Massively.com Story on FFXI HackingFollow

dude it is very possible. s smart enough hacker could use the direct connection to PoL to hack into the servers. hard? yes. impossible? no. wherever theres good enough security there is an equally good hacker.

Something that was mentioned on the BlueGarterLS forums - I'd forgotten about it, though I always do raise an eyebrow (and ignore it) whenever an installer tells me this . . . but the installer for Wings of the Goddess, like all the FFXI PC installers, tells you to disable any antivirus software before installation. Apparently, someone contacted S-E customer support about this in the context of inquiring about the hacked accounts, and was given a "hmmmn, we'll get back to you on this."

I will agree to some people being at fault for having keyloggers in the computer and SE not being at fault.

Lots of people cheat and go looking at other websites for ways to cheat without using programs like abusing the system.

However, I do blame SE for allowing someone to log into someone's account while they are online and actually kick them off the game.

I will blame them for allowing other people to easily be able to change the password on the account.

I will blame them for not returning account and items to original owners. The game keeps track of every single thing that happens. I don't care if it's returned as an original item or gil.

I will blame them for looking the other way when accounts are not supposed to be sold. If they had made impossible for you to sell your account, then someone else wouldn't be able to steal my account.

It's not hard to lock the account to someone's name and information. Some people here said that they don't own a credit card due to bad credit. However, people can use bank cards which have your name on the account and address. I know people move around but they don't all start moving to another country overnight. If people can't manage to own a bank card then they seriously need to get off the game and solve that first.

Yep fits the bill.

He didn't d/c them, and he could do it to anyone.

He sent a string through the chat log that crashed their client.

It can be done. I read an article about how some online games are vulnerable to such attacks - I think it was something to do with not using separate chat servers - but unfortunately I can't remember where I read this.

There's so much anecdotal evidence of people remembering this happening, anyway, there's no reason not to believe he did it.

Well, I'd like to see them.

Maybe it's not hard to hack FFXI. (not client side, SERVER side) But I'd like to think that they would have a little more security on their HARD WIRED servers. (for those that don't know, it's not exactly easy to hack a piece of hardware without first having that person who is using the hardware to put something onto that piece of hardware to allow the hacker inside.)

If I'm proven wrong then these screenshots should be brought to the attention of SE. There are obviously flaws in their system. I thought that's what Taj was all about. Showing SE they're flawed so they can fix themselves.

Taj Fits the classic definition of script kiddie. He doesn't deserve half the credit anyone gives him for any attack. I know where he got a good 99% of his ideas. Its just unfortunate that i can't link to it. ...i'll just say that there exists the following:

1. an ffxi packet injector, that has been tested and works 100%. Its purpose was NOT for hacking accounts or DCing anyone.
2. knowledge of how ffxi encrypts data, and a program to perform said action, and reverse it
3. knowledge of how ffxi compresses data, and a program to perform said action, and reverse it.

...I have access to all of the above. Taj knows where they can be found, as well. he's on my IRC ignore list for a number of reasons.

Aside from numerous known attacks, he generally has a ****-poor attitude, and was at one point flaunting his hoax of a ffxi private server, which the project i've been keeping my eye on, as well as several members of Wiccaan's IRC suspect is most likely doctored images or done primarily using model viewers.

It's amazing how many people don't realize this. I tip my hat in your direction.

I've been writing software for many years now (games/security companies/financial institutions/etc...) in countless langagues (C, C++, Java, Assembler, VB, Perl, the stupid list of languages go on and on) the tools available for ANYONE to find is not hard folks. It's all about knowing how to use them and what to look for. But hey if people want to ride Taj's nut sack, by all means let them. I'll watch them get that salty taste in their mouth, as I sit back and laugh at them.

To be honest, it sounds more like you're going to sit back and get all upset that nobody knows how smart you are.

Ah, the good old, "You spoke in a negative manner up you must be jealous!" comment. Whatever helps you sleep at night, let me know once you've graduated past the 2nd grade. I give a rats *** what happens to Taj, what he does, but I find it funny people blindly follow him around because they don't understand what he did isn't that spectacular. It's like magic! Well, thinking about it twice I guess I am jealous, jealous of the fact I don't nearly have enough free time to waste as he does. Woe me, pity me! /rollseyes

Edited, Dec 18th 2007 10:26am by Errors

/em smacks his forehead.

Some people are just thick.