EDIT | More Hackings: Targets - CP of Bulgaria, CP of eEgypt!

Day 1,420, 03:23 Published in Egypt Croatia by Janko Fran
EDIT | More Hackings: Targets - CP of Bulgaria, CP of eEgypt!

As you probably know, account of Pitlja666, President of eEgypt, was hacked two days ago, mine got hacked yesterday not once, but twice, today account of Flausino, president of Bulgaria was probably also hacked (just an hour ago, around 04:30 eRep time).

Except dissolving all the companies and transferring all money and gold from the accounts, hackers have left several other messages:

"Stanković Alexa did not died yet..."

A strange 'Welcome' Message Proposal in eBulgaria:

"Add Kurdistan!
Add Armenia!
F turkey!
Add Palestine!
F israel!
Kosovo is Serbia!
Macedonians are cute xD
Hoffa13 is my girl, Hoffa13 is my girl! xD
TemujinBC did u milk the cow today? XDD
LLuX yo mama says "hi".
Sando e RUK."

http://www.erepublik.com/en/Bulgaria/law/85337

Turkey MPP proposal in eEgypt:

http://www.erepublik.com/en/Egypt/law/85221

Cyprus NE proposal in eEgypt:
http://www.erepublik.com/en/Egypt/law/85220

The Admins are investigating all the cases and presidents' accounts have been put to temporary 24 hour bans as a security measure. As it seems it's still not safe. The question now is who is behind these attacks and is it only for money or there also some other agenda behind it?

There are even some rumors which mention Hacker Okan. Who is he anyway, and does he have anything to do with these hackings is not known yet.


Hacker Okan

It is very probable that the same hacker or hacker group is behind all these hacking attacks and at least two out of three hacking cases are connected (both in eEgypt).

If we try to guess who might be behind these attacks and judge by the messages left and the targets chosen, it could be that we deal with illiterate people or people with weak knowledge of English, who probably represent Serbian or Turkish interests. Some say that Turkish players from INCi are behind these attacks. This would mean that electronic warfare is becoming a new battle front in eRepublik.

Alternative interpretation is that it is only about stealing money and that these messages are here only to mislead or cover the traces...

EDIT | A New Hacking? Again? How is That Possible?

Hello, dear Admin team!
Hello, not so dear Hackers!

Well, I don't find this amusing any more and I don't know what is happening...
Admins, could you please check my account again?
Hackers, could you please keep away from my account from now on? I think this leads nowhere...
I woke up this morning and here is the same story...
No companies, no gold, just this time they dissolved 21 company (2 more oil rigs and a mine) and my e-mail hasn't been changed... (Last time hackers at least left their signature and the e-mail was changed...)
Has something happened in eRepublik what erased yesterday's Admin intervention, or is it a new hacking?

Am I the only one who got hacked twice in a day?

Who is doing all that and how was my account being compromised again?
This time I had a new e-mail, a new password and didn't open any suspicious links.

I've got some information from a Mod that it's very possible that my account has been entered through a fake FB account connected with my eRep account.

I am also checking for possible keylogger or spyware programs on my computer as well as third party eRepublik scripts.

EDIT | Today my account was hacked, and Admins have already solved it!

Thanks to a quick intervention of the Admin Team, I got all possessions restored on my account. I've got back brand new companies of the same quality and type, including gold and currencies.

I'd like to thank to the whole Mod and Admin Team, including but not limited to: Josx, Bandigarf, crista22, Belea2008 (and all the others)...

However, after all this I still have been left with a little souvenir, a new avatar! 🙂

Faithfully yours,
Janko Fran, being hacked [by]

Somebody is Hacking My Account, Somebody Will Get Really Hurt

Today around noon someone dissolved all 18 of my companies that could be dissolved (over 220 gold on my account after dissolving) and stole all the money and gold. However, Admins will soon get to the bottom of this...

I had a Q4 wep (180 gold), Q2 wep (30 gold), Q2 food company (30 gold), 5 Q1 Food companies (5*10 gold).
Then a Q5 WRM (35 gold), Q4 FRM (7500 EGP), 5 Q3 WRM (5*10 gold), 3 Q3 FRM (3*10 gold)...
All I got left are Plato's companies (two oil rigs and one Q1 food and 3 q1 FRM companies).

The total damage is 412 gold in companies and around 30 gold in gold and currencies, so it would be around 440 gold total damage.

Also, my e-mail and password have been changed, as well as my avatar and citizen description.

The Warning

Beware of messages with external links on them, especially to bogus eRepublik sites.

This link should be safe, but check it anyway before you click on it:

Russell Peters - Somebody Gonna Get a Hurt Real Bad
http://www.youtube.com/watch?v=yVcePxjFujs&noredirect=1

What to do when it happens to YOU

Yes, I was also thinking it can't happen to me, but here is what you should do:

First Steps Against Hacking

1. If you suspect your account might be a target of hacking, change your e-mail address and password. Open new e-mail address and chose a new strong password and keep it somewhere safe and not online.

2. If hacking by some chance happens while you are online (as it happened to me), try minimizing the damage. Most quickly send some gold to your friends you trust, and try to put your gold on the market and hide it from hackers for a minute. If they managed to change it to currencies already, send it as well to your best eRep friend (there is no limit on currencies. I managed to send 10 gold and some currencies, but the damage is still vast).

3. Send a massage from your e-mail address (not from your hacked eRepublik account) to support@erepublik.com with subject: Account being hacked
and describe the problem. Something like this:

My account is just being hacked as we speak (I suppose a few minutes after
12:00 CE time (3:00 eRep time)...
18 of my companies have been dissolved (over 200 gold on the account after
dissolving and currencies bought on MM and sent away while I was online!!!
I managed to save a small amount of money and 10 gold by sending it to my friend's account (Admins know the exact name)... Please help me!

Janko Fran

4. Contact #erepublik channel and find some online MoD if there and provide some additional information if you managed to remember some new things. MoD could try to hurry up the thing if possible.

5. Wait for a response from Admin team, they have all the transactions from your account listed and can reverse the process and punish the hackers or at least neutralize the damage.
For instance, I got a relatively quick reply:

show details 12:56 PM (47 minutes ago)
Hello,

To begin our investigation, we kindly ask you provide the below information.

1. Do you now have control of your account? If so, have you since protected your account by changing to a new stronger password?
2. When was the last date and time you logged into your account before this happened?
3. Did anyone else have access to your account?
4. Have you given your username and password on any other website?
5. What was taken?
6. Do you know who took your items?

Regards,
The eRepublik team

Can you please rate my answer to your ticket? 1 2 3 4 5
(1 = very bad, 2 = pretty bad, 3 = medium, 4 = pretty good, 5 = very good)

The next steps on Admin's side would be:

Next Steps by Admin

6. To make possible for you to change the e-mail and password in order to enable you regaining control over your hacked account.
7. Trying to repair the damage to your account.
8. Punishing the hackers!

However, you might consider further steps:

Further Steps

9. Changing account e-mail and password again, after resetting your e-mail and password by Admin team, just to be on safer side.
10. If it gets more serious, and your other accounts on other websites are being hacked you might consider contacting Police, Department for electronic crime or similar department in your country.

11. Saving this article in case it's being deleted by hackers. 😉

Faithfully yours,
Janko Fran