2020 On 10/30/2020 at 6:49 PM, ArtDeco said: Hello, I want to give attention to a an issue where a number of APB accounts have been breached in the past day or so. As some of you may know some accounts in EU have been reported to have been hacked in the today and yesterday. Mostly targeting well known "theme maker" accounts so far. One of my alternate APB accounts have also been hacked as my friend in Dischord pointed out that one of my chars in that account were seen "speed hacking" in mission districts while I was not home and at work. I'm not going to name any names or victims but I will give a hint of the suspected culprits as some of you in the APB community already know them, Snipped Name and Shame ~@mayii Just take some precaution and change your passwords and set up a 2 step verification process with your APB Gamer first accounts! As for how our accounts got hacked we don't know, I never did anything stupid to have my information stolen like that. I think this is a real issue that Little Orbit should take a look at. I will now take this up with Support. I appreciate the warning, But do you have any evidence to support this statement? Share this post Link to post Share on other sites
ArtDeco 55 Posted November 9, 2020 6 hours ago, OfficerHot said: I appreciate the warning, But do you have any evidence to support this statement? Just so you know, if I give "evidence" here, I would get banned from the Forums. I took it up with support weeks ago, so I'm pretty much done with this thread, no need to concern over this thread any further. Since this thread, I have learned a lot more about the whole situation and the people involved but I'm not allowed to post that info on the forums. Share this post Link to post Share on other sites