Store Page
Infestation: The New Beginning
All Discussions Screenshots Artwork Broadcasts Videos News Guides Reviews

Infestation: The New Beginning

Store Page
View Stats:
Global Achievements
Kai0was Apr 3, 2013 @ 5:27pm
How The War Z got hacked
http://forums.playwarz.com/

quote from Hammerpoints official statement : "Our research shows that many users are not using strong passwords."

Pretty hilarious that they're blaming the customers for not having strong passwords. Especially since their own weak passwords, is what got them hacked in the first place. As you can read below.

I'm not going to link directly so here's a copy/paste



War Z Server Files & Source Code Discussion
The Aftermath of "The War Z Server files" thread

• What happened to War Z?
The War Z servers and forums (including their databases) were compromised by multiple people it seems.
They used a forum exploit from their old game website: http://www.thewarinc.com which was fixed in the new War Z forum, however administrator passwords, emails, and more remained the same and they were able to log into the War Z forum using those same passwords and access the administrator panel.
From there they uploaded scripts to execute basic commands, and log all vbulletin log-ins (to get around the MD5). They hid some backdoors on the server.
More information on that here: http://forums.playwarz.com/
There was a post with even more information, but Domo had edited it out.

• So wait, what is the "War Z Server files" thread?
Originally, a fake drama-causing user named "Sirgay" created this thread: http://forum.ragezone.com/f111/warz-...2013-a-920346/ to most likely just cause drama and infect people. He claimed infecting the War Z servers, as well as having up-to-date server files (but no sourcecode). He could barely speak english fluently, and in the end the files were completely fake (and had viruses)

• What was really in Sirgay's files?
Upon release of the so-called "files" he had, there was 3 seperate .rars to download as well as a database file. The final rar was called "WarZMarch30.rar" and here is a picture of the contents:

This looks to me like the data extracted from War Z with other random crap included.
There was a bunch of files with "Super Mario Bros" as the title and a "Studio.exe" virus which copied a java.exe to your localdata and apparently disabled your task manager.
The database he uploaded was a "Kal Online" database which had nothing to do with War Z and was from 2008.

• What's Happening Now?
The public is left a bit confused. Everyone knows and has seen pictures and a lot of proof of the War Z server files and/or source code, but it has not been publicly leaked yet.
War Z's forums remain down.

The first to release the files here on RageZone apparently get a free subscription for this website and you will be glorified by us all. Hopefully we can improve this game ourselves, since the Developers won't.
< >
Showing 1-11 of 11 comments
ChiGoku Apr 3, 2013 @ 6:15pm 
bump so ppl can know
#1
James Apr 3, 2013 @ 6:18pm 
Originally posted by Kai0was:
quote from Hammerpoints official statement : "Our research shows that many users are not using strong passwords."

Pretty hilarious that they're blaming the customers for not having strong passwords.

Out of context quoting to the extreeeeeeeme!
Last edited by James; Apr 3, 2013 @ 6:19pm
#2
Crix Apr 3, 2013 @ 6:28pm 
not defending HP here but they're not blaming the customers for anything. They simply imply that they're made aware from what they have discovered since this fiasco that many of the WarZ users have weak passwords and so they are informing you on how to implement a stronger password.

Yes I agree you took that way out of context. Op
Last edited by Crix; Apr 3, 2013 @ 6:29pm
#3
James Apr 3, 2013 @ 6:35pm 
Also... was the title of this thread MEANT to make me think of this book from my childhood?

http://www.amazon.com/The-Was-Zapped-Play-Twenty-Six/dp/0395446120/ref=sr_1_1?ie=UTF8&qid=1365039285&sr=8-1&keywords=how+the+z+was+zapped
#4
datBlackBeardxX Apr 3, 2013 @ 9:39pm 
Well it is nice to hear something considering HP and OP Productions have remained mostly silent. I hope they get their heads out of their asses. I really liked this game. But have uninstalled it until they get this crap sorted out.
#5
Kai0was Apr 4, 2013 @ 2:46am 
Originally posted by i80-TR32_3432o000:
not defending HP here but they're not blaming the customers for anything. They simply imply that they're made aware from what they have discovered since this fiasco that many of the WarZ users have weak passwords and so they are informing you on how to implement a stronger password.

Yes I agree you took that way out of context. Op

Like the time they implied people misread the store description? :)
They'd better informed themselves on how to implement stronger passwords.
#6
Kai0was Apr 4, 2013 @ 2:50am 
Originally posted by James:
Also... was the title of this thread MEANT to make me think of this book from my childhood?

http://www.amazon.com/The-Was-Zapped-Play-Twenty-Six/dp/0395446120/ref=sr_1_1?ie=UTF8&qid=1365039285&sr=8-1&keywords=how+the+z+was+zapped

What? No what are you talking about? I've been thinking about this thread title 2 years before the guy even wrote that book. ;)
#7
BSNB Apr 4, 2013 @ 5:02am 
Ragezone wasn't the first place it was leaked... Try googling warz hacked in Russian
#8
Kai0was Apr 4, 2013 @ 5:06am 
Originally posted by sal.stephen2:
Ragezone wasn't the first place it was leaked... Try googling warz hacked in Russian

So some Russians released the server files? Or they simply claimed credit for the hack?
#9
BSNB Apr 4, 2013 @ 5:08am 
Originally posted by Kai0was:
Originally posted by sal.stephen2:
Ragezone wasn't the first place it was leaked... Try googling warz hacked in Russian

So some Russians released the server files? Or they simply claimed credit for the hack?

I assume they claimed credit as they released data files first along with the same screen shots seen on ragezone. The stuff on ragezone came after the stuff was posted on russian site.
#10
Kai0was Apr 4, 2013 @ 5:19am 
Originally posted by sal.stephen2:
I assume they claimed credit as they released data files first along with the same screen shots seen on ragezone. The stuff on ragezone came after the stuff was posted on russian site.

Could be legit then. But the only way too prove they actually did it, is by releasing the server files. Or by showing proof of a running server.
#11
< >
Showing 1-11 of 11 comments
Per page: 1530 50

Infestation: The New Beginning > General Discussions > Topic Details
Date Posted: Apr 3, 2013 @ 5:27pm
Posts: 11

Discussions Rules and Guidelines