Curse

Regina Buenaobra · Mar 05, 2010, 02:11 AM // 02:11

Hey everyone,

There's a new phishing email going around which claims to offer you Guild Wars 2 beta access if you download an attached executable file.

NOTE: ALL OFFICIAL INFORMATION ABOUT THE GUILD WARS 2 BETA IS AVAILABLE ON THE WEBSITE. CURRENTLY, INFORMATION ABOUT THE BETA IS STILL "TBA".

Here is the text of the phishing email, so you know what to look for (I bolded and underlined areas for you to pay close attention to):

Quote:

SUBJECT: Guild Wars 2 beta Selection
FROM: community @aren.net <-- PLEASE NOTE THE SPELLING ERROR
BODY OF EMAIL:
Congratulations!
Because of your time and experience on Guild Wars, you are invited to participate in the Guild Wars 2 closed beta, starting on March 1, 2010. Please note that Arenanet will never ask for any personal information including game keys, email addresses and account passwords. Attached is an installer executable for the Guild Wars 2 beta client.
Here is a list of known issues with installation with the current beta build.
• Virus Scanners, adware/spyware detectors and software firewalls all will flag this program and prevent it from installing. Please disable any one of these on your computer before installing.
• Once installed, you may re-enable these programs, but you must create an exception for scanning the Guild Wars 2 installation folder to prevent the game from being deleted.
• If, during your first execution of the game, your computer prompts you to restart, please follow the instructions and do so.
For other issues, please consult the release notes in the installation folder when installed.
Thank you for your participation. Have fun defeating the dragons on the continent of Kryta!
Arenanet Customer relations
community @arena.net

Again, I want to stress that this email is a scam. It does not originate from ArenaNet or any ArenaNet staffer. Most likely, after you download the .exe file attached to that email, it will do nasty things to your computer.

Please spread the word. We don't want anyone compromised.

Thanks for your attention, all.

gone · Mar 05, 2010, 02:19 AM // 02:19

TY for the heads up.

ROFL @ A Keylogger/RAT/Backdoor/ With instructions...

Chocobo1 · Mar 05, 2010, 02:23 AM // 02:23

How did these people get our emails, I never ever used to get phishing emails, it only started late last year....

The-Bigz · Mar 05, 2010, 02:27 AM // 02:27

Quote:

Originally Posted by Chocobo1

How did these people get our emails, I never ever used to get phishing emails, it only started late last year....

Like around that time when everyone and everything got hacked and it turned into pure madness? Hint Hint.

On Topic: If someone is stupid enough/into Guild Wars enough to /disable all defenses and restart their computer for a game to be installed, they deserve the epic fail hack. Some people aren't that good with computers as well though, so I'm happy this was posted so fast.

JimmyNeutron · Mar 05, 2010, 02:42 AM // 02:42

Quote:

Originally Posted by Chocobo1

How did these people get our emails, I never ever used to get phishing emails, it only started late last year....

Browser's info...websites know what site you left, your IP address, your screen resolution, etc...all from the crap left behind by your browser and cookies.

Safest way to browse is through a sandbox like Sandboxie and using Private Browsing going through multiple proxy and don't tell the browser to remember who you are.

Ex. Guru...if Guru remembers you, all websites will remember you.

X Ghoul · Mar 05, 2010, 03:08 AM // 03:08

I read this and got excited "ALL OFFICIAL INFORMATION ABOUT THE GUILD WARS 2 BETA IS AVAILABLE ON THE WEBSITE." then I read this right after "CURRENTLY, INFORMATION ABOUT THE BETA IS STILL "TBA"." ......FML...

Heloniar · Mar 05, 2010, 03:10 AM // 03:10

wow, it's so blantant.. There's so many things wrong with this.

Chthon · Mar 05, 2010, 03:12 AM // 03:12

Quote:

Originally Posted by Chocobo1

How did these people get our emails, I never ever used to get phishing emails, it only started late last year....

