Skip to Content

WoW Insider has the latest on the Mists of Pandaria!

Posts with tag hack

WoW Moviewatch: The tool that will change WoW machinima forever

(Please note that the tool we are discussing today is a hack. It is for machinima only. When it is released, using it may result in your account being banned. You've been warned.)

Malu05, of Madx Machinima and Nogg-aholic fame, has created a tool that will change World of Warcraft machinima as we know it. Machinimators have previously been stuck using WoW Model and Map Viewers to emulate footage shot in-world, but few have done it well enough to be convincing. When he releases the tool, which is still in alpha testing, those days will be long gone.

The tool will effectively eliminate hours of handcrafting that was required to make a scene by allowing you to do a variety of things through a program that he created. By pressing a series of buttons, sliders, or entering a series of commands, users will be able to adjust almost every aspect of the camera and settings, including animation and time of day. This will allow machinimators to have much more control over their work, as well as encourage those intimidated by the lack of proper camera function to adapt quickly.

While there is no release date yet, Malu05 is inviting participation of the development process in the AutoIt forum. We're crossing our fingers and hoping that this doesn't get nerfed!

[Thanks, #machinima on Quakenet IRC!]

If you have any suggestions for WoW Moviewatch, you can mail them to us at machinima AT wowinsider DOT com.

Previously on Moviewatch ...

Read about some of the exciting features after the jump ...

Read more →

Filed under: Machinima, WoW Moviewatch

Buying gold is not a victimless crime

For many reasons I've never felt compelled to buy gold or pay for leveling on World of Warcraft. So I had no idea how the process worked. We got a tip from Kyron of Andorhal about a friend whose account was hacked. In addition to having all of his gear and gold stripped from his characters, he had 2 emails in the inbox for cheap items that he'd purchased off the auction house that the hacker had purchased for 500 gold a piece.

They recorded the name of the seller from the auction house and confronted him when he next came online. It turns out that person wasn't a gold seller but a gold buyer. He'd been told to put Coarse Thread on the AH at the 500 gold rate and would receive his gold when the hacker purchased the ridiculously priced item.

I didn't know how gold-buying worked, but this sounds like a way to exchange gold easily. This is something that blizzard could check into pretty easily. While sometimes players make strange prices in order to dupe would-be buyers, something like Coarse Thread would go unnoticed because most players wouldn't look for such items on the auction house.

Read more →

Filed under: Analysis / Opinion, Cheats, Making money

Wowhead and other sites are having trouble with ad banner trojans

You'll want to be a bit more cautious when looking up information on the game today. World of Raids reports that an unknown ad banner appearing on Wowhead, Thottbot, and Allakhazam has an embedded keylogger trojan. You don't even need to click on the banner, apparently, simply mousing over it will be enough. Wowhead says that all they know for sure is that it originates from "ad.yieldmanager.com", and will produce a redirect to "xpantivirus.com." They're working at isolating it.

The issue is known, and all parties involved are tracking it down, so it should hopefully be resolved soon. In the meantime, if you're looking for a quick way to protect yourself, I would follow the recommendation of World of Raids, and try out the Firefox web browser and the No Script extension. As long as you keep the scripts blocked, it should prevent the banner in question from forcing itself on you. This should also provide you with some protection if you accidentally click on the wrong link elsewhere, such as on the WoW general forums.

Edit: Apparently, the virus in question is not an actual keylogger, but it still does a number on your system, which is reason enough to try to avoid it.

Filed under: Bugs, News items

Gold sellers hold account hostage

We all deal with them. Their annoying spam, their flooding of the general channels. Those gold sellers deserve the kiss of death. Wouldn't it be nice if their industry just went and slept with the fishes?

In a tactic that even Don Corleone himself would be angry at, gold sellers have sunken to a new low. John M. wrote in to tell us the tale of a fellow guild mate who fell under the gaze of a gold seller who took his account hostage, demanding payment from his guild. Sit back, open up a new window with this Godfather music, and read on after the break.

I'm gonna make you an offer you can't refuse.

Read more →

Filed under: Virtual selves, News items, Economy, Making money, Rumors

GoDaddy invades WoW Armory


In one of the most bizarre things I've seen happen to the World of Warcraft in my three years playing, the WoW Armory site today is pointing to a generic GoDaddy.com domain parking page. The screenshot above was taken at 1:08 p.m. CST on March 2nd, 2008. WoW Insider has received numerous reports of this. It seems to be a DNS related issue. The domain name wowarmory.com expires today, and it appears as if a registrant has grabbed the wowarmory.com domain name as soon as it expired.

