BRP central hacked.

D

danskmacabre

Mongoose
Just a warning to everyone, BRP central has been hacked and has malware installed on it now so for the time being, DON'T go there..
 
I've just seen the posts on RPG.net about this. Looks like its a serious DOS attack.

Hope it gets restored soon.
 
Loz said:
I've just seen the posts on RPG.net about this. Looks like its a serious DOS attack.

Hope it gets restored soon.
Click to expand...

Doesn't appear to be a DoS attack. The site, according to diagnostics, is distributing malware which is downloaded and installed without user consent.
 
The message I had implied that the site (hosting company) also hosts a couple of Indian sites (a couple of .in web pages are indicated as having malware). As a result my browser suggested I shouldn't access the site.

Now it could be a DOS attack or just an attempt to get logins and passwords. Why anyone thinks that people use the same name and login for a gaming site as their bank or CC company remains as an exercise for the terminally bored. If it's an attempt to install a keystroke logger it's pitiful but aimed at accessing peoples bank or CC details.

Run a system check if you've been there in the last day or two to make sure.
 
hanszurcher said:
Loz said:
I've just seen the posts on RPG.net about this. Looks like its a serious DOS attack.

Hope it gets restored soon.
Click to expand...

Doesn't appear to be a DoS attack. The site, according to diagnostics, is distributing malware which is downloaded and installed without user consent.
Click to expand...

Ah, this may explain a malware threat Sophos detected a couple of weeks ago (and neutralised, thankfully). I hadn't considered that a forum might be the source, and it might be unrelated, but you never know.

Running a fresh system check to be on the safe-side.
 
I normally visit BRP Central every day, and my antivirus program
detected a couple of Trojans twice last week, but since I did not
download anything from any of the roleplaying forums I had visi-
ted I did not suspect a forum as the source.
 
Loz said:
...
Running a fresh system check to be on the safe-side.
Click to expand...

A good idea.

Also, if you reuse the same username + password pairs on various sites...now might be a good time to change your passwords.
 
strega said:
Why anyone thinks that people use the same name and login for a gaming site as their bank or CC company remains as an exercise for the terminally bored. If it's an attempt to install a keystroke logger it's pitiful but aimed at accessing peoples bank or CC details.
Click to expand...

Well for one there probably are such people ;) Also they are also looking for more than bank/CC details. Simply being able to install malicious program to people's computer to get those to be part of zombie network is worth a lot of money for criminals...

So yeah. Run complete checks if you have been there. Doesn't really take much of an effort but rewards are good if you have been infected.
 
rust said:
I normally visit BRP Central every day, and my antivirus program
detected a couple of Trojans twice last week, but since I did not
download anything from any of the roleplaying forums I had visi-
ted I did not suspect a forum as the source.
Click to expand...

Unfortunately with drive-by attacks, the malicious program is automatically downloaded to your computer without your consent or knowledge.

I have also visited BRP Central quite a bit in the last few weeks, I haven't detected anything suspicious on my computers*. I also use the NoScript script-blocker add-on for Firefox for extra peace of mind.

*(I mostly use GNU/Linux but I have a Windows machine I use for gaming at home...all have been to BRP Central)
 
I run regular checks every other day or so, just to make sure.

Damn. :( I put my potions creation and reptilians articles on there. You'll have to go to 4shared for them until BRP comes back.
 
This is what Trifletraxor, the owner of BRP Central, posted on rpg.net:
Greetings everyone! Yes the site has been hacked and infected with trojans, malware and whatnot. I'm currently travelling in Tanzania (nearly croaked on Kilimanjaro yesterday), and just discovered the infection today when I checked my email, where I found an email about a security patch update from vBulletin (the forum software) and several messages from BRP Central members about the situation. There's preciously little I can do about it now until I get home, except taking the site offline to avoid any further visitors to get infected, which I have asked my hosting provider to do immediately. I'll try to rectify the situation as good as I can when I get home. The site will be back up again, the question is only how much of the database needs to be discarded for it to be safely be opened again. Hopefully it will be back up again in about two weeks time. I'll send out an email to all members when it's up and running again. Sorry for the inconveniance! Trifletraxor.
Click to expand...
 
Prime_Evil said:
As a big fan of Clark Ashton Smith and Jack Vance, I absolutely loved Chronicles of Future Earth!
Click to expand...

Yes! Sarah Newton popped up on BRP Central a short time ago, said she had some news on the future of Chronicles of Future Earth in the works. Then the lights go dark....
 
hanszurcher said:
Yes! Sarah Newton popped up on BRP Central a short time ago, said she had some news on the future of Chronicles of Future Earth in the works. Then the lights go dark....
Click to expand...
You have a good chance to find any important news about the
Chronicles of the Future Earth here:

http://sarahnewtonwriter.com/
 
You must log in or register to reply here.

Similar threads

M
prototype robot brains?
Replies
5
Views
463
MasterGwydion
M
Terry Mixon
Refiner-Class Mining Ship
Replies
9
Views
573
Galadrion
G
S
Roll20 Compendium
4 5 6
Replies
115
Views
4K
Terry Mixon
Terry Mixon
A
Where to start in the Traveller universe?
Replies
15
Views
1K
Bense
Bense
apoapostolov
Field Catalogue - are there plans for a 202X update?
2
Replies
27
Views
2K
Vormaerin
V
Back
Top