Warning , new phishing link being whispered to players - dont fall for it

https://i.imgur.com/rERO6VE.png



Notice the fake part at the end of the .com

-yv.eu


its bs

This isn't new, but reposting this is never a bad idea. Some people haven't seen the scam yet.

Ah ok , I thought eh familiar one was "go to xyz post to show your disapproval of changes made my square enix " etc

any who

yeah visibility always a good thing when it comes to malicious links

I got this at 2.35 am so I guess they hope to catch folk out still playing that might be a bit sleepy and not paying attention

I think this is not allowed or is it ?
Can we report those "Players" who wants to scam/rob other players for their own Fortune.
Or can we only block them...

At 4:09 am it happens to me on Cerberus... I knew the method from earlier Expansions.

Quote:

---

Originally Posted by Mavhes

I think this is not allowed or is it ?
Can we report those "Players" who wants to scam/rob other players for their own Fortune.
Or can we only block them...

At 4:09 am it happens to me on Cerberus... I knew the method from earlier Expansions.

---

Definitely report the player that whispers this to you , they are using compromised accounts to further scam people out of their log in details which happens if you go to that fake link because it will ask you for your SE account log info.

i dont know how they use the report info, but i've reported each time ive seen a certain .com(you know the one, im not going to give them more advertising) up to 5 times in two hours, once each time they posted their gold spam. so its not automated, and its not fast enough to do any good. i guess chat filtering is beyond their skills. still better than epic, i KNOW somewhere in sweeny's house there is still a vcr flashing 12:00.

I'll put a /shout in game chat to warn other players when i get one of these.

Hi, sorry to bother you all but i need advice.
My girlfriend unfortunetely got got by this kind of link can anyone knows how can she get her account back please and thank you

I just click the link to report these for RMT, since they're trying to steal your gil and/or account and sell it.

Quote:

---

Originally Posted by Snorix

Hi, sorry to bother you all but i need advice.
My girlfriend unfortunetely got got by this kind of link can anyone knows how can she get her account back please and thank you

---

Contact Customer Support.

The report RMT function does work for these guys.

I just wish they'd broaden the scope of quick reporting to include other types of bots.

we did that and now waiting, she still has the email adress of the account but the scammer used the one time password system so she can not change the password without it.

They should be able to identify the account even by product key or character.

Its sad a lot of people fall for this. 300M gil raffle? Sounds too good to be true c’mon now. You can’t be THAT gullible thinking its legit. But sorry for those that happened to them getting their account hacked and stuff.

TO be fair the same just happened to me, i was super tired and didnt give it a second thought at first, but then quickly changed my password two to three times adding 2 factor just to be sure, i seem to have dodged quiet the bullet if i do say so myself

I've been hacked by this it seems. They added a one time password to my account

The sad thing is I have received this tell from several players that had all classes at maxed levels

Some of the even had a comment for search info

Quote:

---

Originally Posted by MisterBigglez

I've been hacked by this it seems. They added a one time password to my account

---

I don't think that will prevent you from getting your account back as long as you have access to certain credentials the phishers wouldn't.

Quote:

---

Originally Posted by Izar_Chillen

Definitely report the player that whispers this to you , they are using compromised accounts to further scam people out of their log in details which happens if you go to that fake link because it will ask you for your SE account log info.

---

Considering they are almost always a legit player's account being hacked I'm a little hesitant to report them. If possible, I would contact anyone who happens to know the character in question first so they could notify the owner. But if all else fails...report. Sadly, some things must be done for the greater good.

Quote:

---

Originally Posted by Vahlnir

Considering they are almost always a legit player's account being hacked I'm a little hesitant to report them. If possible, I would contact anyone who happens to know the character in question first so they could notify the owner. But if all else fails...report. Sadly, some things must be done for the greater good.

---

The issue is apparently known enough by the GMs that the accounts will just get suspended instead of permabanned.

It's just a pity there isn't really any way they can deal with this permanently. Even though people aggressively report the phishing links they constantly acquire new domains to create them under.

Quote:

---

Originally Posted by KageTokage

The issue is apparently known enough by the GMs that the accounts will just get suspended instead of permabanned.

It's just a pity there isn't really any way they can deal with this permanently.

---

Ah, gotcha. That's a bit of a relief.

Good idea is to just never click links, even from players you trust. If someone you trust sends you a link, verify with them through another channel (like Discord, for instance) before clicking it.

