Staff account compromise. What's happened and an apology.

[ScrollTron1c]

Alright to be clear, this attack would only work if you downloaded an .exe file and executed it, right?

 

But for example when using a .dll file like SKSE plugins, Skyrim could not be used by that to manipulate your computer?

[Zam138]

THIS IS WHAT HAPPENED WITH THE f*#@ING TSA. What, Underwear Bomber? RAMP UP SECURITY.

Yes, I'm comparing it to Terrorism. Because that's what it IS. Making people feel discomfort and/or fear that their or their property's safety is in danger is what terrorism IS.

Seriously, you guys should call in a professional or something like that, or this will quickly get far out of hand.

[Faitreaf]

I just got a phising attempt(no harm done to my computer, it got detected)

it was "advertesing to dload the NMM so you may want to check that file aswell.

(if it has been reported before move along.)

[SirTopas]

Tip o' the hat to Staff. That's some mighty impressive response time. Thanks again for all your oft unappreciated efforts.

[Dark0ne]

In response to post #15470375.

We've had a few reports of this in the past hour or so. If you have the time please can you check out this thread and chime in on my last question?

[Korodic]

Handled like a pro, explained like a pro. All companies should follow your example! :)

[schlangster]

In response to post #15469870.

DLL files can be used to manipulate your computer, just like an executable.

[Higlac]

I've taken the initiative to boot up a virtual machine and check out the emailed file. Superantispyware and Avast are not flagging the downloaded file as a trojan. Malwarebytes, however does. Avast detects the file when you try to run it, but not when downloaded. So if you think you may have been hit with it, try malwarebytes first, then hit it with the rest of what you might want to run. PM me if you need/want links to good removal tools.

 

What I do to clean PCs:

 

1. Combofix

2. disable system restore

3. Malwarebytes

4. Superantispyware

5. Avast boot-time scan

6. Avast full-system scan

7. re-enable system restore

8. run CCleaner to hit the registry and temp files

9. monitor for suspicious activity

10. If suspicious activity continues/ stuff comes back

a. Run Malwarebytes Anti-Rootkit

b. Continue from step 1.

Edited June 9, 2014 by Higlac

[J0tar0Kjo]

I dloaded a lot of mods last hours as i came back to skyrim last saturday.

I read that the infected mods were .exe files, were they .exe or 7zipped/rarred .exe?

I hope i'm safe as my skyui and apacheiskyhair are .7z with no .exe inside them.

thank you.

[diyeath]

Hackers like this deserve a good ol' fashioned lynching. Clearly they understand there are no real world consequences for their real world actions. I sincerely hope whoever did it gets Oberyn'd.