scams
Latest
EVE Evolved: Five scams to avoid
Anyone who's familiar with EVE Online will have heard stories of the game's criminal underworld, from devastating corporate infiltration to the daily grafting of common con artists. Most players will never perpetrate a scam, but those who do are constantly coming up with new tricks to part you from your hard-earned ISK. For every genuine smooth-talking con-artist who comes up with new schemes and socially engineers his way to a fortune, you'll find dozens of copycats who flood popular chat channels with scams they've seen perpetrated in the past. On an average day, over 90% of the chat in Jita's local channel is people posting copycat scams, with legitimate offers completely drowned out. There may not even be anyone at the helm with these scams, as a script could easily paste the scam message every few minutes for an entire day. Not confined to Jita, these scams are often replicated across all of the game's main trade hubs and popular mission-running systems. Knowing how these scams work is the first step to protecting yourself from making an expensive and extremely embarrassing mistake. In this week's EVE Evolved, I explain the trick behind five of EVE's most common copycat scams and how to protect yourself from them.
Company turns to bribery for 5 star Amazon reviews
In a world where word of mouth and the judgment of the hive mind is worth more than any ad or the ruminations of many professional reviewers, companies will do just about anything to ensure a strong rating on outlets like Amazon. It's clear that dummy accounts simply aren't the way to go, but what about bribing your existing customers? Apparently VIP Deals thought that route was perfectly acceptable and offered rebates to people who rated their products on Amazon. Now, the offer letter (which you can see at the more coverage link) doesn't explicitly ask for a five star review, but it is strongly suggested that the company expects one in exchange for receiving the product for free -- in this case, a leather Kindle Fire case. VIP's reviews and its products have all since been booted from Amazon, but it certainly raises plenty of questions about the ease with which some companies are able to game the system and how a reputable outlet can protect its customers from ratings scams. Hit up the source for the full story.
The Queue: The one with goombas
Welcome back to The Queue, the daily Q&A column in which the WoW Insider team answers your questions about the World of Warcraft. Alex Ziebart will be your host today. Today is a very special treat. We have your standard-length Queue, plus I answer a very exciting bonus trivia question that has nothing at all to do with World of Warcraft! But you will love it, my gamer pals. You will. Camero asked: In the past week, I've recieved four emails from "Blizzard" all asking me to do something in order to get a Winged Guardian License. I just wanted to confirm that's not true.
Rogue modder rips off stingy consumer, puzzles repairmen... all with a USB thumb drive
Welcome to today's episode of "You Get What You Pay For," starring some poor sap in Russia who bought an external hard drive in China for a "very, very low price." It seemed like a bargain, until the schmo noticed that video files were picking up from the tail end, as if the preceding footage had vanished. When the folks at a local repair shop tore the disk apart they found a dinky 128MB thumb drive running in a loop, emptying itself when full only to start saving more data. Laugh all you want, but the repair guys (and us, frankly) are still scratching their heads as to how those scam artists pulled off this mod in the first place. [Thanks, David S.]
SWTOR beta scams abound
The community and testing teams at BioWare have been made aware of some beta testing scams related to Star Wars: The Old Republic. As Admiral Ackbar says, "It's a trap!" Earlier today, the community team issued a warning on the official forums and Community Coordinator David Bass sent out an email to the fansites and guilds explaining some of the issues that have arisen. Both announcements explained how to tell the difference between a legitimate invitation and a false one: "If you are invited to the real Game Testing Program, you will receive an e-mail with instructions from no-reply@bioware.swtor.com. Any other e-mail address claiming to offer an invitation is likely to be a scam. If you receive an e-mail and are in doubt or are concerned about its validity, please forward your concerns to bwacommunitysupport@bioware.com. If you do receive a genuine testing invitation from us, you will also be able to view the invitation and testing information at www.swtor.com/tester." BioWare assures us that severe action is being taking against the people who are attempting to sell accounts with access to testing servers. According to the statement, the team is quick to notice when an account changes hands. Be sure to visit the official site for more information.
Best Buy charges $30 for PS3 firmware update, laughs all the way to the bank
In case you hadn't noticed by now, Best Buy's Geek Squad isn't always the most scrupulous sort, but their latest attempt to upsell consumers is truly off the charts. We've confirmed for ourselves that the Staten Island, NY store is offering 120GB PS3 Slims for $329.98, explaining away the surcharge as their fee for a firmware upgrade. In case you've never booted up a PS3 yourself, let us explain the sheer ridiculousness at work here: a system update requires about three button presses, and some discs prompt you automatically. Hell, if you want to play online or access the PlayStation Store, you don't even have a choice -- ever since Other OS got Sony's goat, firmware updates have been mandatory across the board. Still, it's hard to say no when Best Buy employees are this polite -- when we explained to a rep that we already had a PS3, he graciously offered us an update anyhow... for just $29.98.