I honestly don't pay any kind of attention to the chat box unless I'm in a dungeon and need to say something to the party.

sorry you all, I clicked the link but haven't left the game, am i in danger if I log out?

Quote:

---

Originally Posted by ichigosora

sorry you all, I clicked the link but haven't left the game, am i in danger if I log out?

---

Quickly change your password and do what the others said.
You may have a chance if you can change your password now.

thanks! Hope for someone to confirm this, thanks for the quick reply! Paassword changed, if it works it's because of you and this thread, thanks!

I tried to change my password with in a couple mins but it was too late, already submitted a ticket. Is there anything else todo. Wish they had a support number instead of email...

Do yourself a favor, everyone who reads this thread, and put the one-time password on your account. It will prevent basically any attempt to access your account without your knowing.

Quote:

---

Originally Posted by WlyemR

Do yourself a favor, everyone who reads this thread, and put the one-time password on your account. It will prevent basically any attempt to access your account without your knowing.

---

The problem is that the phishing links also ask for your OTP...and most people who are willing to follow them in the first place don't realize that the log-in on the official forums doesn't demand such.

I accidentally clicked it because I didn't know any better and noticed after but was able to change my password and everything very quick, I should be fine right?

Quote:

---

Originally Posted by Ashenf

I accidentally clicked it because I didn't know any better and noticed after but was able to change my password and everything very quick, I should be fine right?

---

It won't hurt you unless you actually enter your log-in info, which sends it to a bot that will immediately attempt to log into Mogstation using those credentials and change your password, which will also kick you out of the game if you're already logged in.

How do they get your information?

Quote:

---

Originally Posted by Vanitas_Law

How do they get your information?

---

It takes you to a fake website that looks genuine, you then enter your details, including the one time password if you happen to have one setup. They then log the info and use it to log into your account and change the password, effectively locking you out.

Consider the max trade amount is 1,000,000, that's another dead give away that it's a scam. Nobody is gonna sit for 300 trade transactions and I doubt they know about the allegan pieces.

Quote:

---

Originally Posted by Ashenf

I accidentally clicked it because I didn't know any better and noticed after but was able to change my password and everything very quick, I should be fine right?

---

You're safe. Keep in mind actual players wont give away 300 million gil like that.

Quote:

---

Originally Posted by Vanitas_Law

How do they get your information?

---

Your web browser will protect you by not opening the website and redirecting you to the official website. Next time, make sure you are wide awake!

Just saw this scam this morning. Got sent the same link by two different characters. Hopefully security questions and 2FA are enough to save people from getting hacked. Already reported but idk how the GMs usually handle this type of thing. The fake forum link seems to have disabled the login and reply bars after a while so maybe they've gone to a different link and gave up on the one they sent me.

Sorry for bringing back a few weeks old thread, but I got the scam not that long ago. I realized it was fake too late and changed my password and added a software token. My login history says there was an attempt by an IP address I didn't recognize, but considering I was able to change my password (have done so three times now) and add the token means I've thwarted them, I think? Really worried now.

I saw this while looking for the forum. I just changed my password on mog station, which seems to have worked for the store as well, and logged out anyone logged in, so i should be fine, right?

Quote:

---

Originally Posted by KageTokage

The problem is that the phishing links also ask for your OTP...and most people who are willing to follow them in the first place don't realize that the log-in on the official forums doesn't demand such.

---

Agreed – OTP setup will not protect you from the scam if they convince you to "log in" and hand them the password.

However, from the sound of things, having the OTP already assigned to your account will prevent the scammer from applying one and locking you out. So there's still some benefit, but it won't save you from the scam to begin with.

Quote:

---

Originally Posted by Lunalepsy

Your web browser will protect you by not opening the website and redirecting you to the official website. Next time, make sure you are wide awake!

---

That is an unhelpful and reckless thing to say. Maybe particular software is smart enough to do this, but as a whole, people's browsers are clearly not redirecting them away from the scam site, or the scam would not happen.

In any case, if it even works that way, I would consider it irresponsible browser programming to "seamlessly" direct people away from a scam site to the one it is mimicking. They need it pointed out to them that the website is a scam.

If your post was meant to be a joke that you protect yourself by not following the link, it is poorly worded.

Quote:

---

Originally Posted by Runaud

I saw this while looking for the forum. I just changed my password on mog station, which seems to have worked for the store as well, and logged out anyone logged in, so i should be fine, right?

---

If you play on pc you might have a key logger now, so it tracks and send all your passwords / new passwords on games, email and many other things.