DNS entries for blizzard.com and worldofwarcraft.com point to cerf.net, while the DNS servers for wowarmory.com are currently pointing to domaincontrol.com. While some of you might be seeing wowarmory.com work correctly, others are not. The ISPs of people who are seeing it work have not had their DNS records updated yet, however within the next 48 hours they will see wowarmoy.com go down as well; unless Blizzard fixes this before then (I am sure they are already aware, or becoming aware of it).

Stay tuned to WoW Insider for the latest on this story.

Thanks to Matthew Rossi and his wife for contributing to the technical sleuthing in this post.

Updated 2:34 p.m. EST: You can access the armory using a sub-domain of worldofwarcraft.com by going to http://armory.worldofwarcraft.com/

Updated 3:03 p.m. EST: http://www.wowarmory.com/ is now working again. It looks like Blizzard really jumped on the issue and fixed it.

Filed under: Blizzard, News items

Your Christmas gift could be hacking your WoW account


Hackers seem to be trying more and more ways to get legitimate accounts out of players hands and working to steal and farm more gold, but if you think they've had some sneaky schemes in the past, you ain't seen nothing yet. Our colleagues at Massively have a story that's both amazing and disturbing at the same time.

A lot of geeks found a digital photo frame under the tree this year. Seems like a good idea, I'm sure a lot of us have a pretty large collection of digital photographs stored on memory cards and flash drives that we just haven't quite gotten around to printing for display.

Unfortunately, certain frames sold at Best Buy, Target, Costco and Sam's Club come with an extra undocumented feature, in that they have a nasty little bug that's being dubbed Mocmex. The bug can burrow its way into your computer, latch itself in, and sniff out account information. It doesn't seem to affect Linux or Macs, at least not in its current form, but right now there doesn't seem to be a single manufacturer or frame type that's infected, so the origin of the bug hasn't been nailed down.

If you think you've got one of the infected picture frames, Massively recommends contacting the SANS institute and calling the store where the frame was purchased. You can check their story for the contact information.

The upside of this, I suppose, is that if the farmers are starting to branch into using peripherals to steal our accounts, they may be getting pretty desperate. The downside is, when we have people who practice safe web browsing and keep a clean computer getting bitten, like our Amanda Dean for example, we could be in some trouble. With any luck, all the major virus programs will have a cure for Mocmex and programs like it soon. In the meantime, it looks like we'll have to be extra careful about what we install on our computers, and make sure our anti-virus programs and firewalls are up to date.

Filed under: Bugs, News items, Economy, Hardware

Breakfast Topic: Hacked

My first post on WoW Insider was about a friend of mine being hacked, this time it's about me. I woke yesterday and tried to copy a character over to the public test realm as I've been doing often lately. I got a password error. I tried to log into my account- same thing. My email had this happy little surprise for me:

Hello Amanda,

The character transfers listed below have been completed as of 2/14/2008. The character[s] listed will now appear in the new location and/or account selected and are immediately available for play!

- <character> - Level 70 Tauren Shaman - now on realm: Blade's Edge.

Read more →

Filed under: Odds and ends, Blizzard, Breakfast Topics

Oh Noes!!!1!1!1one: I've been hax0red!

On Saturday night I noticed a guildie acting strangely. He kept switching between characters and wouldn't respond to tells from even his closest friends in the guild. Concerned about him, we gave him a call... on the phone, to see what was up. You guessed it, he was nowhere near his computer at the time. He went to log in and found his password was changed. Unfortunately, he had also forgotten the correct response to his secret question "What is your favorite activity?"

The hacker kept running in and out of the Shadow Labyrinth. I checked the customer service forums and found that this was common behavior among hackers. Either there is an exploit in that instance, or hackers just really enjoy hanging out with Blackheart the Inciter. I'm leaning toward the latter.

Read more →

Filed under: Analysis / Opinion, Odds and ends, WoW Rookie, Forums

Armory changes URLs


Just a quick note: the Armory, which used to be located at armory.worldofwarcraft.com (and still is, actually), can now be found at wowarmory.com. Neth confirms that it's not a bug or a hack or a spammer or anything-- apparently Blizzard just wanted to simplify the URL.

Well, that, and "wowarmory.com" is a lot closer to "wow.com." And we all know that's what you think of when you want to find your favorite information about World of Warcraft, right?

Filed under: Tips, Odds and ends, Blizzard

Hello! Are you a farmbot?