EVE Evolved: Heroes of EVE
In last week's EVE Evolved, I looked at a few of EVE Online's most famous outlaws. In the game's open-ended sandbox, players are free to turn to a life of crime. Around every corner, you'll find another thief making off with someone's loot, or a pirate waiting for an unsuspecting victim to pass by. Worse still are the many scam artists and market manipulators you'll find in trade hubs like Jita, making a dishonest living at the expense of other players. But it's not all doom and gloom, and not all players are the dark, nefarious types EVE is famous for. For every low-life scammer trying to steal your hard-earned ISK, there are helpful individuals working to counteract scamming. For every war-mongering pirate preying on new players, there are hundreds of people willing to teach new players to defend themselves and stay safe. Despite all the talk of EVE's anti-social element, you'll also find a rich and diverse community, built around forums, chat channels and dozens of blogs. Programmers even spend their free time to provide the community with free tools to aid play. These are all people I would call heroes of EVE, either because they work to prevent the wrong-doings of outlaws, or because they selflessly enrich the EVE community. In this opinion piece, I look at a few of the people and groups I consider to be true heroes of EVE. Who are your heroes?
Dear Friend: 92 percent of all email is spam, says Symantec
This statistic may or may not come as a surprise, depending on how closely you monitor your email inbox. Symantec has released an estimate that 92 percent of all email is spam, up from 89 percent last year. The good news? Phishing attacks declined 5 percent this year, and if we had to make a guess, we'd say attacks of listening to Phish are on an upswing. Check out another one of our favorite example spams below.
Email confirmation added to authenticator setup to foil hackers
For a while now, account thieves have been putting authenticators on their stolen accounts to buy more time for their scumbaggery. Blizzard has recently made that more difficult by requiring email confirmation when an authenticator is added to a Battle.net account. Rather than just logging in and putting in the appropriate information, you now have to follow the steps in a confirmation email sent to the address registered in your Battle.net account. Note: Changing the email address on the account requires not only your password (which the account thieves already have at this point) but also the answer to your security question. So make sure the answer to your security question is not guessable or obtainable by any phishing information. As I have suggested before, if you use a password for your security answer rather than an actual answer, you are adding a very thick level of security. Make it a separate password you use just for security questions, like p45sw0rd (don't use that one). We don't know how long ago Blizzard added email confirmation The email confirmation has been active since July 27 and we believe it will reduce the workload of Blizzard's customer service. More importantly, this will make getting your account back less painful. Of course, the best way to prevent someone from stealing your account and then adding an authenticator to it is to put an authenticator on it yourself. There are keyfob and mobile versions available. [Thanks for the tip, Joel!]
App Store filling up with spammers and clones of popular apps
Marco Arment has noticed a growing problem on the App Store; as hits emerge from among the free and paid apps, some companies are doing a little search scamming. They're ripping off the names, styles, and sometimes even the art of popular iPhone apps. He went to get the popular Angry Birds game and found that there are companies actually selling apps with "Cheats" and "Trivia" added on to the titles, often reusing the artwork from the original game. Certainly, some of these fall into a legal gray area (Angry Bird is technically another game, even though it's obviously hopping on the back of the more popular title), but some of them are straight up scams, and the angry reviews and terrible ratings prove that's the case. Arment calls out a few companies (whose titles are still on the App Store, as of this writing). He says that developers who feel an app is infringing on their trademarks can send a message to appstorenotices@apple.com to let Apple know about the problem. We'd love to see Apple clean house on these, but of course, we're not yet sure of their position. They may have some guidelines that define how close an app can get before it's actually infringing, but some of these are clearly over the line. We'll have to wait and see what actions Apple decides to take.
Security Warning: Phishing emails on the rise
Recently, Polar over at Securing WoW wrote about the latest phishing email being sent out by scammers. Account thieves are using the 2010 Arena Tournament as a way to lure you to their site to steal your login info. (Registration for the tournament ended on the 27th continues until June 7.) This is typical behavior by these crooks. Every time a Blizzard event is announced or even rumored, from the Cataclysm alpha to the StarCraft II beta, scammers take advantage it with legitimate looking emails. With the Cataclysm beta almost upon us, the expansion related phishing is going to get even worse. But there are also the tried and true emails that are being sent out daily, regardless of upcoming events. They spoof their email so that it looks like it is coming from Blizzard and fill the email with legitimate links, making their info-stealing site link look real. Also, the links have misspellings which are hard to catch at a quick glance, (like "starcratf2" or "worldotwarcraft") and lead to sites that look very much like the official ones. Blizzard has an excellent resource for protecting yourself from phishing attacks. In general, if you get an email that looks legitimate, type battle.net in your browser's address bar (spell it correctly). This will take you to the correct site for your region and there you can see the status of your account yourself. Some examples of phishing emails are after the break.
