Wednesday, February 23, 2011

Grand Exchange Central is under attack

This is a message for those of you who uses Grand Exchange Central fan site and wonders what happened to it. The site is down at the moment, because of a series of hacking attacks on the site. The attacks started a few weeks ago and recently intensified to the point that Absenm decided to shut down the site until the issue is somehow resolved.

So the good news is that the Grand Exchange Central will be back eventually (so keep checking it from time to time). The bad news, of course, is that there is somebody out there who decided to deliberately break the site. I am sure Absenm will sort it out one way or the other, but, oh boy, I wish the hackers would go to jail for their crimes. I really do...

Some people think that hacking is cool and that there are noble hackers, or hackers who work for good governments or whatever. There is NOTHING noble about hacking web sites, regardless of what a web site is about or who owns it. It is a crime and a bad one too. Somewhere in a range between burglary and rape...

36 comments:

Mercy said...

That's sad to hear. I hope they get it sorted and the hackers are traced and dealt with.

JB said...

I was a member on Grandexchange Central.... And i had reached the top on ranking for 30 Day Average my Account name on the site was JB O_O. Due to the attack on absenm's site hackers broke into my RS account and 90% of all my valuables have been stolen. Luckily only around 120mil worth was taken... I recently spent 320mil of so on 99 Herblore so my bank had quite a bit of un-tradeables.


I am disappointed that GEC had not informed there users early on, that this was happening and the lack of security measures built into the site.

Brandon Schmidt said...

The above comment is exactly the reason you should not use your RuneScape password on ANY other website.

It isn't GEC's fault for your items being stolen. Any site could be hacked if someone really wanted to.

JB O_O said...

@ Brandon.... LOL i have never used my rs password on any site... You dont know about what happened obviously. GEC was hijacked and the hackers sent out a rougue Java applet that hijacked my connection on RS.

G said...

I got screwed a little while ago when Gawker's site got hacked. What Brandon says is partially true. Yes you should have a password that is different for every log in, however that's rarely the case. Most people use the same password for everything. I had to go through seemingly hundreds of websites changing it and now I'm much more secure, but for others it isn't the case.

While it might not be the GEC's fault the items are missing, it is their fault for not providing a secure website and not informing people right at the start. Websites are going to be hacked, its a fact. It sucks, but it happens. I do believe it is up to the site owner to provide the best security possible and keep their users in the loop if there is a potential security risk. Losing RS items is one thing, logging into a site that saves payment information like Amazon does and running up real life bills is another.

Merch Gwyar said...

I'm sorry to hear about this and I hope that Absenm is able to sort things out without too much trouble. This is particularly saddening knowing how much hard work he has ploughed into that site. :(

It sounds like they were after RS passwords, if JB's story is anything to go by. Those who use the same password for both are probably now learning the hard way that that wasn't wise.

I'm wondering if there was a keylogger involved, if JB didn't have the same password. That's an application, which records key-strokes, once it's on your hard-drive. It would record what was typed to get into Runescape, then send that information back to a remote database.

However, a good firewall should pick that up. It might be worth everyone who uses GEC scanning their computers, to be on the safe side. It's good practice to regularly do that anyway.

I don't see Absenm as being at fault here. Any website is open to attack. Any Runescape website is open to passwords thieves. He's patently doing his best and, ultimately, our computer security is our responsibility.

JB, I'm sorry to hear that you've been a victim here. :(

Vaskor said...

I wouldn't blame Absenm here. As Brandon noted every RS fan site can be hacked (in fact, most of them were at one time or another). Runewise got hacked once too - and I still don't know for sure how exactly it was done. Fan site owners just do their best to secure their sites (and for many of us it is a learning process in itself - more like a journey). I know that Runewise is much less vulnerable now, than it was say three years ago. And it wasn't because I didn't want it to be secure from the start - I simply didn't know how! It's also not necessarily obvious when a site gets hacked. It's not in hacker's interest to be revealed soon, days may pass before admins would notice anything wrong.
I don't know all the details here, but I can assure your that Absenm is working his tail off trying to make GEC safer and secure now. I am also confident that when GEC comes back up it'll much more secure.

Anonymous said...

It was a keglogger. It was actually a very simple keylogger, yet it was able to evade my computer security. I could even see the process from my windows task manager. I got hacked as well. Hopefully absemn fixes the site soon. It looks like he also needs to renew his site address with whatever hosting company he's using.

lucky noob said...

uhm does anyone know what happened to the site now?? I checked the WHOIS information and it said this:

grandexchangecentral.com
"Expiration date: 26 Feb 2011 03:01:03"

as I understand his domain expired and his host snatched his site right after that....

