Protecting against Neopets Cookie Grabber (CGer) Guide

Submitted by saudor on Sun, 17/05/2009 - 8:13am

Welcome to the in-depth guide to avoiding cookie grabbers. This page has been generated from background information of how it works, reverse engineering of various neo CGs and 1st hand research. (plus losing 800k + trades along the way, but hey, it's priceless!!)

[SHORT VERSION]

For the in-depth version, please see http://www.neopets.com/~punchback_bob
Remember that Internet Explorer is vulnerable to on-site cookie grabbers (on neopets)
Opera users should use the userjs file called BlockScript. It's sorta complicated but it's here

Get firefox here: http://www.mozilla.com/en-US/firefox/firefox.html?from=getfirefox

Recommended Firefox Add-ons
"NOSCRIPT" This helps block malicious scripts from running. 
Don't forget to whitelist neopets.com and any other sites that you trust (like hotmail.com) (see attachment)

FLASHBLOCK This allows you to selectively load adobe flash player objects. If you need flash to play games, simply click the arrow to enable that object. This is allowed since most browsers don't even come with flash. Do not whitelist neopets as one type of CG uses a redirection of http://images.neopets.com/flash_version_check_v1.swf? to steal cookies.

KEYSCRAMBLER ADD-ON. For protection against key loggers (programs that record everything you type) It's no use changing your password if every key you press is being sent to the "hacker"

ADBLOCK. It allows you to block ads... and other things (like CGs) See attachment for more info

REQUESTPOLICY. RequestPolicy is an extension that improves the privacy and security of your browsing by giving you control over when cross-site requests are allowed by webpages you visit.

 

Think you got CG'd?

If you THINK you were CG'd, the first you should do is LOG OUT. Why? Because this invalidates the cookie that the "idiot" took. Try it yourself. Log into neo in another browser. You will see that you can browse neopets for a bit on both web browsers. Now click the log out button of one browser and see what happens. Contrary to popular belief, clearing cookies will do nothing for you. Just log out, get the keyscrambler add-on (if you can get it), and then log back in and THEN change your password

 

AttachmentSize
Image icon whitelist-neopets.gif74.73 KB
Image icon ablock-instructions.gif43.8 KB
Forums: 
Neopets Misc
  • 230810 reads

what is CG?
irene_5 | Sat, 17/07/2010 - 4:48am |

[quote=irene_5]what is CG?[/quote] Well dearie, if you'll read you can see the title of the topic you are posting under is "Minimizing Neopets Cookie Grabbers (CGers)". And if you read the very first post, you'll get an idea of what they are ;) Now, this is not a topic for introducing yourself, I'd suggest you go here: http://www.neomallers.com/forum/14 And make yourself known correctly. Thank you and have a nice day *oui*
Artemis | Sun, 18/07/2010 - 6:41pm |

updated with more info ----------------------------- [color=purple]Contrary to popular belief, the Irish and I are not married[/color]
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Tue, 20/07/2010 - 4:40pm |

There is a user offering anything from his trades for your "kbc" Lots of people have been getting this, always for a kbc and the suspicion is the user look up has a CG. I haven't viewed it myself so cannot confirm.
Phuzzbomb | Tue, 27/07/2010 - 3:00am |

i always search up usernames im not familiar with from trading post. it never hurt to be too safe :p
tatsulot | Tue, 27/07/2010 - 3:58am |

[quote=Phuzzbomb]There is a user offering anything from his trades for your "kbc" Lots of people have been getting this, always for a kbc and the suspicion is the user look up has a CG. I haven't viewed it myself so cannot confirm.[/quote] I got that mail too and didn't dare check the lookup through curiosity either. ___________ Kirsty aka "the sensitive one" Silverdragon siggy stealer Tasty tent seller
___________ Kirsty aka "the sensitive one" Silverdragon siggy stealer Tasty tent seller
kirsty_to_stay | Tue, 27/07/2010 - 4:38am |

[quote=Phuzzbomb]There is a user offering anything from his trades for your "kbc" Lots of people have been getting this, always for a kbc and the suspicion is the user look up has a CG. I haven't viewed it myself so cannot confirm.[/quote] mail me the lookup? I'll check it myself in abit :P ----------------------------- [color=purple]Contrary to popular belief, the Irish and I are not married[/color]
----------------------------- [color=purple]Protect your account[/color] http://www.neopets.com/~punchback_bob CG information & more
saudor | Tue, 27/07/2010 - 5:23am |

I deleted the mail myself :P ___________ Kirsty aka "the sensitive one" Silverdragon siggy stealer Tasty tent seller
___________ Kirsty aka "the sensitive one" Silverdragon siggy stealer Tasty tent seller
kirsty_to_stay | Tue, 27/07/2010 - 6:02am |

Does anyone know if there has been someone CG'ed even with RequestPolicy installed?
faith_starr | Wed, 28/07/2010 - 11:52am |

[quote=faith_starr]Does anyone know if there has been someone CG'ed even with RequestPolicy installed?[/quote] From what I've seen, most people who've been CG'ed were using Internet Explorer. Based on the info from http://www.neopets.com/~punchback_bob, you should be safe even if you only enter the shop and don't buy anything. I have it installed myself and it's interesting to see what all it blocks.
Artemis | Wed, 28/07/2010 - 12:18pm |

Pages