Mod Page Permissions Update

[Pickysaurus]

24 minutes ago, cyan49 said:

That's good, but the problem is that the hacked account is often already a verified mod author, so they will probably first delete all their uploaded mods and post a fake one.

What are you basing this on? While there have been one or two mod author accounts affected (can't remember if they were verified or not), the vast majority of accounts we've had to ban for this have been users with no previous uploads. 

It makes some sense that casual users fall for these things more often than authors. 

As I mentioned in the OP, we've been analysing the patterns of activity and feel this is a good way to make continuing to share this malware much harder for them. 

[showler]

Y'know, this was information for how it affects real users.  It wasn't really a request for suggestions on how they should do their job.  This is just the part of the protections that's visible to and could affect some mod authors not all of it.

[cyan49]

26 minutes ago, Pickysaurus said:

What are you basing this on? While there have been one or two mod author accounts affected (can't remember if they were verified or not), the vast majority of accounts we've had to ban for this have been users with no previous uploads. 

It makes some sense that casual users fall for these things more often than authors. 

As I mentioned in the OP, we've been analysing the patterns of activity and feel this is a good way to make continuing to share this malware much harder for them. 

I didn't expect this so I don't have any screenshots. Thanks to the quick response by Nexus, they won't stay there for long, but it's true that 1,000 UDLs is a low threshold.

[Dark0ne]

1 hour ago, soupdragon1234 said:

From what I've heard many of these things come from hijacked accounts its one way scammers get around similar restrictions on eBay for example, maybe some additional checks if the account hasn't been active for a number of months/years and suddenly out of the blue they're uploading mods, would be flagged as suspicious something like that.

If you login to an inactive account that hasn't used the site in 6 months or more you are required to verify your identity via a link in an email, so we already have this.

[Irvtheperv1983]

My XDI for Fallout4 still not working

[soupdragon1234]

11 hours ago, showler said:

Y'know, this was information for how it affects real users.  It wasn't really a request for suggestions on how they should do their job.  This is just the part of the protections that's visible to and could affect some mod authors not all of it.

Then don't leave the thread open if you aren't looking for any feedback?

[Pickysaurus]

The thread is open if you have any questions. Of course, you are welcome to share your opinion, but we're not looking for feedback on the implementation as such. We're monitoring the changes to see if they cause problems or fail to have the desired effect.

[AlienSlof]

I'm happy to see this; there has been a spate of these uploads of malicious files lately, and I'm pleased to see something being put in place to protect Nexus users. I'm not sure just what these people get out of doing this - does it generate money somewhere for them, or are they just disaffected and mean-spirited people just looking to destroy without a care?

I welcome this.

[Pickysaurus]

3 hours ago, AlienSlof said:

I'm happy to see this; there has been a spate of these uploads of malicious files lately, and I'm pleased to see something being put in place to protect Nexus users. I'm not sure just what these people get out of doing this - does it generate money somewhere for them, or are they just disaffected and mean-spirited people just looking to destroy without a care?

I welcome this.

From what we've heard, it doesn't just steal their Nexus Mods account. It compromises their social media, crypto wallets, and other accounts too. Depending on how exactly they're stealing this data there may not be much an affected user can do other than change all their passwords and turn on 2FA where available. 

[AlienSlof]

I change my passwords every so often to avoid this kind of thing. I don't use social media, so at least I'm safe there!

I'm assuming they then hold this data hostage to get money out of the account owner - has to be money involved somewhere, or they'd get a proper job. I doubt they'd do it just for the hell of it. Has to be money involved.