Mods and ranks need some serious change in security

My two cents on this is that Lean should be held accountable for this hacking. It's even stated in the rules.

"If your Skype (MSN, AIM etc) account is hacked, you will only be responsible if a private message was sent from your Sythe account to confirm this method of communication"

The person who was scammed did receive a PM via sythe which said that Skype would be the method of communication. If you are dealing with over 1000$+ in items through skype (Which you all say is unsafe), then why use skype instead of Sythe? (I assume Sythe is very much harder to hack)

 

After reading the scam report and reading the replies in this thread, this is a very important point stressed.

Sythe rule states that we are responsible for our own Skype accounts, so even if lean bean's account for hacked, shouldn't he be held responsible for any damages and repayment?

It might not be his fault but isn't he still responsible?

I would imagine someone hacked my Skype account and used it to scam others, I would be held responsible and I would be forced to repay those that were scammed or I would be left with a banned sythe account.

I believe that cases like these have happened before where the Sythe member was banned, regardless of being hacked until the payment was made.

If this happens to 'ordinary' Sythe users, it should happen to lean bean, admins and mods as well.

Rules are rules

Verdicts ruled on similar cases should be ruled similarly.

 

For an old trade. That practise should be used for every trade.

Skype's recovery system is complete bollocks and people with the most secure VIP accounts have been hacked. We've been over how shoddy Skype is before, which is why there is a great need for SytheChat to become useable on a regular basis. There is NOTHING anyone can do to protect their Skype, really, a hacker just needs to speak to the right (and negligent) livechat agent and have some basic information like city of creation.

If lean had PM'd Iago for this trade he would be responsible, however, he didn't. We have checked his Paypal and there's not much more to be said than that.

Not at all, Report a Scammer stickies reiterate that a Sythe PM must be exchanged for the report to be valid - that happens every day. The hackings people are responsible for are hackings of Sythe.org accounts because those are down to the owners negligence.

 

To hold someone responsible for their Skype getting recovered would be stupid. The obvious truth is that Skype accounts get recovered all of the time, no matter what an owner does to establish security on it. That is why Sythe has a clear rule:
http://www.sythe.org/report-scammer...skype-scam-reports-must-contain-sythe-pm.html

This rule was put in place for the exact reason that Skype recoveries are unpreventable. No gold seller would feel safe if this rule wasn't in place. It is much fairer to just ask everyone to stop being ignorant (ask for a dam pm, not hard) than to restrict users from using Skype (because if this rule wasn't in place, no one would use Skype out of fear of having to pay back someone because their account got recovered, which is unfortunately the best form of communication out there atm for gold sellers).

 

before i joined sythe i tought everyone "hacks" his own skype to scam people. But when my skype got hacked i realised that skype is such easy to hack

 

You need to quit mentioning R2P. He has seriously been hacked for thousands and thousands of dollars. As mentioned before (by a staff member) he has been hacked more than the average sythe user can fucking count. His site and or live chat have been hacked as well.

Once again, you are using the worst comparison ever. Educate yourself, the limb you are out on does not hold weight. Any and all BIG sellers of anything get hacked. There are a number of people who repeatedly target people like this. One has been caught and mentioned a few times. Ooga, not saying he did it but there are a lot of people who could have SEed their way into someones skype. The fact is you were sloppy, it says "Always Trade with a PM" on peoples profiles all over the place, it says it on a sticky or two as well. You KNEW what you should do obviously (have pmed before OTHER trades) and you didnt this time. Well it looks like you made a $2000 mistake. Lean could have gotten you for ~$3500, if HE was a scammer he would have waited for another BIG one. But no, the scammer settled for less because the skype hacking would only go unnoticed for a short period of time.

 

I just feel like, if you are going to be doing a business as an admin/mod, you should never use Skype as the way of communicating. Especially if you frequently do trades with the person for over 100$+. After a while, people will get lazy and forget to ask for PM's.

Maybe instead of Skype, Admins/mods can ask the person to use the Sythe chat? That's probably the best/safest way someone can safely trade with an Admin/Mod. ESPECIALLY if the trades are for a mass amount of money.

