Exploitation (Warp, Botting, etc.)

I know on my server (Diabolos) the number of bots just totally outweighs the ability to report them all. In just one smallish area, there was 30+ bots. Many were underground most the time just teleporting from node to node. I reported several, but after an hour of filling out cheat reports gave up. I don't want to spend my entire time online just trying to report these bots using the slow, cumbersome tools we have.
Just one GM in the area could have banned them all in less time than it took me to report those I did.

I'm curious about why MMOs don't use players anymore. It was a lot of fun being a Guide and although there was a little bit of exploitation, it wasn't bad. Nothing as bad as these hacks and exploits going on now. Of course, guides couldn't suspend/ban people - but we would go observe after receiving a report, and if it was true we could escalate it straight to a GM. Plus we could take care of all the standard issues that came in, like stuck players. It saved a lot of time for the GMs and all it cost the company was a few free subs. And doing player events was FUN!

Well, the bots successfully destroyed the shard market already.

By the way, for the teleportation cheat, I think it stems from the fact that, to avoid "rebounding", the position of a character is set client-side, thus making it easy to simply send a "fake" position to the server to teleport to. But yes, as someone mentionned, SE tends to make mass bans every so often rather than a few bans at a time, just like they mentionned they might ban or rollback any character that exploit the unmoving Chimera and Hydra bugs. Back in the FFXI days, they banned about a third of the endgame players for abusing a bug that duplicated gear that went unnoticed by SE for about a year. That was the Great Purges of Final Fantasy XI. SE will definitely ban abusers, but it can take some time.

The process to exploit the game, the memory and data being sent back to the server is not that difficult as it requires a creative method. Malwares and zero-day exploits are notorious for hijacking clients and the OS. The cheaters do the same. They use Windows zero-day exploits (think of Stuxnet) by injecting their own computer with these malwares that they engineered (or others have) and then "remote in" with another process on the same machine and manipulate the code/data. It's a lot easier than reverse-engineering the actual client as this gets around most client-side security and attacks the OS architecture itself. Part of the problem (or most) of game hacks, especially on the PC side, has to do with Windows shipping full of holes and legacy exploits from god knows when. This makes it so challenging for software developers to secure their products when the OS that it is being installed to is as insecure as leaving a door open in the middle of a crime infested neighborhood.

Quote:

---

Originally Posted by Discordia

The process to exploit the game, the memory and data being sent back to the server is not that difficult as it requires a creative method. Malwares and zero-day exploits are notorious for hijacking clients and the OS. The cheaters do the same. They use Windows zero-day exploits (think of Stuxnet) by injecting their own computer with these malwares that they engineered (or others have) and then "remote in" with another process on the same machine and manipulate the code/data. It's a lot easier than reverse-engineering the actual client as this gets around most client-side security and attacks the OS architecture itself. Part of the problem (or most) of game hacks, especially on the PC side, has to do with Windows shipping full of holes and legacy exploits from god knows when. This makes it so challenging for software developers to secure their products when the OS that it is being installed to is as insecure as leaving a door open in the middle of a crime infested neighborhood.

---

Quick fix: Only make a x64bit build that runs on Windows Vista or 7. Though in all seriousness, I think you're off the mark, nothing fancy is going on. The hackers are using off-the-shelf hooking software that I won't name, that creates it's own exe's and most of these EXE's are detected as malware by antivirus software:
Bkav HW32.Stranact.rqso
Comodo Worm.Win32.P2P-Worm.Palevo.fghk
TrendMicro-HouseCall TROJ_GEN.F47V0919
etc

I also wouldn't doubt the people running the bots get their accounts hacked as well.

Quote:

---

Originally Posted by worldofneil

With FFXI they tended to wait and then banned thousands of accounts at time. Example of this:

http://www.playonline.com/ff11us/polnews/news9096.shtml

---

Omg I remember when they banned tons of farmers. ore then one friend got banned cause they had a mule character to hold their excess stuff. I think they introduced more storage after that lol!

Its all Chinese Gil farmers.. thousands of them literally! These guys are making $10s of thousands per day right now. They are not going to slow down or do anything intelligent. Its China.. they will just flood the market daily with 100s of millions of gil each day until SE fixes it or everyone leaves the game. They are flooding the economy so bad right now, notice the inflation in game already... and the game just launched, if they do not fix this fast the game is going to take a seriously bad turn.

Yeah I just kinda need to be fixed SE, thanks mkay.

They should've seen this coming with the experience from FFXI and had easy tools to combat the situation from day 1, "MASS bans" few months from now will be like going to the toilet with the brown stuff already in your pants...

The damage is already done and it will take months upon months for the inflation to settle after the majority of these goons have been dealt with. To me this is totally negligent behavior from SE towards real customers to let shit slide as much as it has in the few weeks its been out.