Jump to content
Search In
  • More options...
Find results that contain...
Find results in...
Buy OSRS Gold

Usa

Account Security

Recommended Posts

Hello TRiBotters, this is a PSA regarding Account Security.
 
Recently I've seen a growing number of Account Security issues leading to more Account Recovery requests.
 
While your security and anonymity at TRiBot is taken very seriously, some related sites have had issues protecting your account information. As you may already know, various black market, private servers, and other clients have had their databases compromised and dumped. 
 
What this means for you is if you are using the same username and password across all sites, your TRiBot account may be at risk.
 


What we advise,

  • Use a unique password at TRiBot different from all other sites (longer, more symbols, more characters the better)
  • Never share your account details or type them anywhere else but at TRiBot forums or the client.
  • Enable Google Authenticator for extra account security.

 


How do you use Google Authenticator?



If you are aware that you are using the same password across all sites, we recommend you change your password at TRiBot to something unique to keep your account safe.
 
Thanks and happy botting!
 
TRiBot Staff

  • Like 6

Share this post


Link to post
Share on other sites

never used google auth how often do you have to use the app ? each log in ? or 1 time a IP ?

 

  • Like 1

Share this post


Link to post
Share on other sites

Secure your account folks! i about lost my mind yesterday because one of my farm accounts got "hacked"  lost about 50m 

 

 

now the loss of the gp wasnt a big deal what really got me is how in gods name someone got my pass/user ! 

 

PS.

I work in IT and im studying IT security so most of my stuff uses a 16 character password lower upper case, anti virus and any registry changes to be prompted. (just basic stuff  straight out of Da book)((key-loggers are soo 2002))

 

 

After about 2 hours of research and and 3 hours of crying to YoHoJo trying to blame Tribot i figured out some prick from Taiwan managed to gain access to my old fb account, found out my old email account recovered it and then found my old password sheet in a draft folder (i know never write down passwords but this sheet had 30+ users/ pass most obsolete) anyway  so the prick gained access to one account and cleaned it.

 

 

 

To summarize, in this day and age you really arent safe, take the extra step and  follow good habits such as resetting your password monthly for all systems  and if your not using an old email or FB or twitter to simply delete it. Otherwise they may take a whole lot more than 50mill. To me thats a small price to pay for a good reminder. 

Share this post


Link to post
Share on other sites

That's not true.

 

Actually you're partially right. I spoke to said person about this. I was wrong about your db being dumped. The bot was "cracked" in the past by someone who had Spoofed the SSL server and patched GetAddrInfo during runtime for any authentication requests to come to said server.

 

I hope the procedure for the bot has been improved upon since.....

Edited by True_Mako

Share this post


Link to post
Share on other sites

Thank you for a good reminder, one easily gets lazy after a couple of years :P used to be so paranoid changing passwords every week but as the years passed by it started taking longer and longer in between. Well now I'm updated nearly every online account :-)

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


  • Our picks

    • Gradle is a build tool used to accelerate developer productivity.

      We recently setup a Maven repository (TRiBot Central) to make it easier for scripters to create scripts. Check it out here: https://gitlab.com/trilez-software/tribot/tribot-central/-/packages

      Furthermore, we've released a simple Gradle project to make it easy to run TRiBot and develop scripts for it. Check it out here: https://gitlab.com/trilez-software/tribot/tribot-gradle-launcher

      The goals of TRiBot Central are to:

      Deliver updates to TRiBot faster


      Better organize TRiBot's dependencies (AKA dependancies)


      Make it easier to develop scripts for TRiBot


      Make it easier to use and run TRiBot


      Note: TRiBot won't be able to run scripts from within this project until TRiBot's next release.
        • Like
      • 8 replies
    • Hi everyone,

      I'd like to thank everyone for their patience in this transition period. Since last week, we've worked out the remaining bugs with this integration.

      Some users have still been having issues with connecting their forums account to their Auth0 account. To resolve this, we've imported all forums accounts into Auth0.

      Unfortunately, the accounts which were imported today were using an unsupported password hashing algorithm. Hence, random passwords were set during the import.

      What does this mean for me?

      If you've previously linked your forums account to your Auth0 account, you don't have to do anything. Nothing changes for you.


      If you haven't logged in via our new login yet,

      Try logging in with your forums email address and the last password you used


      If you are unable to login, please use the "Forgot password" tool on the login page:
      Follow the instructions to reset your password
       
        • thonking
        • Like
      • 15 replies
    • Hello everyone,

      Last week we tried to roll out Auth0 Login, but we lost that battle. Now it's time to win the war!

      Important changes

      When logging into the client, you'll now have to enter your Auth0 account credentials instead of your forums credentials

      Note: 2FA is still handled through your forums account (for the time being)



      Changes for existing users

      You'll have to link your Auth0 account to your forums account here: https://tribot.org/forums/settings/login/?service=11


      Auth0 accounts have been created for most existing users. Please use your forums email address and password to login.



      Important notes

      Make sure to verify your email address upon creating a new Auth0 account


      When we mention your Auth0 account, we mean your account used for auth.tribot.org as displayed below
      • 81 replies
    • To better support the upcoming changes (TRiBot X, new repository), we're switching our login handler to Auth0. Instead of logging in with the standard form, you'll now be required to login through our Auth0 application.

      All existing accounts which have been used within approximately the past year have been imported into Auth0 using the same email and password combination which has been stored on the forums.

      What does this mean for users?

      Your account credentials are now even more securely stored


      You'll be able to login via Facebook, Google, and others in the future


      Is there anything users have to do differently now?

      Existing users: You'll have to login with the standard login, open your Account Settings, then link your Auth0 account


      New users: You'll be redirected to our Auth0 app (auth.tribot.org) where you'll be able to create an account


      Why was this change made?

      The new apps we are creating (such as the new repository) aren't able to use the forums to handle user logins


      To centralize all user accounts in one area


      To ensure that the client login doesn't go down when the forums are having problems


      To speed up our development


      Other considerations

      There's no documentation or official support for using Invision Community combined with Auth0, so there are still a few kinks we're working out


      We're in the works of creating an account management panel specifically for Auth0 accounts (ETA August)


      It's not possible to change email addresses for the time being (this will be resolved this August)


      Changing passwords is a weird process for the time being. To change your password, you'll have to use the "Don't remember your password" tool on the Auth0 login page
        • Like
      • 11 replies
    • Over the past month, we've been working hard on TRiBot's new repository - a much needed update. This change has been deemed necessary for TRiBot X, and will allow us to really speed up development of all aspects of TRiBot.

      Today we are going to share what we've been working on!


      Now you must be wondering what kind of features the new repository will have.... well, you'll have to be patient for a little while longer. We're still figuring out various technical aspects so we can't provide answers to all possible questions. We're also focusing on development rather than writing about it so that everyone can get access to our latest developments at lightning speed. I will however answer a few users' questions.

      We're planning on a release of this early to mid August, giving users some goodies before TRiBot X's release.

      Thank you all for being patient. I hope everyone is excited as much as I am!
        • Like
      • 17 replies
  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...