 

If you ask for a simple PM, a process that takes all of 2 minutes, then you wouldn't have to restrict communications. All you kids throwing wild accusations around like you're Rush Limbaugh or something should learn about how this works both for your own edification and protection and so you don't look like complete dumbasses. These things have even happening since msn was the thing to use. The fact is SytheChat is nearly unusable by most because of bugs and such and until it is a highly effective chat system it won't be used. It also isn't our fault if you get lazy and get scammed by forgetting a pm. That is why there is a rule in place.

 

Here's a scenario. Lets say someone PM's you on Sythe because you are interested in buying/selling something(In this case, it's redeeming moneypaks), and they start talking on skype. You manage to get a moneypak redeemed and leave a vouch (Lets assume hackers look at recent vouches to see what kind of things they can scam). Then 20 minutes later, you want to redeem another moneypak to said person, but instead, you are now talking to the hacker. Are you saying that if he were to get scammed for not asking for a PM before the second trade 20 minutes from the first, he wouldn't be refunded?

 

"I've screenshared lean's Paypal and subsequently I shared it with Iago. It's clean and he is satisfied with how he got caught out from what I gather.

Closing and reinstating leanbean.
__________________"

Skype was hacked, leanbean isn't a scammer.

 

Sythe moderators must have enabled 2 factor. It protects their sythe accounts. Skype accounts are inpossible to protect, that's why sythe PM is a must. Victim of this scam didnt even secure himself by simply requesting private message, it was fully his fault. Please also look HOW are skypes getting hacked, before blaming on our security. In the most of the cases Skype support is getting bribed/social engineered and allows third parties to take control over skype accounts.

 

Why not have staff members use an alternate more secure chat service for their sales? They can keep their skype account, but have it for non trade related situations.

 

^Still just waiting to see Leanbean prove he was hacked with the email showing his Skype being transferred to a new email address. That happens and theres no disputing that he was hacked. So why is that taking so long..?

 

Maybe is it because of high amount of skype customers?
And why would staff members be any different than market giants? Our responsibility fairly comparable.

 

Staff members should hold more responsibility. They are supposed to be trusted over any other usergroup on this site. Market giants are free to follow suit. This is just an idea to handle situations like this.

 

Or... users could request PM's like they should, ESPECIALLY for high amounts like this.

 

Did you read about my scenario I posted about? Seems like it only takes 5 minutes to hack a skype. What's to say someone doesn't get hacked Mid conversation and ends up scamming someone. Would the person who got hacked be held accountable?

 

Mfw people think users follow the rules. How many times are we going to reiterate different things and it just doesn't seem to be effective?

"Read me before posting"

Over 60% don't read before posting.

"Do not spam in this section"

Many people still do it.

"Forum rules"

A lot of users don't abide them. The rules only have like 3k views which is atrocious for the amount of time the thread has been up.

This will always be the trend. We shouldn't be calling users stupid for not pming a staff member especially when the hacker undergoes similar trades to what the staff member has done previously.


Edit: An alternative could be having staff members post at the top of their market related threads stating in big bold red letters "If I don't request you pm me on sythe to verify myself, I have been hacked." Or something along those lines. Other users should also follow suit.

 

Another issue I noticed after speaking with Honest Iago, is that the "hacker" knew that he needed moneypaks redeemed. Which is odd because Honest Iago has NEVER posted his Skype name anywhere else. (I should know because I have done over $6000 worth of moneypaks with him and have never found his skype name on sythe). And Leanbean randomly messages his skype asking him if he needs moneypaks redeemed.

http://i.imgur.com/c4wOLc6.png

I highly doubt he got "lucky" and guessed that it was Honest Iago' skype that he was speaking to. Or I highly doubt that he went through every contact and asked if they needed moneypaks redeemed (Which seems unlikely because I highly doubt that every contact he has deals with moneypaks).

I say the only thing that needs to be proved, is a screenshot of the latest conversation that he has had with Honest Iago (Because conversations do NOT transfer over from PC to PC), and an Email from his Skype's email to show that there was a change in his account information. Having a screenshot of his paypal history proves nothing. Because you can create multiple paypals.

 

My skype contacts are set in categories. Honest Iago is under the "MoneyPak" group.