I'm not sure if that's sarcasm or not.

Assuming it's not, the answer is the holes in the NCSoft site.

ac1inferno · Mar 05, 2010, 03:21 AM // 03:21

Quote:

Here is a list of known issues with installation with the current beta build.
• Virus Scanners, adware/spyware detectors and software firewalls all will flag this program and prevent it from installing. Please disable any one of these on your computer before installing.
• Once installed, you may re-enable these programs, but you must create an exception for scanning the Guild Wars 2 installation folder to prevent the game from being deleted.
• If, during your first execution of the game, your computer prompts you to restart, please follow the instructions and do so.

That made me laugh so hard.

Zodiac Meteor · Mar 05, 2010, 08:43 AM // 08:43

Quote:

Originally Posted by ac1inferno

That made me laugh so hard.

Seriously, how stupid do you have to be?

"You need to have your virus and spyware detector disabled."

"You can enable it after download."

"Just exempt Guild Wars 2."

It's like saying,

"You need to put your hands down for me to punch your face."

"You can put your hands up at all times though."

"Just not when I'm punching your face."

Fail scam is failure.

Stop The Storm · Mar 05, 2010, 01:13 PM // 13:13

yet i bet some people will have fallen for this, under 16 year olds jumping up and down screaming "guildwars 2 guildwars 2!!!!"

4thVariety · Mar 05, 2010, 01:45 PM // 13:45

tracing Aren.net is fun. The domain is registered by some shady MDNH, Inc. which works 44.000 domains from a suite in a Las Vegas Hotel.

Aren.net itself traces back to an address in Irvine CA (omgkotickconspiracybby)

Explains why this mail is at least in decent English.

Zahr Dalsk · Mar 05, 2010, 01:50 PM // 13:50

Guess this will catch a lot of 30-40 year olds, young teenagers, Mac users, Dell users, and basically idiots in general.

jazilla · Mar 05, 2010, 04:46 PM // 16:46

Quote:

Originally Posted by Zahr Dalsk

Guess this will catch a lot of 30-40 year olds, young teenagers, Mac users, Dell users, and basically idiots in general.

Most 30-40 year olds I know(including myself) are pretty savvy to the ways of the computerz. i do however appreciate your 20 year old generalizations about my age group though. GG to you Zahr.

shadowhand · Mar 05, 2010, 04:47 PM // 16:47

I'm slightly disappointed. I never get any of these phishing mails. All I get is offers for questionable medicine and uh, body alteration offers...

gone · Mar 05, 2010, 05:14 PM // 17:14

Quote:

Originally Posted by 4thVariety

tracing Aren.net is fun. The domain is registered by some shady MDNH, Inc. which works 44.000 domains from a suite in a Las Vegas Hotel.

Aren.net itself traces back to an address in Irvine CA (omgkotickconspiracybby)

Explains why this mail is at least in decent English.

You sir, win 1 free lego leggo my eggo waffle.

II Lucky Charm II · Mar 05, 2010, 05:52 PM // 17:52

All these things can be prevented if players reformat every 2 weeks and change their passwords every 1 day. A heads up is always fine, I suppose.

gone · Mar 05, 2010, 06:57 PM // 18:57

Quote:

Originally Posted by II Lucky Charm II

All these things can be prevented if players reformat every 2 weeks and change their passwords every 1 day. A heads up is always fine, I suppose.

If I were you i'd reformat every other day. Now That I know I have a 2 week window to crack your security and have 24 hours to log your keystrokes.

Arkantos · Mar 05, 2010, 08:12 PM // 20:12

Pretty sad that people need to be warned about obvious scams like this, but thanks for the heads up, Regina.

pinkeyflower · Mar 07, 2010, 11:11 AM // 11:11

Which people could just be patient and wait for news through official channels, but that's fighting with human nature. At least non-power users got a heads up so that's always good.