Back to Epicmafia

List of compromised accounts

deletedover 10 years

Currently, a bunch of accounts are compromised due to hidden linking. I'm making this topic to make a reference on who all got compromised. If you're viewing this topic and your account was compromised, then the best thing I'd recommend is to just make a new account for now.

  • absinok
  • ashlayymarie134
  • Aurous
  • BarryAllen??
  • BobbySmith
  • boxingneedles
  • Cesia
  • Cital
  • Dreamquakes
  • Erines
  • faintoldrhyme (account deleted entirely)
  • GeoLuka
  • GovaKomijori
  • Idevs
  • joacobracci
  • KillFr3nzy
  • Lisheon (account deleted entirely)
  • littlemonkeysz
  • Lukageo
  • nizde (account deleted entirely)
  • Pinacolada
  • pingu
  • playhard
  • qeSuited
  • QtieBear
  • rozureido
  • rycerub
  • Rytis
  • sahil267
  • saikaq
  • SammiJenk
  • Snapchat
  • vilden
  • Volley (account deleted entirely)
  • WalkingMeme
  • wanlr
  • Yona
deletedover 10 years

Satan says

thed is a huge nerd hahahaha


Says the marine biology major.
deletedover 10 years
Why lol?
Satan
over 10 years
thed is a huge nerd hahahaha
deletedover 10 years

thed says


Harunan says

well if ur so smart then u fix it mr thed


I'd be happy to if an admin wants to contact me.


lol
deletedover 10 years
I feel like you actually do, though. That puzzles me..
vilden
over 10 years
i don't care that you are a bigger nerd than i am
deletedover 10 years

vilden says

well in the words of pranay you are just a noob


Okay keep thinking that while babbling about post requests.
vilden
over 10 years
well in the words of pranay you are just a noob
deletedover 10 years

Harunan says

well if ur so smart then u fix it mr thed


I'd be happy to if an admin wants to contact me.
deletedover 10 years

vilden says

when you say "these people" you don't even know who you are talking about. i know exactly who they are, what they know and where they got their information


I think you know a lot less than you think you know by your original comment about "post" requests. Probably someone's been feeding you misinformation.
deletedover 10 years
well if ur so smart then u fix it mr thed
vilden
over 10 years
when you say "these people" you don't even know who you are talking about. i know exactly who they are, what they know and where they got their information
deletedover 10 years

vilden says

ok i get you are like infinitely superior when it comes to scripting language but you clearly don't know what people are (were) capable of doing on this website just by loading a page


I mean it's pretty obvious that these people don't have any knowledge about that or they wouldn't be resorting to phishing tactics, which, by the way, could easily be countered.
vilden
over 10 years
ok i get you are like infinitely superior when it comes to scripting language but you clearly don't know what people are (were) capable of doing on this website just by loading a page
deletedover 10 years

vilden says

i mean just imagine me falling for that pm


Well with that comment you made earlier it wouldn't surprise me at all.
vilden
over 10 years
i mean just imagine me falling for that pm
deletedover 10 years
Even some sites far more popular than epicmafia.
deletedover 10 years
There are loads of sites out there with poor security. Epicmafia isn't special in that regard.
cub
over 10 years

thed says


vildenlol says

it's actually a combination. the site uses "post" meaning you can use the java console to do all sorts of crap

it's how prevail fkd with my account I think


I mean, the entire internet pretty much runs on javascript, which would be why you can use the developer console to do "all sorts of crap" but that's all client side and has nothing to do with your account being compromised. And the site having users send requests with the "post" header has absolutely nothing to do with anything. You probably just fell for one of these dumbo pm tricks.


mostly right, except em is probably the only site where you can inject javascript just about anywhere and lucid lets you link accounts without any real security (like entering the current user's password or making sure the request referrer is /user/alternates)

i know of like 3 ways you can still run js unfiltered for all users who load the lobby page although i didnt find them myself
deletedover 10 years
deletedover 10 years
Same, fam.
deletedover 10 years
i forgot to neg my post first
Satan
over 10 years
vilden is a dude, since vilden is abc
deletedover 10 years
I thought vilden was a dude.

Not that it matters.
deletedover 10 years

thed says


vildenlol says

it's actually a combination. the site uses "post" meaning you can use the java console to do all sorts of crap

it's how prevail fkd with my account I think


I mean, the entire internet pretty much runs on javascript, which would be why you can use the developer console to do "all sorts of crap" but that's all client side and has nothing to do with your account being compromised. And the site having users send requests with the "post" header has absolutely nothing to do with anything. You probably just fell for one of these dumbo pm tricks.


Tbh fam, being negative to girls just gets you negged