Vorps Guide To Keeping Your Account [SAFE]

ORIGINALLY WRITTEN BY : Davis / Vorpallix​

This thread was originally written by me and later stolen by Dreaming.

Even though most of you probably know these scams, some of you don't. This is going to be an in depth guide about how to keep your Runescape account safe, and I will go over pretty much every technique of how your account can be compromised, and how to prevent it.

How to protect your account:​

1. Register a damn email:



If someone gets on your account and you have not registered an email, it's pretty much game over. Once their email is linked to your account, chances of getting the account back are slim to none. Having your email also strongly boosts your chances of recovering your account in the event that it is compromised.



2. BANK PIN:


This is my most important point. Most people fail to understand the importance of one of these bad boys, and see them more as a burden. Bank pins will save your life though, take my word for it. Unless your hacker has you ratted and have a pin logger on you, they won't be getting into your bank.

3. Deposit items before logging out:


I know it may sound a bit paranoid, but if you have the slightest suspicion that someone may have your info I would recommend banking all items of value before logging out, so that they're safe and sound. This is assuming that you followed step 2, and you have a bank pin.

Those are just the basics of how to ensure safety in the event that someone does have your information. In the next section I'll go over how to ensure that you're 100% safe, and no one ever gets your information to begin with.

How to decrease the risk of getting hacked:​

1. Phishing:


Probably Runescape's biggest plague right now is phishing. Don't get caught in the trap! I don't care how similar the URL looks to an actual Runescape URL. 99% of the time, a link in a YouTube video description is a phishing link. Always look at the URL, and make sure you have the green secure box. If that isn't there you're probably being phished. In Runescape, you'll see a lot of people spamming "free 1m to join a clan, look up "video" on YouTube". Don't even do that, it's just a phishing scam. Also, the most complex one to identify is an email phishing scam. In these cases, an email can contain a link that is identical to the Runescape URL. Upon clicking the link, you may notice the URL displayed is not the same URL that you saw in your email. This too, is a phishing scam.



2. Keyloggers / RATs:

Not as common, yet still fairly common. Don't download bots you find off of youtube, or anywhere for that matter. Most .exe, or even .bat files typically are a RAT or keylogger. Bot clients will be a .Jar file, not a .exe.



3. Java Drive By (JDB):


These are some of the most sneaky attempts at getting your info. A Java Drive By is a virus (Keylogger or RAT) hidden inside a Java applet. Have you ever played a Runescape Private Server, or even Runescape, and seen the little Java pop up that you have to click "Run" on? Well, a Java Drive By looks identical. People often spread these using their "Private Servers". When you click "Run" or "Allow" on the Java Applet, you are secretly allowing their files onto your computer. My advice would be not to trust any programs with a Java pop up unless it is Runescape, or a trusted private server you have played. If you want to tell for sure, you can view the page source of the "Private server" and search for a .exe file. This doesn't work 100% of the time as the file isn't always present in the HTML, but if it is, you know it's a JDB. If you don't find any results for a .exe file, it could still very well be a JDB. Deal with EXTREME CAUTION around Java pop ups.

I believe I have covered pretty much everything I know of. If you have anything else you think should be added, or if you find any mistakes in this thread, please don't hesitate to let me know. I could easily have forgotten something, so go ahead and point out anything you feel the need to to me.

Think You're Infected?



Add My Skype: Vorp.tb​

 

10k+ Phished accounts a month says otherwise.

Bump