Luuna officier de l'alliance
Nombre de messages : 328 Date d'inscription : 31/05/2006
| Sujet: Faites attention aux addons et aux site de mods! Jeu 21 Déc 2006 - 10:56 | |
| - Citation :
Account Security Warning: Addon Websites infected with keyloggers
Numerous threads have been popping up over the last couple of days about keyloggers embeded in Add-ons on Curse-gaming.com and worldofwar.net., lots of players got their account stolen. They have been detected in Addons and other parts of those two websites, according to users's testimony on boards.
For players who dont know, what's a keylogger and how dangerous it is for your WoW account, I will do a quick decription:
- Keyloggers record what you fill in at your account name and password and then send those data to the maker of the script. Therefore you will lose your account, since somebody else know your account and password information.
How to check if you are infected:
- If you have a file named ntldr.exe (EXE, not dll, the dll is used by your OS to boot your computer). That file is the keylogger and you should remove it asap.
How to protect yourself:
- Dont use Internet Explorer (It hasnt been confirmed that IE 7.0 was safe yet), instead download and start using Mozilla Firefox.
*Fore more security, since WoW targeted keyloggers use java in their process to infect you, you can block or allow java-script with the no-script add-on for firefox, It disables java on default and let you enable it on choice (for trusted websites).*
Where:
- WorldofWar.net: At this time, there is a keylogger embedded into the ui.worldofwar.net homepage. The keylogger itself is in an iframe embedded from hxxp://ui.bcegame.com/pps.exe (do not visit!).
- Curse-gaming.com: The curse-gaming keylogger is on media1.curse-gaming.com. If you go to their beta patch notes page from their site, everything's clean, but if you go to the one listed above, it's got the keylogger on it. (Source)
Source, testimony and more detailed infos:
- WorldofRaids: http://www.worldofraids.com/forum/viewtopic.php?t=2487
- Blizzard forums: http://forums.worldofwarcraft.com/thread.html?topicId=58796664&sid=1
- IGN: http://vnboards.ign.com/wow_rogue_class/b22782/100532144/p1/?13
Teza
WoR reporter
En gros (j'ai la flemme de tout traduire 1- Sur les sites www.worldofwar.net et www.curse-gaming.com il y a un "keylogger", un programme qui vole vos mots de passe et les envoies a une certaine personne qui ensuite peut faire ce qu'il veut de vos comptes. EVITEZ CES SITES PENDANT UN MOMENT! 2- Si vous avez vraiment besoin d'y aller: Utilisez MOZILLA FIREFOX, Internet explorer etant moins sur. 3- Pour savoir si vous avez le keylogger sur votre ordi faites une recherche pour ntldr.exe Si Vous l'avez, SUPPRIMEZ-LE. Mais attention! Ne supprimez PAS ntdlr.dll, c'est un fichier legitime utilise par votre ordinateur.
Ceux qui doivent faire le plus attention sont les personnes qui modifient a longeur de journee leur interface: Lanowa, Minie, Storm, Arretez de tester des mods pour un moment, c'est tres risque maintenant!
| |
|