Neopets Security Issues on the News!

Submitted by Pip on Wed, 08/07/2009 - 9:55am
http://www.foxnews.com/story/0,2933,530684,00.html Article about security risks of neopets. I'm unsure if this is about the CGers or something different, because I thought Cgers could only affect onsite stuff. However about a month back I had almost every symptom they mention like sending out spam and malware which I blamed on foreign sites I was using for an online AP language course, however now I'm thinking it could have been neo. All very scary indeed, losing a neopets account is one thing, but getting your identity stolen is another.
Forums: 
Neopets Misc
  • 11905 reads

yea, i was just reading that. It seems to be focusing on social engineering scams more (when you actually give someone your word, like through a neomail, or by a fake login page, etc). It doesnt seem to talk at all about the fact that neo's security is garbage and that this info is being taken away from while, all while staying ONSITE :(
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Wed, 08/07/2009 - 9:57am |

Ooh front page of the website. TNT is going to *dung* themselves. From what I've seen the past couple of months I wouldn't be too surprised if a lot of the virus/spam is leaking through neopet's "security". =/
gothsunprincess | Wed, 08/07/2009 - 9:58am |

At least maybe this will force them to address the issue, if not with actions at least with words
Spare a CC vote please? :* http://www.neopets.com/games/caption_browse.phtml
Pip | Wed, 08/07/2009 - 10:01am |

True. I wonder how many accounts they will lose from this though thanks to panicked parents back lash.
gothsunprincess | Wed, 08/07/2009 - 10:03am |

CGs can affect anything. They're just currently targeting neopets cookies. But imagine if they started targetting bank of america cookies, CIBC, etc Good thing I dont bank with "popular" companies.
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Wed, 08/07/2009 - 10:12am |

Im pretty sure that the banking websites have way better security that they wouldnt let this sort of thing happen *lol*
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Wed, 08/07/2009 - 10:14am |

[quote=_jaspeh_]Im pretty sure that the banking websites have way better security that they wouldnt let this sort of thing happen *lol*[/quote] It wouldnt come from the bank website.. it would be elsewhere. And they could choose to target neo. If they get your info off of your computer, there is no security to protect you at all. They log into your bank the same way they log into neo and drain your account. Heaven forbid the get your ss# from something.
perpette | Wed, 08/07/2009 - 10:21am |

Do banking sites really use cookies to store your info tho?? I thought theres no way they'd do that. Anyways, most banking sites have inactive timeouts, which would make the cookie useless, if they actually use cookies
[hr][size=11]Training, Luck & Medicine! ^_^ www.neopets.com/browseshop.phtml?owner=_jaspeh_&misc#c [/size]
_jaspeh_ | Wed, 08/07/2009 - 10:24am |

Yea they use cookies but they definitely dont store your passwords UNENCRYPTED like neopets does *lol*
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Wed, 08/07/2009 - 10:26am |

Some parts of most banks use session cookies (the ones that time you out) others like bill pay might use a persistant cookie to remember who you are.. but like dmitri said I highly doubt it is unencrypted. The point was it is the internet and this stuff is out there.. you would not believe how many people have their identity stolen every day.
perpette | Wed, 08/07/2009 - 10:29am |

Pages