Forums

J-mod help!

Quick find code: 408-409-56-66124874

of 2
Tominater44
Jun Gold Premier Club Member 2006

Tominater44

Posts: 354Silver Posts by user Forum Profile RuneMetrics Profile
Hey all,

I happened to be a dummy and clicked on what appeared to be an official RS mobile add while scrolling on my phone. Granted I would love for my account items to be restored after losing ~1.5 bil, however I realize that jagex doesn't do this. This occurred despite having my bank pin, RS authenticator, and strong password. However, I have reported the ad for Jagex to investigate and reported within facebook as well.

It was random stuff that was taken, primarily high value items and cash. However they also took all my bonds along with breaking all my augmented stuff and even taking keepsaked items.

Somehow these hackers were able to do it through mobile while there despite my phone being iOs.

I've already changed my password and reset bank pin. I don't know what else to do.

12-Oct-2019 03:33:46

C0unterfeit
May Member 2019

C0unterfeit

Posts: 124Iron Posts by user Forum Profile RuneMetrics Profile
Hi there Tominater44,

You need to change your registered email address
ASAP
as if the hackers were able to bypass your Authenticator, then there is a chance that they disabled this through your registered email address.

I am uncertain if this is definite as the hack was done through the mobile phone rather than a computer (which would definitely mean that the hackers have access to your registered email), however as a precaution you should change this immediately.

As you have already said, unfortunately Jagex cannot help with your lost items. Please do be more careful in the future.

C
0
unterfeit
| RuneScape Support | Code of Conduct | Account Security |

12-Oct-2019 03:49:53 - Last edited on 12-Oct-2019 03:50:27 by C0unterfeit

Matmano9
Sep Member 2015

Matmano9

Posts: 6,721Rune Posts by user Forum Profile RuneMetrics Profile
When you logged in to this fake site did it request the password, then the bank pin and the authenticator also?

Chances are it did. As soon as the data is sent a bot auto resets your password to force you to log off then logs in. They do this within a few seconds whilst the authenticator token is still valid.

This was likely done on a PC. Rs mobile for rs3 is not on IOS yet
I like to help people. Feel free to ask for advice/help. :-)

My clan - Astral Turtles 3 year Runefester
Need support? Account help
Discord -
Matmano9#0001

12-Oct-2019 10:24:46

Asahel Frost
Dec Member 2007

Asahel Frost

Posts: 14,136Opal Posts by user Forum Profile RuneMetrics Profile
Matmano9 said:
When you logged in to this fake site did it request the password, then the bank pin and the authenticator also?

Chances are it did. As soon as the data is sent a bot auto resets your password to force you to log off then logs in.
No!! To reset a Runescape account's password requires access to the registered email account.

However, the hijacker may force you offline by DDoSing your IP address as they will have that logged on their webserver, if you responded to the phishing link via your home broadband connection (e.g. you're at home with your phone using WiFi).

@Tominater44
They probably asked you for an Authenticator code when you 'logged in' to their fake website. They can use that code immediately to 'trust' their own PC. The Autenticator code is only used when logging in to the game, not when you log in to the website.

There's advice on securing your PC, email and Runescape accounts here:
Security
Keeping your email secure
Glad to be of service :) (Powered by GPP™ - Share and Enjoy!)
Official Community Helper (Info)
Twitter: @JagexHelpFrost
FC: SilverScaper

12-Oct-2019 13:06:35 - Last edited on 12-Oct-2019 13:11:58 by Asahel Frost

Hummer Twine
Oct Member 2018

Hummer Twine

Posts: 72Iron Posts by user Forum Profile RuneMetrics Profile
I created a thread just like this a little bit ago, mine was the exact same with a very secure account and they managed to bypass all precautions and remove all valuable items from my account, I never entered my bank pin into the phony site because I knew that Jagex would never ask for that outside of in-game use. This seams all too common. Total loss here 850m-1.1b. I know your pain.

13-Oct-2019 05:15:20

Hummer Twine
Oct Member 2018

Hummer Twine

Posts: 72Iron Posts by user Forum Profile RuneMetrics Profile
Do Note this is important, my bank pin seams to be glitched/broken now. I do not have a bank pin and I had one previous to this event, I never gave it to them. When logging into rs it says that I HAVE a bank pin but I do not need to enter one now!!!!!!

13-Oct-2019 05:18:30

Samora Kiba
Jan Member 2008

Samora Kiba

Posts: 8,243Rune Posts by user Forum Profile RuneMetrics Profile
Hummer Twine,

Removing the bank pin requires someone to either know the current bank pin, or wait the required period (3-7). Based on your previous thread, I'd say they either had the bank pin, or gained access to a current session through a RAT.

Try press escape -> settings -> Gameplay -> general -> Bank and Shops -> ensure 'Require PIN every login' is toggled on.
~Samo

Community Helper

Member of the godless. It's not that I don't want to devote my soul to an RS god, the problem is that I can't find it.

14-Oct-2019 03:29:51

Hummer Twine
Oct Member 2018

Hummer Twine

Posts: 72Iron Posts by user Forum Profile RuneMetrics Profile
Samora Kiba said:
Hummer Twine,

Removing the bank pin requires someone to either know the current bank pin, or wait the required period (3-7). Based on your previous thread, I'd say they either had the bank pin, or gained access to a current session through a RAT.

Try press escape -> settings -> Gameplay -> general -> Bank and Shops -> ensure 'Require PIN every login' is toggled on.


@Tominater44

I was able to have my bank pin come back working after a full day, My pin as NEVER been used outside of RS nor has it been and issue before, my bank pin has always been set to required on login (this included going to lobby after idling too long), I was not logged into rs while the hijack occurred. Over the course of the day I was able to figure some of it out I believe.

Do note I did attempt to re-launch the browser, set a new bank pin, remove existing pin and change any settings revolving around my bank pin with no prevail.

**Note I probably shouldn't discuss this here but with a jmod if one was able to be contacted but this is the best place I can find to do that**

My account when logged back into originally was loaded in at clan wars outside of the red portal. My account was also manually placed into legacy interface mode and not legacy combat mode as to this I know that a Legacy only world was not used. I haven't been able to test my theory yet but it revolves around the bank update and being able to bypass the pin system using the death interface and money pouch.

14-Oct-2019 04:19:14

Quick find code: 408-409-56-66124874Back to Top