Enso's zenPad is vaporware, get refunds while they last (update)
Did you order a Enso zenPad? If so, you'll be happy to hear that the company has decided on a concrete release date; its website is now ticking down the days, hours, minutes and seconds until May 8th, when Enso claims they'll finally ship the rebranded Smit MID. Problem is, if you ordered your zenPad on March 22nd -- the day we wrote about it -- you will have waited 47 days by the time the device ships, exactly two days too many to get a PayPal refund. But more importantly, manufacturer Smit has now disavowed any knowledge of a deal, and Enso itself has admitted that the zenPad as such does not currently exist. We've done quite a bit of digging and even spoke with an Enso founder to get the whole story. Enough promises have now been broken and lies told that if we were you, we'd request refunds ASAP, but if you still want to hang on for a chance at a $155 Android tablet, you can hear the whole tale right after the break. Update: We just spoke to Enso CEO Alberto Armandi, who says that the company has now secured the necessary funding to make good on orders, and promises that he will ship us a zenPad for review within two weeks. We'll revisit this story then. Meanwhile, read how we got to this juncture after the break.
Debunking another hacked authenticator story
One of our readers, Bill, sent us a tip about a WoW account issue on The Consumerist. It seems that the ownership of Anonymous's friend's account is under dispute and Blizzard won't let him use it in the meantime. The ownership became disputed after the account was allegedly hacked, even though there was allegedly a mobile authenticator on the account. His friend has given up on the account, complete with Val'anyr, and has created a new one. We can't confirm any of the facts in this case. I am willing to believe that Anonymous is truly upset and believes the story he tells to be true, even though he is posting anonymously. There are some serious red flags, however, that seem to point to Anonymous not having all of the facts:
How to tell if a GM is whispering you
A guildie got the above whisper Tuesday night. (I have blocked out the website so as not to promote this phishing attempt.) We have reports of this happening to a lot of people in-game right now as yet another attempt to get you to go to a site, so they can steal your login info and defile your characters. Let's dissect the above whisper: It's one whisper made to look like two. This will work if your chat settings match the scammer's chat settings, but if you've fiddled with your font or chat window, then the formatting will be off and the scam will be more obvious. The whisper is from a garbage name. All "players" I've seen with random characters have been scammers or gold selling barkers. So anything after such a name should be considered highly suspect. It says [Game Master]GM. The scammers aren't even trying here. Blizzard GMs have names and have <GM> before their names. It sends you to a non-Blizzard site. Don't go to any website you get in tells or in-game mail as a general rule. If you have received a ban of any kind, you will receive an email to the account you have on file with your subscription info.
Help! My account has been hacked!
There are so many scams going around like the Catclysm Alpha invite and the WoW Armory phishing site, that people's accounts are getting stolen more than ever. With all of the work that Blizzard has to do to keep up with the problem, it's no wonder they are offering the fast solution of care packages. We've talked about how to avoid scams as well as how to protect yourself. Here is a guide as to what to do if your account gets stolen. Important note: The following guide assumes that you have not put an Authenticator on your account. There are no confirmed cases of accounts being stolen if they are protected by an Authenticator.
Confessions of a gold scammer and identity thief
digg_url = 'http://massively.joystiq.com/2010/01/19/confessions-of-a-gold-scammer-and-identity-thief/'; "We have met the enemy and he is us." The player identified as "Patrick" is not the malevolent monstrosity we'd like to see. Nor is he a victim of circumstance, at that. He acts for all the world like a perfectly normal gamer, and if you didn't know he'd scammed between $10,000 and $20,000 in a year of reprehensible behavior, you certainly wouldn't be able to guess. That's what makes a video interview with him, mirrored and annotated at PlayNoEvil and originally recorded by Marcus Eikenberry, so odd on many levels. The full interview lasts thiry-eight minutes, which makes it a bit long for casual viewing. The article which mirrors the video notes some of the highlights, including when he almost breathlessly exhorts the moment he realized that there was nothing in PayPal's EULA that prevented him from not transferring his EVE Online account to a purchaser on Craigslist. His rationalizing of the actions include the loss of his job and financial instability, even as he begins the interview explaining how he would scam players in both EVE Online and World of Warcraft for fun. His words are unsettling, but what makes them all the more eerie is the fact that without the foreknowledge... there's no way to tell his voice from any of ours. When you have the time, the whole interview is well worth looking at if you're at all interested in account security and the culture of scammers.
