Ok so alot of people are being "Hacked" on Habbo atm because of a new method, i can't go into detail because i'd be teaching you how to do it.

Just a reminded dont click links on Habbo as there now cloaking links such as Tumblr/Facebook/Youtube so it dont look like legit links but it isnt.

and be careful what you link on forums as well. ry got hacked from quoting a pic on thf. :l

They've removed the url from hxf thank god but other forums arent so clever so don't open strange pms on other forums either, just sayin!

clickjackin is one of easiest forms of hacking yet so many people fall for it

*REMOVED* made an awful attempt to do this earlier. LOOK AT MY PHOTOGRAPHY PICS ON TUMBLR, no thanks.

Edited by Infectious (Forum Super Moderator): Please do not accuse others of hacking!

Right for those who are unaware, there's a brand new hack.. it's basically another habbo security flaw but this hack is potentially the easiest to to do I've ever seen...

It's done by not even clicking or downloading anything all you have to do is visit the website and they load a url up as an image (not quite sure how) anyway this url somehow gives them all your details... very scary PM me if you'd like an example of the source code...

BE WARNED I got hacked (or am in the process of being hacked, i disabled trade so i have 24 hours before i loose my furni and habbo mods are useless and make me go through help line so it could take days) btw if anyone has any suggestions as to what i could/should do would be great.

Thread merged by Infectious (Forum Super Moderator): As there is 2 threads discussing this!

I'd love to know more about this, I am PM;ing you.

AN UPDATE ON THIS, Done more research and what it does is it merges his account with yours, i've gotten to the point where i know his identity screenie below: *REMOVED*

Edited by Jordesh (Forum Moderator): Please do not post information which accuses people of hacking ~ even with proof

by the way please don't pm me asking for link, then go to the url and blame me for hacking your account like Vinnie is, it's just childish

When you ad an account, say Facebook, Myspace, Hyves etc habbo generates a URL with a '.rpx' token. This is the details of the account you would be adding to your ID, as a sign in option.
The .RPX token in generates, lasts for 10minutes or so. WHat peple are doing is using this rpx token, embedding it in a shortened link or php images, which adds their Hyves/Facebook/etc account to your ID, allowing them to sign in as you.

I have fallen victim to this yesterday, but I managed to revert it all before any serious damage was done(he traded over 2xHoloboys 2xHologirls and a few pod chairs). Although I managed to reset my password before he changed the primary email address.

If you ever fall victim to this(you have been signed out as you logged into a different computer), reset your password IMMEDIATELY.

Lol if you wanna know more just PM me, i have the TuT and know the boy who made the method?lol

Many people have been hacked due to the rpx token which is about social networking. This is a major exploit and any link you click on habbo will merge your habbo ID.

1st prevention:
1) log onto www.habbo.com
2) load client browser
3) clear all your internet settings, cookies, browsing history.
4) make sure habbo.com says your logged out as in your on the welcome page.
5) you can't get hacked by this exploit.

2nd prevention:
been hacked via htis way read my tutorial and quickly do this solution before the other user!
http://www.habboxforum.com/showthread.php?t=693840


I hope this helps!

Thread merged by Jordesh (Forum Moderator): As it's being discussed in here

It's clearly a case of common sense.

DONT CLICK LINKS!

Forum mods keep closing this, maybe because they might be click jacking users, but this is to help people and i need feedback.... thanks...
Many people have been hacked due to the rpx token which is about social networking. This is a major exploit and any link you click on habbo will merge your habbo ID.

1st prevention:
1) log onto www.habbo.com
2) load client browser
3) clear all your internet settings, cookies, browsing history.
4) make sure habbo.com says your logged out as in your on the welcome page.
5) you can't get hacked by this exploit.

2nd prevention:
been hacked via htis way read my tutorial and quickly do this solution before the other user!
http://www.habboxforum.com/showthread.php?t=693840


I hope this helps!

Thread merged by Infectious (Forum Super Moderator): Please keep all discussion on the recent security issues to this thread!

basically don't click any links whatsoever..

Many habbos has been haxed in the past week. Even veterans who played habbo over 5 years.
So dont click any link even if its habbo.com or ******* beacuse some player *REMOVED* is stealing habbo IDs with link. I don't knwo how but peoples lost 1000 of coins and ultra rares, so dont clikc any links so far..

Thread merged by Jordesh (Forum Moderator): As a discussion on this is happening here already.

Edited by Jordesh (Forum Moderator): Please do not accuse others of hacking

Good tip, and welcome to the forum :)

I am not new i just dont post :D I read posts

Just read this article on Answers Group:


An encryption exploit has lead to hundreds of Habbo accounts being compromised, it's emerged.

