Warning , new phishing link being whispered to players - dont fall for it

**KageTokage** · 01-07-2022 12:42 PM

Originally Posted by Ashenf

I accidentally clicked it because I didn't know any better and noticed after but was able to change my password and everything very quick, I should be fine right?

It won't hurt you unless you actually enter your log-in info, which sends it to a bot that will immediately attempt to log into Mogstation using those credentials and change your password, which will also kick you out of the game if you're already logged in.

**Vanitas_Law** · 01-16-2022 12:47 AM

How do they get your information?

**Mikey_R** · 01-16-2022 12:50 AM

Originally Posted by Vanitas_Law

How do they get your information?

It takes you to a fake website that looks genuine, you then enter your details, including the one time password if you happen to have one setup. They then log the info and use it to log into your account and change the password, effectively locking you out.

**Quintessa** · 01-16-2022 04:05 AM

Consider the max trade amount is 1,000,000, that's another dead give away that it's a scam. Nobody is gonna sit for 300 trade transactions and I doubt they know about the allegan pieces.

Originally Posted by Ashenf

I accidentally clicked it because I didn't know any better and noticed after but was able to change my password and everything very quick, I should be fine right?

You're safe. Keep in mind actual players wont give away 300 million gil like that.

**Lunalepsy** · 01-16-2022 04:23 AM

Originally Posted by Vanitas_Law

How do they get your information?

Your web browser will protect you by not opening the website and redirecting you to the official website. Next time, make sure you are wide awake!

**Mangettsu** · 01-22-2022 12:59 AM

Just saw this scam this morning. Got sent the same link by two different characters. Hopefully security questions and 2FA are enough to save people from getting hacked. Already reported but idk how the GMs usually handle this type of thing. The fake forum link seems to have disabled the login and reply bars after a while so maybe they've gone to a different link and gave up on the one they sent me.

**Grancas** · 02-10-2022 02:25 PM

Sorry for bringing back a few weeks old thread, but I got the scam not that long ago. I realized it was fake too late and changed my password and added a software token. My login history says there was an attempt by an IP address I didn't recognize, but considering I was able to change my password (have done so three times now) and add the token means I've thwarted them, I think? Really worried now.

**Runaud** · 02-10-2022 02:30 PM

I saw this while looking for the forum. I just changed my password on mog station, which seems to have worked for the store as well, and logged out anyone logged in, so i should be fine, right?

**Iscah** · 02-10-2022 02:35 PM

Originally Posted by KageTokage

The problem is that the phishing links also ask for your OTP...and most people who are willing to follow them in the first place don't realize that the log-in on the official forums doesn't demand such.

Agreed – OTP setup will not protect you from the scam if they convince you to "log in" and hand them the password.

However, from the sound of things, having the OTP already assigned to your account will prevent the scammer from applying one and locking you out. So there's still some benefit, but it won't save you from the scam to begin with.

Originally Posted by Lunalepsy

Your web browser will protect you by not opening the website and redirecting you to the official website. Next time, make sure you are wide awake!

That is an unhelpful and reckless thing to say. Maybe particular software is smart enough to do this, but as a whole, people's browsers are clearly not redirecting them away from the scam site, or the scam would not happen.

In any case, if it even works that way, I would consider it irresponsible browser programming to "seamlessly" direct people away from a scam site to the one it is mimicking. They need it pointed out to them that the website is a scam.

If your post was meant to be a joke that you protect yourself by not following the link, it is poorly worded.

**Loonies** · 02-10-2022 05:49 PM

Originally Posted by Runaud

I saw this while looking for the forum. I just changed my password on mog station, which seems to have worked for the store as well, and logged out anyone logged in, so i should be fine, right?

If you play on pc you might have a key logger now, so it tracks and send all your passwords / new passwords on games, email and many other things.

Thread: Warning , new phishing link being whispered to players - dont fall for it

Thread Tools

Search Thread

Display

Idk

Thank

Tags for this Thread