Last updated June 17th 2004
DefinitionsSince people keep pestering me about how I define hacking...
I guess I'll have to explain.
Don't yell at me
I understand that it would be nice to blame it on a hacker, or on the devil, or on the monster under the bed, anyone but yourself. But until you realise that you brought it on yourself, you have no guarantee it won't happen again.
And let me get this straight right away: I didn't say you can't get hacked. I said you weren't hacked.
Contrary to what many people claim, no one has ever hacked into Neopets, accessed user information, accounts or usernames. The ONLY means by which a user can have an account stolen is when they inadvertently or intentionally gives away their pässword.
The common excuses:
It was a cookie GrabberRead this first: What is a cookie grabber?
I consider cookie-grabbers a scam. Many people disagree with me.
That will not make any difference if you've already visited the site with the cookie-grabber. They already have your cookies (which contain your and deleting them from your system will make absolutely no difference to the scammer, it will only require you to log in again...
Once a cookie has been grabbed you need to change your .
Deleting your cookies before you visit suspicious pages will help.
They guessed myWhy on earth did you have a guessable ?
Here are a list of very bad :
It's amazing how many people have s that are somehow their name with a number or two behind it.
frodo, gandalf, elvis, harrypotter, jesus, 2003, swordfish, abracadabra, your username, your name, your dog's name, any P/W you use somewhere else...Good s:
fish86book, toenail91, alphabetispagheti, tape1recorder, bussbuilder, ølsalgetterklokken8!!!, ElEpHaNnNn7.
It was a fake login-pageAlways, always, always check that the URL starts with http://www.neopets.com before logging in. If in doubt; don't log in! And if you don't notice it was a fake before after you've entered your , change it FAST!
With the new login-system it should be no problem telling a fake from the real thing.
This is the scammiest of all scams.
If you give a stranger the keys to your flat and tell them where you live, do you consider it burglary?
They told me they were from the neopets teamUnfortunately a lot of these neomails/emails look and sound very official, so you have to repeat to your self these magic words No member of staff will ever ask for your . Chant that a couple of times until you know it by heart.
These mails will usually tell you either that there's a problem with the site and they need your to backup your account to keep it safe, or they'll pass it off as an official warning, telling you that you're suspected of sabotage or cheating at flash games or something.
The common denominator here is that they ask for your , which like we chanted a bit earlier: no member of staff will ever do.
We might as well mention this as well; there is an official neopets account used for handing out warnings. Warnings from that account are real, but they'll never ask for your . The account is theneopetsteam.
Fake members of staff (at least the good ones) will normally change their lookup to resemble this official account. With a bit of Style Sheets it's not too hard, so don't be fooled by the apparent lack of stats, pets, shield etc... It's become more difficult after some positioning tags was disabled, but it's still not impossible.
I only changed the e-mail address in my preferencesFirst off let's go through what's wrong with this:
Neopets need your e-mail address on file to send you mail when your auctions end or your pet leaves the neolodge, but also in case you forget your . So when you change your e-mail address to whatever the scammer says, they just have to enter your username in the box on the login page, and your will be sent straight to them.
This is another scam that can, when presented the right way, sound very convincing.
Questions to ponder
How can I be safe?
There are lots of little tricks that can help you.
I was hacked on 04/04/04Well, 04/04/04 was a very special day on neopets, but no hacker was involved.
The incident on April 4th was caused by a security glitch on neopets' side. This caused the retrieval form to hand out s to anyone.
It was not a scam, you were not to blame, but you were not hacked either.
I'll add a link explaining the incident later. (Neomail gwillewyn if you know a good site. It has to be on a petpage for me to link it.)
You said way up at the beginning that you can get hacked...Yes, of cause you can get hacked, but unless a) you seriously aggrivated a real hacker, or b) you're an amazingly high-profiled player, you were not.
If ever any small time hacker would bother with neopets they'd go for someone who'd bring attention to them, like jazz_invincible, agedbeauty, hrobi or featheralley.
YOU were not hacked.
Link to us
Protect yourself from cookie GRABBERS!
Chain Messages DON'T WORK!
Questions? Comments? Hate-mail?|
NEOPETS, characters, logos, names and all related indicia
are trademarks of Neopets, Inc., © 1999-2013.
® denotes Reg. US Pat. & TM Office. All rights reserved.
Use of this site signifies your acceptance of the Terms and Conditions