I've run in to more than a few farmbots in my day -- often in Winterspring, while farming Timbermaw reputation. The furbolg you had to kill to gain favor with the Timbermaw also happened to drop good coin and runecloth, making them lucrative targets for farmers. The bots (characters controlled by a computer program of some sort rather than a human being) were always easy to spot. They'd follow a set circuit around the area, taking down targets one at a time. When the area was empty, they would return to a spot near its center and spin around in circles until they managed to target a fresh spawn -- and then they'd begin running an identical circuit. Depending on the particular farmbot, sometimes I could game their system and let them farm reputation for me. See they've targeted something? Assist them and use an instant attack to tap it before they can -- back when I was doing my reputation farming, the farmbots didn't have seem the intelligence to notice if something had been tapped after they've targeted it and sent in their pet to attack. (They were, of course, always hunters.) A real person would certainly be annoyed by this behavior, but the farmbots would simply continue their cycle.

However, a post up on Kinless' Chronicles makes me wonder if the farmbots have managed to get smarter. Kinless noticed an orc hunter constantly (from 4AM to 4PM, server time) mining thorium in the Eastern Plaguelands. That information alone simply screams farmbot to me, but there's more to the story that makes me wonder. On one encounter with this suspicious hunter, Kinless decided to follow him along his farming route. The hunter dismounted in Hearthglen and started to fight the elite guards there. Figuring that anything worth this much effort to an obvious bot must be wealth indeed, Kinless ventured inside to see what was there. And inside? He found not a single thorium vein and he barely made it out alive. But in his chat box, our friendly farmer was kind enough to wave him farewell before mounting up and leaving. Kinless explains the quandary:

This is a live player, with brains, who does nothing but farm mineral nodes across Azeroth. (I later noted him in the Barrens, Winterspring, Burning Steppes.) He does nothing but farm, and plays round the clock, and does not own the expansion. He's certainly not funding a main, or a twink, since he's got no time. And it's a live player since he played that little trick on me.

This isn't possibly an entertaining way to play the game, so what's happening here? Is it an improved intelligence bot? (Now with new player-baiting technology!) Or are we seeing live players out farming for real world profits? Unless we can get them to start answering whispers, we may never find out.

Filed under: Analysis / Opinion, Cheats

Guildportal, keyloggers, and you

In the past week, you may have noticed an increase in complaints about hacked accounts on the forums. Why? Well, the popular guild-hosting website Guildportal was hacked -- hackers added a bit of code exploiting an old Internet Explorer vulnerability (Microsoft had a patch available six months ago) to install a keylogger on visitors' systems. It was a brilliant move by the hackers, who managed to tap into a site visited by a massive number of WoW players -- the perfect place to steal account information. But I can't say it was very good for some of Guildportal's users, who logged on to World of Warcraft to find their characters completely naked next to an unfamiliar mailbox.

However, this entire affair was very preventable. First off, Guildportal itself had a vulnerability that allowed hackers to insert the exploit that installed the keylogger. And then in order for the keylogger to be installed, individuals visiting Guildportal had to be running a version of Internet Explorer that was 6 months out of date.

Guildportal has taken steps to prevent this from happening again, by patching their systems and banning traffic from China, where the hack attack originated from. (According to Guildportal's response as reported on the forums and a commenter on Madness and Games identifying himself as Aaron Lewis of Guildportal.) But have you taken steps? In Blizzard's post on the subject, they point out Microsoft Security Bulletin MS06-055, released by Microsoft on September 26th, 2006. You can stop many potential keylogger threats by simply visiting Windows Update to download patches regularly -- or, even easier, enabling Windows' Automatic Update feature. Either option would have resulted in your computer being protected from this vulnerability well before now.

Think your account has been compromised? GM Kaone offers some good instructions on how to rid your computer of keyloggers (it's a lengthy post but very informative) and then points you to their billing support department for account recovery. (Yes, it is important to get rid of the keylogger before having your account restored -- otherwise you'll end up right back where you started!) But be prepared for a wait -- the account recovery process isn't always fast.

See Guildportal's full response to its users after the jump.

Other recent security advisories:
Beware the cursor hack
Keep keyloggers away: New Microsoft hotfix available
More security warnings from Blizzard
Blizzard reminds us to be careful of keyloggers

[Via PlayNoEvil, with thanks to robodex for the forums link]

Read more →

Filed under: Analysis / Opinion, Blizzard

Beware the cursor hack

Apparently there is a flaw in the way windows handles animated cursors that could enable people to hack into your WoW account. Now I'm not sure why anyone would want an animated cursor in the first place, but de gustibus non est disputandum. It seems that malicious cursor sites can install arbitrary code on your computer along with the cursor, where it sometimes lies in waiting until you log in to WoW. At this point it pounces, records your login info, and sends it back to the hacking group responsible.