Is absenm still the owner of the site or did he just lose it over the dumbest mistake possible??

Vaskor said...

As far as I know GEC is planned to be back online on March 3.

lucky noob said...

yeah but how do you explain the fact that the domain now has a new owner...
the domain expired on the 26th of february and someone named "x10hosting" took control over it and replaced the old "we'll be back on march 3" with the generic domain parking page...

something is not right. anyone know how to reach the owner?

Vaskor said...

Absenm assured me that he has enough time to claim the domain. Current owner is probably his original hosting company. As far as I am concerned March 3 is still the date.

Anonymous said...

You normally have a period of time to get your site back before it is put into general population for sale unless someone put a backorder on it and the order was successful.

runescape said...

yeah exactly that someone is his greedy hosting company who is probably gonna sell the domain for > $100 or whatever it's worth based on traffic.
godaddy pulled these kind of tricks for a lot of people.
how sure are you of this?

Absenm said...

Hi everyone. Sorry about any problems you may have had on my site, The Grand Exchange Central. And I am sorry if anyone's accounts got broken into. I did mention several times in the forums that we were dealing with a series of hacking attacks. But maybe I should have put a bigger warning out. I just didn't want to give the hacker the satisfaction. And truthfully, after I discovered the first attempts, I thought I implemented more than enough security to handle the situation. But I suspect there was a rootkit on my site.

Yes, the domain has been parked by our hosting provider. In talks with them, I decided that since the domain was going to expire, and we were down already for an overhaul, and I am planning on going to a VPS setup anyway, that to keep the domain expired until the day of official relaunch. The domain is still mine, and will be back up March 3rd. This is just a little added security for me right now. I won't go into why I wanted this added layer of security.

Let me assure you that I am doing everything I can to secure the site for its reopening. I'm going through code, page by page. I am going through permissions, directory by directory. And nothing is being directly copied from the old site to the new one. It should be as fresh a restart as possible.

And due to security we will have portions of the site down for a few more weeks. But the main GEC pages (the item details and charts) should be up around March 3rd. Also, we are off loading our forums to an outside host, to improve security there.

In the end, no site is hack proof, and even though it is mentioned throughout the site that it is in development and is a beta, we will in the future warn users that there are always security concerns with any website. Especially sites that are home hobby projects done in the webmasters spare time.

I think every site has had an episode like this in their history. And they learned from it and came away with better skills and security. We will do the same.

Absenm said...

Oh yeah, one more thing. The security we are adding is extensive. I cannot go into exactly what we are doing, but there are layers on top of layers. With on site and off site monitoring. Again, no site is hack proof, but no one will be able to say we are lax on our security. I hope to regain the trust of the RS community quickly, and we can move forward from this.

Absenm said...

I've been trying to post a full comment about everything that has happened, but it keeps getting replaced by a secondary comment. Anyway, we will be relaunched on March 3rd. I'll explain more about what happened here later. Thanks.

runescape said...

what part of the site was hacked?
was it the GE simulator?

there wasn't anything too advanced so you probably just let some of the _GET values unescaped...

Cakop said...

<3 G.E.C.

Anonymous said...

The only java application affected by their "rogue java applet" was RSbot.

Unknown said...

farmer100 faq

Anonymous said...

MtuOxp [url=http://canadagoosejacketsite.com/]canada goose jacket[/url] FhvCev MteKwc http://canadagoosejacketsite.com/ OigMqq RnsMba [url=http://canadagoosejacketclub.com/]canada goose parka[/url] GakVjx HivYbg http://canadagoosejacketclub.com/ CsxXwb UlqLnn [url=http://canadagooseoutlettoca.com/] canada goose outlet[/url] ZuhJeq AvrBwr http://canadagooseoutlettoca.com/ KtfYxh AahQzt [url=http://canadagoosesalehome.com/]canada goose[/url] HhdXgt AkkQyu http://canadagoosesalehome.com/ MrhCri

Anonymous said...

JriHbz [url=http://www.mbtjpbuy.com/]MBT ブーツ[/url] DdqSfd EeqSfn http://www.mbtjpbuy.com/ RgbMbc DicViw [url=http://www.snowbootbuy.com/]UGG ブーツ[/url] UopDbj MxwZxj http://www.snowbootbuy.com/ SrwRrn OriDad [url=http://www.monclerjyapann.com/] Moncler[/url] VbcVqh XgmLfg http://www.monclerjyapann.com/ IcuEgo DakPvo [url=http://www.cheapbootjp.com/]アグ オーストラリア[/url] WzmNwx CaiElr http://www.cheapbootjp.com/ JvxQxy NwmCws [url=http://www.boot2013.com/]アグ ベイリーボタン[/url] OjvVbc CngPbn http://www.boot2013.com/ VvvJkq QtqPvo [url=http://www.bootstogirl.com/]UGG ブーツ[/url] FgyXyr NewHyl http://www.bootstogirl.com/ UidYby

Anonymous said...

