beware this hacker in sheeps clothing

[wickedEdge]

the shard I play on recently took on a new world builder/scripter/gm.

He knew what he was doing (apparently), setup forums and was starting a website for us.
www.royalvanguard.com/KoD

Anyway, he took too many liberties and was making up his own forums, taking over towns for him and friends, making static houses for friends.

So he got un-gm'd by the administrator/owner. Somehow (we suspect through the forums he made) he got into a different administrators computer and got all her passwords. He logged into her admin account, then re-gm'd himself.

Then the owner realized what he had done and deleted and banned him from server forever.

Shortly thereafter the admin he had broken into tried to go on her LS account and found she ocouldn't login. I went to her house for her and discovered many many things missing. SHe finally got control of her accounts and all her things are gone and her bank accounts cleaned out.

Beware this dude. This is the info I know about him:

aliases: marshalt, derek, greensword

website owned: www.royalvanguard.com
www.royalvanguard.com/KoD

email (and msn username): royalvanguard@hotmail.com

background:
he claims to have owned/ran a shard called El Dragons.
he calls himself a "hard core RP'er"
behaves arrogantly
his roleplay background involves some fiction about Greensword dragons and stuff.
can do some computer graphics, and scripting (so i am told not sure)


so anyway just watch out if you are a shard admin out to hire new people.

Good info.

However, the correct post for this is:

She got owned.

[Phantom]

Your admin is at fault for using the same passwords for her OSI account.

Guy was just smart. He is still a jackass, and if he ever comes here, he will get a new asshole from me, but he is no hacker.

[TheOutkastDev]

Chaos pretty much summed it up.

[wickedEdge]

ya he got her good but i wanted to let everyone know to watch out for him.

i don't think it was as simple as you might believe though phantom. while he may not really possess any hacking skill at all, i do believe he gained access to her computer. some registry entries had been tampered with and i had already asked her awhile before i posted here if she ever used the same password for her two seperate osi accounts (both were different) and for the admin account.

i'm leaning towards a key logger personally, but he may have had a trojan in there.

[Phantom]

Quote:

Originally Posted by wickedEdge

ya he got her good but i wanted to let everyone know to watch out for him.

i don't think it was as simple as you might believe though phantom. while he may not really possess any hacking skill at all, i do believe he gained access to her computer. some registry entries had been tampered with and i had already asked her awhile before i posted here if she ever used the same password for her two seperate osi accounts (both were different) and for the admin account.

i'm leaning towards a key logger personally, but he may have had a trojan in there.

I doubt that.

Phantom STFU you OBVOUSLY have no clue here!

Do you know this person?

Nope!

Did they use the SAME PW on OSI?

Nope!

What does ASSUMING do for you?

Makes an ASS out of U and ME!

... well maby just you...

Maby it's time to move on to ANOTHER EMU Phantom...

[Phantom]

ROFL

I would rather have you flame me then leave RunUO.

I didn't leave Sphere because of the Flames, I left because I wanted to learn/program C#.

[Shay]

i hate to butt in but you two are starting to remind me of a teenage drama.


However, Krazy_Zack makes a valid point. It's easy to hack into computers now and get stuff. Especially if you dont have a firewall running.

[Phantom]

My guess he just was able to use the data from the board to get it.

He would be able to change the email, grab the password, with no trouble or nor.

Not sure if Phpbb randomly changes the password when you request it or not.

[Shay]

Yeah it does. BUT there is a very easy exploit for phpbb which allows a person to go in and do what they want and get what they want. The only place he would have actually gotten the password from is the database because phpbb encrypts the passwords.

[Phantom]

Basicly I seriously doube this guy used a key logger as that takes some skill.

Like I said he used his knowlege against somebody.

[Shay]

i agree.

[Aenima]

This is not going anywhere good.

Locked.

Oh, by the way:

Quote:

Originally Posted by The WHOIS server of opensrs (TUCOWS)

Registrant:
Bellamy Design
19 toynbee
Kitchener, ON n2n 1r8
CA

Domain name: ROYALVANGUARD.COM

Administrative Contact:
Bellamy, Derek NeoYoda@hotmail.com
19 toynbee
Kitchener, ON n2n 1r8
CA
519-579-2681

This may NOT be the guy you're after, but this is apparantly the registrant of the domain. Of course, it might be fake. But perhaps query it anyway?

PS: To the guys that PM me about "revealing" this information, please note that this is public information anyway. It was found by entering "royalvanguard.com" into the text box at http://whois.opensrs.net and hitting the button.