Perfect security pack

OgiMini · 02-10-2008, 10:11

SInce i see some account troubles

ANy specialist can alert how keylog works, adn or other harmware?

What would be a perfect security pack for ur pc?

Both in free ans in payed software.

The Ripper · 02-10-2008, 16:57

Good point.

Would be usefull to find out!

craze3 · 02-10-2008, 17:05

Watch out for phishing websites (look in address bar, make sure it says https://entropiauniverse.com)
Watch out for fake emails (view full headers of email to make sure it's sent from mindark)
Don't download any attachments (From any emails which seem suspicious)
Don't run any .exe programs (That you do not know or cannot trust)
Don't loan your account or gear to anyone (it's a given)
Gold card (ofcourse!)

Keylogging works by running an "invisible" program in the background which logs every key you enter, and then sends it to a server where it's logged, or to somebody's email. I'm sure if you run wireshark you can see where the data is being sent to, and maybe have a chance of tracking the keylogger's owner down.

Phishing works by creating fake emails or websites that look like they're authentic and from Mindark or Entropia Universe, when they're really not. Always makes sure the website login says https://entropiauniverse.com at the beginning of the url and that it has an SSL cert (secure). Also, Mindark will never ask for your password.

Common sense, ability to identify and nullify social engineering, and a little bit of paranoia, go a looong way

NotVF · 02-10-2008, 17:07

Exactly what do you mean how does a keylogger work? There's two different types of keyloggers:

- A physical one, which would require physical access to the PC (by physical, I mean hardware-like).
- A software one, which would require you to install it on your PC. Usually this happens without you even noticing you just did something wrong (as in, it will be hooked to a legit program, and it will silently install itself while you expect the only thing installing is the legit software).

Basically speaking, both work as a sort of buffer, and store the keys you press. At a given interval, the collected information will be sent on to the pricks (meanig it could be whenever the file reaches 1 MB, or when your PC connects to the Internet, etc).

The best advice to give is to just never ever download anything. Do not click or open attachments in your E-mail. Run an up-to-date anti-virus program (AVG is free, and works wonderful). Using a firewall might also be a good idea, as that ought to at least clue you in as to when your PC might be trying to transmit information to third parties.

If you know how, easiest way to go at things is installing a seperate version of Windows on you PC, and using that one exclusively for gaming. Surfing etc is done under the install you have now. That way, even if you would somehow get affected, it would limit the damage to the "regular" installation, without compromising your gaming accounts.

Also, do not download something called "always loot.exe", "Brittney naked.jpg.exe", or "Mining ATH finder".

Finally, get a gold card.

Slick · 02-10-2008, 17:41

Quote:

Originally Posted by NotVF

Exactly what do you mean how does a keylogger work? There's two different types of keyloggers:

- A physical one, which would require physical access to the PC (by physical, I mean hardware-like).
- A software one, which would require you to install it on your PC. Usually this happens without you even noticing you just did something wrong (as in, it will be hooked to a legit program, and it will silently install itself while you expect the only thing installing is the legit software).

Basically speaking, both work as a sort of buffer, and store the keys you press. At a given interval, the collected information will be sent on to the pricks (meanig it could be whenever the file reaches 1 MB, or when your PC connects to the Internet, etc).

The best advice to give is to just never ever download anything. Do not click or open attachments in your E-mail. Run an up-to-date anti-virus program (AVG is free, and works wonderful). Using a firewall might also be a good idea, as that ought to at least clue you in as to when your PC might be trying to transmit information to third parties.

If you know how, easiest way to go at things is installing a seperate version of Windows on you PC, and using that one exclusively for gaming. Surfing etc is done under the install you have now. That way, even if you would somehow get affected, it would limit the damage to the "regular" installation, without compromising your gaming accounts.

Also, do not download something called "always loot.exe", "Brittney naked.jpg.exe", or "Mining ATH finder".

Finally, get a gold card.

Absolutely great advice all around VF...especially the two PC thing...I offer an alternative: Play EU on a Intel Mac, thats what I do...all browsing, normal stuff is in OSX (gotta love unix, who needs virus checkers?), gaming ONLY in Windows.

NotVF · 02-10-2008, 17:49

Quote:

Originally Posted by Slick

Absolutely great advice all around VF...especially the two PC thing...I offer an alternative: Play EU on a Intel Mac, thats what I do...all browsing, normal stuff is in OSX (gotta love unix, who needs virus checkers?), gaming ONLY in Windows.

Actually, with the US military making a move towards both Apple and Unix (besides Windows), I'd not be surprised to see more malware coming out for those platforms...

aridash · 02-10-2008, 18:33

the best security would be for MA to offer fixed ip/range for logons to your account. there would be some inevitable maintenance so it would probably have to be charged for. this would make you safe from pretty much anything aprt from your cousin stealing your account while you are not at home. this can only come from MA though, so if people want this we need to campaign for it.

other than that, its a case of good and updated anti-virus, anti spyware and properly configured router and/or firewall. If you are really concerned thats the important one, a decent configured hardware firewall will stop the script kiddies (though maybe not hardcore hackers).

most important: engage brain when on t'internet, dont follow each and every link you see.

Snakecharmer · 02-10-2008, 18:35

Part of this has already been said, but just to sum up everything i would recommend:

1. Install updates for your Operating System. (Not implying you have on e but generally lots of windows users with illegal copies fear that they will get caught while updating and don't install security patches. Those should get a legit copy and install the updates.)

2. An up-to-date virus scanner and a firewall are a must. Comodo offers a very good free firewall. Of course virus scanners are useless without regular updates.

3. Check for malware, for example with ad-aware. Best is to do it with a program that is always running in the background, for example Comodo BOClean or Norton AntiBot.

4. You can use a sandbox for surfing or trying out suspicious programs, for example sandboxie.

5. Filter emails on the server before they even get to your pc, i.e. with mailwasher.