GksWyg [url=http://cheapggboots.com/] cheap uggs for sale[/url] WqxRdg QwfBku http://cheapggboots.com/ LqxEqb FvdHoh [url=http://parka2013.com/] canada goose jacket[/url] IjaBve YoxDvx http://parka2013.com/ KuqGxm PzoRhk [url=http://cagoosehome.com/]canada goose outlet[/url] CieLjq GmlSlm http://cagoosehome.com/ ByvDmw LzkUos [url=http://jackets-2012.com/] Canada Goose Parka[/url] OnzHud AwzYrk http://jackets-2012.com/ LvwJds TsbVjg [url=http://gooseoutlet2013.com/] Canada Goose Jackets[/url] ErlRhg JjqFid http://gooseoutlet2013.com/ ItcYqz HeoPmx [url=http://jacketsca.com/]canada goose praka[/url] ZboTbs WkeQhc http://jacketsca.com/ KecHgr

Anonymous said...

AweQci [url=http://cheapggboots.com/]cheap ugg boots[/url] IycZyx DjfCbb http://cheapggboots.com/ VuhJol MgpFmt [url=http://parka2013.com/] canada goose jacket[/url] EnsUlw CatYcy http://parka2013.com/ EmfFjk HvfLeq [url=http://cagoosehome.com/]canada goose outlet[/url] VfkMhi HkmNht http://cagoosehome.com/ HyjNuo ObbQbc [url=http://jackets-2012.com/] Canada Goose Parka[/url] ZqbVvz QfkZbh http://jackets-2012.com/ TufJhh ZakDfn [url=http://gooseoutlet2013.com/] Canada Goose Parka[/url] FfkMca EfpAbq http://gooseoutlet2013.com/ ImtYpy CdtCdv [url=http://jacketsca.com/]canada goose praka[/url] YoyRgx YlpTrt http://jacketsca.com/ YbwWoa

Anonymous said...

HdqEhm [url=http://www.mbtjpbuy.com/]MBT ブーツ[/url] InjGeu ZxtIyh http://www.mbtjpbuy.com/ SmpFqd RslWln [url=http://www.snowbootbuy.com/]アグ ムートンブーツ[/url] XvdXvk DyqCvu http://www.snowbootbuy.com/ CrdSuc NmoTcw [url=http://www.monclerjyapann.com/] Moncler[/url] SjgJdj VuoCdq http://www.monclerjyapann.com/ SfnOkqFokVgd [url=http://www.cheapbootjp.com/]アグ オーストラリア,アグ ブーツ[/url] CllNcp IzsJks http://www.cheapbootjp.com/ EklApu InaBva [url=http://www.boot2013.com/]アグ クラシック ミニ[/url] TyhLff XmiLyf http://www.boot2013.com/ IvaMpiYzuQnx [url=http://www.bootstogirl.com/]UGG オーストラリア[/url] LfwDrx FinIyp http://www.bootstogirl.com/ EoiUzl

Anonymous said...

LelOja [url=http://www.bootsmegasyoppu.com/]アグ ブーツ[/url] XyxKen LpbYzw http://www.bootsmegasyoppu.com/ FweWsv NymKgu [url=http://www.jp-boot.com/]UGG ムートンブーツ[/url] FazNsl UvwGkb http://www.jp-boot.com/ GahDzc EprEct [url=http://www.bootskan.com/]UGG ブーツ[/url] KlcKyy BpaQou http://www.bootskan.com/ XguTzm WlaNyf [url=http://www.bootsalejp.com/]アグ[/url] ZrpMun JbbCnv http://www.bootsalejp.com/ LqxYzz GxjGdi [url=http://www.bootgg.com/]UGG ブーツ[/url] OpvKnx ShuSid http://www.bootgg.com/ MljAhn WatUtz [url=http://www.bootskawaii.com/]アグ ムートンブーツ[/url] YyrFph IgdKqv http://www.bootskawaii.com/ TslBdz

Anonymous said...

ImbUut [url=http://ukbootshopon.com/]amazon ugg boots[/url] MeqFcm http://ukbootshopon.com/

Anonymous said...