The good news is Microsoft already has a patch out to fix this vulnerability (released on April 3rd), so go download it (auto-update will get it) and you should be safe. One interesting factoid in the BBC article on this flaw is that the value of a WoW account is now greater than the value of a credit card, at $10 and $6 respectively. What's so useful about the average WoW account that it's worth $10 on the open market?

Update: You can find the download link for Microsoft's patch in our previous article on this vulnerability. Please download the patch if you have not already.

[via MMORPGDot]

Filed under: Patches, Odds and ends, News items

The teleport hack issue (or server synchronization and you)


"Teleporting" all over the map isn't just for hackers these days -- an issue with the way Blizzard synchronizes data between the servers and the clients allows anyone to mysteriously jump from place to place without the use of any third party software. I'm sure we've all been in groups where we see someone start to run forward and then continue running forward, right through a pack of mobs and into another and another... there's a moment of panic before you realize that, oh, they've just gotten disconnected, and none of those mobs noticed him at all.

What's happening is that Blizzard's servers know the person is disconnected (they're no longer synchronized with the server) and hasn't actually moved -- but on everyone else's screens, the character continues to do exactly what it had been doing previously. The purpose here is to keep the game running as smoothly as possible in a world of imperfect network connections. When someone experiences a lag spike and is de-synched from the server, Blizzard made the decision that they wanted game performance to look smooth to the rest of the players in the area -- so instead of freezing the de-synched player in place, the de-synched player continues doing just what they were doing before (at least on other player's screens). When the player re-synchs with the servers (he's no longer lagging, or he reconnects after a disconnect), Blizzard takes the client's data as the most accurate interpretation of events -- meaning that even while lagged, you can continue to play and issue commands as usual. (In this sort of system, you may not even notice lag unless it's quite extreme.) When you re-synch with the servers, Blizzard accepts what you were doing and synchronizes the game world to that. And for the most part this is entirely invisible to players, except for those few times when a lag spike turns into a longer disconnect.

Read more →

Filed under: Cheats, Bugs, Blizzard, PvP

WoW + Wii = WiiCraft

Now this is interesting. Take your Nintendo Wii remote, hook it up to your mac via a free program called DarwiinRemote, and run World of Warcraft. If you're wishing for Warcraft on the Wii, you've... kind of... got it.



He says you can also do this with a free Windows program (that should be Wiindows, actually), but as he shows, I still think it's more of a novelty than an actual control scheme-- he doesn't answer the question of how to actually talk to anyone, and I doubt that by moving the little remote to click all your spells that you can actually get anything done quickly, but for grinding it might be OK. But even as a novelty, it's a pretty nice, extremely easy little hack. Nice job, Wiicast guy.

[ His name, we believe, is Pooch. Thanks, Pooch! ]

Filed under: How-tos, Fan stuff, Odds and ends

59,000 More Accounts Closed

In their continued effort to rid Azeroth of hackers and gold farmers, Eyonix announced this evening that 59,000 accounts were closed during the month of June for terms of use violations. Have you seen anyone behaving suspiciously on your server? An account that's being controlled by a bot isn't too difficult to spot if you spend a bit of time paying attention - and Blizzard investigates all reports. So if you suspect such behavior, report it to a GM, and help the community be rid of the annoyance of hackers and bot farmers.

Filed under: Cheats, News items, Economy

WoW Insider Show 

Subscribe via  iTunes for our latest show.

Hot Topics


 

Upcoming Events

Event Date
Hallow's End 10/18 - 11/1
Day of the Dead 11/1 - 11/3
Darkmoon Faire 11/2 - 11/9
BlizzCon 2014 11/7 - 11/8

Around Azeroth

Around Azeroth

Featured Galleries

It came from the Blog: Pandamonium
The gaming artwork of Jessica Dinh
Mists of Pandaria Raid DPS Analysis
Mists of Pandaria Collector's Edition
Death Knight plague epidemic
Mega Bloks: Goblin Zeppelin Ambush
Mists of Pandaria Beta: Ruins beneath Scarlet Halls
Mists of Pandaria: New warlock pets
Female Pandaren Customization

 

Categories