Beware of WoW Armory phishing scams [Updated]
First things first: the correct address for the WoW Armory is wowarmory.com. Bookmark it. Memorize it. But don't ever, ever search for it again. We've talked before about how misspelling searches can get you into trouble. But even if you spell WoW Armory correctly when Googling, the first sponsored site that shows up is a phishing site -- and it's a really good one. Update 1:10pm: Google seems to have removed the site from their sponsored listing in the short time since I wrote this post. Kudos! Nonetheless, there are and will be more sites using the same technique, so the warning remains valid. Do not go to the following site: armory-worldofwarcnaft.com/wowarmory/, it is evil. Notice the n in warcnaft? You may not when you are clicking on it in your search page or when it shows up in your address bar. And that's what they are counting on. Because the rest of the site looks authentic. When you type in what you want to search for, you get asked for your Battle.net info. Then, no matter what you type in, it gives you a password error. (I typed in profanity. It was fun.) They have stolen all of the elements of the actual Blizzard pages, so that if you want your login page in other languages, just a click of the button will get you there. But don't. It's evil.
Phishing schemes targeting MobileMe users again
Be very careful if you get an email from Apple telling you they need to re-check your credit card information. One of our readers got just such an email, and he didn't fall for it. This particular rip-off comes from an 'Apple-bills.com' domain, which has nothing to do with Apple. They'll be glad to take your credit card info, and give you a big surprise when you get your next billing statement. An Apple representative confirmed that the email is not from Apple. They also suggest you send copies of the email and relevant details to spam@me.com if you get one. This isn't the first time this scam has gone after MobileMe users. We reported on some MobileMe scams in May. In February another scam site was telling people their MobileMe renewal was not received and to do it again. Back in 2008, ComputerWorld reported on another phony scheme that fleeced about 200 MobileMe customers in a single day. It's probably a good idea to not click on links in emails that ask for financial or credit card information, and it is easy to check with any vendor to see if the request is legitimate. If you ever have questions about a MobileMe renewal, you can go to: www.apple.com/support/mobileme/ and do a live chat with an Apple support agent. Also, don't update from an email. Log into your account and update there. Just before posting this I tried the link our reader sent. The first time I clicked I saw the fake Apple page. Now there is an error page there instead. Thanks to Asif for the tip.
You are not invited to the Cataclysm alpha
In the wake of yesterday's rumor that the Cataclysm Friends and Family alpha will be starting this Tuesday, January 12, we should expect an increase in scammers trying to get your account details by offering phony alpha invites. We saw a lot of these for both Burning Crusade and Wrath of the Lich King as well, and some of them were very well crafted. At this phase of Cataclysm's development, though, it will be comparatively easy to keep yourself safe. Since this is a friends and family alpha, if you don't have friends or family that work at Blizzard, you will not get an invite. Therefore, anyone offering you one is trying to pull a scam. Basically, everyone who's going to be getting legitimate access to the alpha should know who they are already. Everyone else, sit tight and stay tuned to WoW.com for the latest on WoW's next chapter. World of Warcraft: Cataclysm will destroy Azeroth as we know it. Nothing will be the same. In WoW.com's Guide to Cataclysm you can find out everything you need to know about WoW's third expansion. From Goblins and Worgens to Mastery and Guild changes, it's all there for your cataclysmic enjoyment.
How the Grinch Stole Christmas EVE
"Curzon Dax stole Christmas." Words I never thought I'd be writing here, but there it is. EVE Online player and forum personality "Curzon Dax" -- perhaps best known for his many song parodies of the game and its players -- has unveiled his in-game IPO for what it really was: a multi-billion ISK confidence scam. Curzon made the announcement on Christmas, no less, and placed the scam at 374.4 billion ISK raised. While the players who were taken for those billions will certainly be less excited by this news, Curzon accomplished something that's becoming less and less common in the game. For every player that uses cunning to profit in New Eden, there is a horde of player alts who resort to copy-paste scams in local chat at most any mission and trade hub in EVE. As these players simply try to profit from mislabeling items in contracts or spam local chat with the ubiquitous "I'm quitting EVE. Send me ISK and I'll send you 10x back!" garbage, Curzon aimed much higher and cultivated an image which he used to draw his marks in.
