Protecting against Neopets Cookie Grabber (CGer) Guide

Submitted by saudor on Sun, 17/05/2009 - 8:13am

Welcome to the in-depth guide to avoiding cookie grabbers. This page has been generated from background information of how it works, reverse engineering of various neo CGs and 1st hand research. (plus losing 800k + trades along the way, but hey, it's priceless!!)

[SHORT VERSION]

For the in-depth version, please see http://www.neopets.com/~punchback_bob
Remember that Internet Explorer is vulnerable to on-site cookie grabbers (on neopets)
Opera users should use the userjs file called BlockScript. It's sorta complicated but it's here

Get firefox here: http://www.mozilla.com/en-US/firefox/firefox.html?from=getfirefox

Recommended Firefox Add-ons
"NOSCRIPT" This helps block malicious scripts from running. 
Don't forget to whitelist neopets.com and any other sites that you trust (like hotmail.com) (see attachment)

FLASHBLOCK This allows you to selectively load adobe flash player objects. If you need flash to play games, simply click the arrow to enable that object. This is allowed since most browsers don't even come with flash. Do not whitelist neopets as one type of CG uses a redirection of http://images.neopets.com/flash_version_check_v1.swf? to steal cookies.

KEYSCRAMBLER ADD-ON. For protection against key loggers (programs that record everything you type) It's no use changing your password if every key you press is being sent to the "hacker"

ADBLOCK. It allows you to block ads... and other things (like CGs) See attachment for more info

REQUESTPOLICY. RequestPolicy is an extension that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit.

 

Think you got CG'd?

If you THINK you were CG'd, the first you should do is LOG OUT. Why? Because this invalidates the cookie that the "idiot" took. Try it yourself. Log into neo in another browser. You will see that you can browse neopets for a bit on both web browsers. Now click the log out button of one browser and see what happens. Contrary to popular belief, clearing cookies will do nothing for you. Just log out, get the keyscrambler add-on (if you can get it), and then log back in and THEN change your password

 

AttachmentSize
Image icon whitelist-neopets.gif74.73 KB
Image icon ablock-instructions.gif43.8 KB
Forums: 
Neopets Misc
  • 231079 reads

lastcountryangel unless everything was bought in multiples by one person or several users with oddly similar usernames, I would just write it off as a lucky day. :) Congrats.
gothsunprincess | Tue, 07/07/2009 - 7:26pm |

Thanks. everything was bought by different people and no names similar. Thanks alot gothprincess. I was starting to have a panic attack.
lastcountryangel | Tue, 07/07/2009 - 7:28pm |

Just thought of something else. Would browsing huts also be unsafe since it shows the shop codes :(:(
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Wed, 08/07/2009 - 7:56am |

[quote=_jaspeh_]Just thought of something else. Would browsing huts also be unsafe since it shows the shop codes :(:([/quote] I've wondered about that too but I figured it was safe since it only seems to use basic HTML and breaks CSS - but I really have no idea.
melaka | Wed, 08/07/2009 - 8:04am |

The exploit on neo uses CSS. CSS is disabled in huts
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Wed, 08/07/2009 - 8:06am |

[quote=Dmitri]http://www.neopets.com/neoboards/topic.phtml?topic=134431344 now this is interesting. *disables signatures too*[/quote] Ok so its gone.. fill me in on what I need to know this time. Please? This is just getting ridiculous. I really miss coming on and thinking about what I need to stock first.. not what I need to disable and block every damn day.
perpette | Wed, 08/07/2009 - 9:18am |

Apparently some CGers have found a way to post cgs on the boards. One user posted several boards on the BD chat with scammerish titles like SOS selling for 5m or something like that. When people went to post on the boards though the posts wouldn't go through. There were also a couple of other shady things about the boards. =/ Just be careful where you post.
gothsunprincess | Wed, 08/07/2009 - 9:27am |

ok.. Thanks, I can handle that. I havent been on the boards much in weeks. And the hole in CSS is this something else all together now too?
perpette | Wed, 08/07/2009 - 9:38am |

I believe the hole in css is the way that people are getting cgers onto the site aka the same problem as the cgers.
gothsunprincess | Wed, 08/07/2009 - 9:42am |

Ok thanks.. I just wasnt ready to process all of this mentally today *lol*
perpette | Wed, 08/07/2009 - 9:45am |

Pages