The exploit, believed to be still circulating, has infected hundreds of Habbo accounts since it came to light just after midnight this morning.

It's believed the flaw involves users stealing other people's sessions, otherwise known as session stealing, and involves the use of social networking sites such as Hyves.

Users are being advised to take a range of security precautions including using one browser to access Habbo and another to access other websites, and to entirely refrain from clicking suspicious links to avoid the exploit materialising.

Several fansites including HabboFunFM, have taken measures such as disabling image features whilst waiting for Sulake to implement a patch.

Speaking about the issue, one user said: "First of all, no-one is "hacking"

"They are using an exploit (Please complain to Sulake for this).

"Basically, when you click on "Remember my habbo" it stores this information into a cookie, which, is located on your computer. Then, they can use something like Javascript to access these cookies through services such like Tumblr which allow people to code Javascript for themes.

"It is Sulakes fault for not encrypting your data; misuse of the Data Protection Act much?

Victims to the attack have called the police for assistance on the issue whilst users speculate about the possible launch of legal action on Habbo for not securing data enough under the Data Protection Act 1998.

PLEASE NOTE: This is a Sulake Issue, which had led to this, NOT a User error.


Source: http://www.habbo.com/groups/ANSWERS/discussions/1056337/id

What does everyone think?
Obviously another security precaution would be to not click remember my habbo.

Thread merged by Jordesh (Forum Moderator): All discussion on this topic is happening in here

Luckily I don't click " Remember me " although I hope this is resolved shortly as users are paranoid.

Thanks for that btw, didn't see that on Answers! :)

Im glad i didnt buy most of my furni.

Im glad i didnt buy most of my furni.

What's that supposed to mean?

What's that supposed to mean?

Im lucky i wouldnt be losing alot of money if i got hacked.

Im lucky i wouldnt be losing alot of money if i got hacked.-

Same.

lulzsec/anonymous strike
lol jk its pretty awful that this is going around, but im taking that you have to click a link? If so then who would be stupid enough.

Im lucky i wouldnt be losing alot of money if i got hacked.


-

Same.

How did you get your furni then lol? Zak you're loaded!

I earned mine from mainly habboxlive comps and casino winnings, but some i did buy.

You can do it other ways that clicking a link e.g putting it as your avatar, it simply adds their user onto your ID which then gives them control.

How did you get your furni then lol? Zak you're loaded!


was joking :P :L

I didn't see this on answers :S Thanks for the find! :)

Thanks for sharing this information! Luckily, I haven't checked the "keep me signed in" box.

No problem, sine a mod merged the threads, remember to look at page 2 for the update on Habbo Hacking Exploits!

It's just occured to me how crap Habbo's security actually is. We seem to get hacking incidents like this every couple of months; and even since the early days of Habbo, people have been able to script and hack to get furniture and badges, etc. Any other multi-million dollar company like Sulake would actually get some decent people and some decent software to patch absolutely everything and triple check that everything is secure. That's obviously too intelligent for them, at present.

According to a thread in the Habbox Staff forums though, it's been patched now.

This 'Deleted' guy said he knew all about it and basically all the information on this thread was wrong. Made me chuckle :L Some people just won't listen..

its nothing to do with remember me? You could still get hacked if you hadn't got that checked.
It's patched now. :) Hopefully they come down hard on culprits. 2 people admitted they did earlier and they were permed in like 1 second lmao

I suggest anyone who has been hacked largely on this - Such as losing 10t+ - Whom will be unable to make it back should contact your Local enforcement agencies. Sulake and the police have quiet good habbits of paying back, after a security investigation.

I hate this new method. A lot of people are getting hacked because of it :(

I hate this new method. A lot of people are getting hacked because of it :(
Agree, my friend got hacked because of tat ...

I hate hackers their just useless people who have to hack people for the fun of it

It's ridiculous, people spend maybe 24/7 trying to hack.
For what? Virtual furni. It's not even real. honestly,
the consequences aren't even worth trying to hack.
You get caught you can face jail time. When you're older
and you try and get an job, and they run you're record
it'll be on there for hacking and you won't be geting an job.
Don't be stupid trying to hack, and if you are that dumb to
click an link then smack you're face. Stop being curious
cause it leads to you, being hacked then you're all upset
and you can only blame YOURSELF for being an idiot.

Moral of the story: Don't be an dummy.

Loads of people have said how to, but what happends if you do, what will you do? :P tut or something please! :) +rep xxx

Of all my time I have never seen a hack like this. They could of hacked anyone...