Back to Epicmafia

List of compromised accounts

deletedalmost 10 years

Currently, a bunch of accounts are compromised due to hidden linking. I'm making this topic to make a reference on who all got compromised. If you're viewing this topic and your account was compromised, then the best thing I'd recommend is to just make a new account for now.

  • absinok
  • ashlayymarie134
  • Aurous
  • BarryAllen??
  • BobbySmith
  • boxingneedles
  • Cesia
  • Cital
  • Dreamquakes
  • Erines
  • faintoldrhyme (account deleted entirely)
  • GeoLuka
  • GovaKomijori
  • Idevs
  • joacobracci
  • KillFr3nzy
  • Lisheon (account deleted entirely)
  • littlemonkeysz
  • Lukageo
  • nizde (account deleted entirely)
  • Pinacolada
  • pingu
  • playhard
  • qeSuited
  • QtieBear
  • rozureido
  • rycerub
  • Rytis
  • sahil267
  • saikaq
  • SammiJenk
  • Snapchat
  • vilden
  • Volley (account deleted entirely)
  • WalkingMeme
  • wanlr
  • Yona
deletedalmost 10 years

Satan says

thed is a huge nerd hahahaha


Says the marine biology major.
deletedalmost 10 years
Why lol?
Satan
almost 10 years
thed is a huge nerd hahahaha
deletedalmost 10 years

thed says


Harunan says

well if ur so smart then u fix it mr thed


I'd be happy to if an admin wants to contact me.


lol
deletedalmost 10 years
I feel like you actually do, though. That puzzles me..
vilden
almost 10 years
i don't care that you are a bigger nerd than i am
deletedalmost 10 years

vilden says

well in the words of pranay you are just a noob


Okay keep thinking that while babbling about post requests.
vilden
almost 10 years
well in the words of pranay you are just a noob
deletedalmost 10 years

Harunan says

well if ur so smart then u fix it mr thed


I'd be happy to if an admin wants to contact me.
deletedalmost 10 years

vilden says

when you say "these people" you don't even know who you are talking about. i know exactly who they are, what they know and where they got their information


I think you know a lot less than you think you know by your original comment about "post" requests. Probably someone's been feeding you misinformation.
deletedalmost 10 years
well if ur so smart then u fix it mr thed
vilden
almost 10 years
when you say "these people" you don't even know who you are talking about. i know exactly who they are, what they know and where they got their information
deletedalmost 10 years

vilden says

ok i get you are like infinitely superior when it comes to scripting language but you clearly don't know what people are (were) capable of doing on this website just by loading a page


I mean it's pretty obvious that these people don't have any knowledge about that or they wouldn't be resorting to phishing tactics, which, by the way, could easily be countered.
vilden
almost 10 years
ok i get you are like infinitely superior when it comes to scripting language but you clearly don't know what people are (were) capable of doing on this website just by loading a page
deletedalmost 10 years

vilden says

i mean just imagine me falling for that pm


Well with that comment you made earlier it wouldn't surprise me at all.
vilden
almost 10 years
i mean just imagine me falling for that pm
deletedalmost 10 years
Even some sites far more popular than epicmafia.
deletedalmost 10 years
There are loads of sites out there with poor security. Epicmafia isn't special in that regard.
cub
almost 10 years

thed says


vildenlol says

it's actually a combination. the site uses "post" meaning you can use the java console to do all sorts of crap

it's how prevail fkd with my account I think


I mean, the entire internet pretty much runs on javascript, which would be why you can use the developer console to do "all sorts of crap" but that's all client side and has nothing to do with your account being compromised. And the site having users send requests with the "post" header has absolutely nothing to do with anything. You probably just fell for one of these dumbo pm tricks.


mostly right, except em is probably the only site where you can inject javascript just about anywhere and lucid lets you link accounts without any real security (like entering the current user's password or making sure the request referrer is /user/alternates)

i know of like 3 ways you can still run js unfiltered for all users who load the lobby page although i didnt find them myself
deletedalmost 10 years
deletedalmost 10 years
Same, fam.
deletedalmost 10 years
i forgot to neg my post first
Satan
almost 10 years
vilden is a dude, since vilden is abc
deletedalmost 10 years
I thought vilden was a dude.

Not that it matters.
deletedalmost 10 years

thed says


vildenlol says

it's actually a combination. the site uses "post" meaning you can use the java console to do all sorts of crap

it's how prevail fkd with my account I think


I mean, the entire internet pretty much runs on javascript, which would be why you can use the developer console to do "all sorts of crap" but that's all client side and has nothing to do with your account being compromised. And the site having users send requests with the "post" header has absolutely nothing to do with anything. You probably just fell for one of these dumbo pm tricks.


Tbh fam, being negative to girls just gets you negged