LloOgl [url=http://ukbootshopon.com/]cheap ugg boots online[/url] MjkUds http://ukbootshopon.com/

Anonymous said...

oyymnc [url=http://www.okmonclerjakker.eu]Moncler Jakke[/url] latjyz http://www.okmonclerjakker.eu bkcpnt [url=http://www.mincanadagoose.eu]Canada Goose Parka[/url] psinhw http://www.mincanadagoose.eu imigiq [url=http://canadagoosesjackorr.com]Canada Goose Jackor[/url] vzbfbg http://canadagoosesjackorr.com kltcly [url=http://myreplicahandbagsuk.com]Replica Designer Handbags[/url] ljehgi http://myreplicahandbagsuk.com omqgcu

Anonymous said...

dlrn [url=http://salecanadagooseoutlet.ca]Canada Goose Outlet[/url] lnbs http://salecanadagooseoutlet.ca papv [url=http://mycanadagoose-canada.com]Canada Goose Outlet[/url] wszm http://mycanadagoose-canada.com npun [url=http://salecanadagoose-outlets.com]Canada Goose sale[/url] akaq http://salecanadagoose-outlets.com rdmj [url=http://salecanaadagoosejackets.ca]Canada Goose Jackets[/url] bzze http://salecanaadagoosejackets.ca knux

Anonymous said...

ldvl [url=http://okbeatsbydrecheap.com]Beats Headphones[/url] jpwh http://okbeatsbydrecheap.com aztg iprl [url=http://beatsbydresalesok.com]Cheap Beats By Dre[/url] bjlw http://beatsbydresalesok.com aipd efvw [url=http://okbeatsbydreus.com]Cheap Beats By Dre[/url] ycmc http://okbeatsbydreus.com ezcb ivpm [url=http://salebeatsbydreoutlet.com]Beats By Dre Outlet[/url] isqv http://salebeatsbydreoutlet.com tqrc

Anonymous said...

Ialbyl [url=http://monclermass.com/]モンクレール ダウン[/url] Cfflru Dmaxgo [url=http://monclermass.com/]モンクレール アウトレット 店舗[/url] Tirena Bhpzdv [url=http://monclermass.com/]モンクレール ダウン 新作[/url] Jwjlfh Gvjmtw http://monclermass.com/ Rqkuwq Omghfb [url=http://gucci-nice.com/]GUCCI アウトレット[/url] Bcifpw Qoihro [url=http://gucci-nice.com/]グッチ 財布[/url] Wsiygj Slqmyg [url=http://gucci-nice.com/]クロエ バッグ[/url] Unyoyj Jsjrnz http://gucci-nice.com/ Pgpiuc Pxhgik [url=http://www.shoeskan.com/]ugg ブーツ[/url] Dtthsl Nkrnna [url=http://www.shoeskan.com/]ブーツ ugg[/url] Qdbwtd Jpqjnr [url=http://www.shoeskan.com/]アグ ムートンブーツ[/url] Nmkvkx Nuhjrr http://www.shoeskan.com/ Trkxlr Oedwyq [url=http://www.cheapmonclerya.com/]モンクレール アウトレット[/url] Hdsrkk Kvnwng [url=http://www.cheapmonclerya.com/]モンクレール ダウン アウトレット[/url] Fnjtyo Erpawo [url=http://www.cheapmonclerya.com/]モンクレール 激安[/url] Fkjwbq Pyktkn http://www.cheapmonclerya.com/ Qdbses Cegsia [url=http://www.baileyjp.com/]ugg ブーツ[/url] Gykvht Sqjifj [url=http://www.baileyjp.com/]ugg ブーツ 激安[/url] Lllmim Ztczil [url=http://www.baileyjp.com/]ugg ムートンブーツ[/url] Cwoywf Uwcfjt http://www.baileyjp.com/ Cejpgl Auqyan [url=http://www.monclerb.com/] モンクレール ダウン[/url] Fcbsix Ykuwix [url=http://www.monclerb.com/] モンクレール2013[/url] Xiefsk Aengas [url=http://www.monclerb.com/]モンクレール 店舗[/url] Pwfyyt Aptugk http://www.monclerb.com/ Pfxzay

Anonymous said...

I like reading through a post that can make men and women think.
Also, thanks for allowing for me to comment!

Look into my web page: クリスチャンルブタン

Anonymous said...

For the reason that the admin of this web page is working, no uncertainty very shortly it will be famous, due to its quality contents.


Here is my web page :: monster beats

Anonymous said...

Do you have a spam problem on this blog; I also am a blogger, and I
was wanting to know your situation; we have created some nice practices
and we are looking to swap techniques with others, why not shoot me an
e-mail if interested.

Check out my webpage ... ジョーダン スニーカー

 
2006-2009 RuneWise, all rights reserved.
Reproducing or copying any material found on this page is not allowed.
Runescape is a trademark of Jagex 2000-2009 Andrew Gower