[nugz at 7]

Read the title. Woke up this morning my pure was cleared out. Thank god I didn't enter my bank pin while using the runemate client. Fucking bullshit.

DO NOT USE THIS CLIENT

 

[futurama]

You're an idiot

 

[nugz at 7]

You're an idiot

????? First time I ever get hacked was a night after using Runemate? HMMMMMMMMM

 

[cuppajava]

????? First time I ever get hacked was a night after using Runemate? HMMMMMMMMM

See, when I read posts like this, what I see is "I recently got into runescape cheating and got phished somewhere else but since I used Runemate just now I'm assuming it was them."

My money is on a phishing ad, but it's also possible another client stole your info.

 

[savior]

you know what they say, there's a first time for anything

Just because runemate is the only thing that can come to your mind doesnt mean anything, keep in mind actual hackers make an effort in being as inconspicious as possible.
 

but it's also possible another client stole your info.

i mean not really, unless he really went out his way in looking for some underground client without a userbase

 

[nugz at 7]

See, when I read posts like this, what I see is "I recently got into runescape cheating and got phished somewhere else but since I used Runemate just now I'm assuming it was them."

My money is on a phishing ad, but it's also possible another client stole your info.

I am not retarded. I got lazy on my pure and decided to bot a str level. I do not click ads or anything like that, otherwise my main would be hacked too.

 

[savior]

I am not retarded. I got lazy on my pure and decided to bot a str level. I do not click ads or anything like that, otherwise my main would be hacked too.

acting like the way you do makes you less smart than you probably think you are...

 

[nugz at 7]

acting like the way you do makes you less smart than you probably think you are...

Lmao how am I acting? I mean am I really being that bad? Relax Mr. Pro botter.

 

[savior]

Lmao how am I acting? I mean am I really being that bad? Relax Mr. Pro botter.

youre acting like you are absolutely convinced that it was runemate being the cause the hack

 

[nugz at 7]

youre acting like you are absolutely convinced that it was runemate being the cause the hack

Seeing as I have 3 other accounts with plenty of gold, yet their info was not entered into runemate, yeah, seems a little too coincidental, does it not?

But the one account that ONLY runemate knows the password to gets hacked.

You must understand.

 

[savior]

Seeing as I have 3 other accounts with plenty of gold, yet their info was not entered into runemate, yeah, seems a little too coincidental, does it not?

But the one account that ONLY runemate knows the password to gets hacked.

You must understand.

I'm not blaming you for being suspicious, everyone in your situation would be. i'm blaming you for not thinking twice, look at how large the runemate community is, you really think pocket money worth of hacked wealth is a worthwhile source of income for the owners?
given the scale of things it'd make no sense to risk the reputation

but i get why that alone doesnt prove anything, so feel free to read the spoiler if you want to get more technical about this

Spoiler

feel free to debug any sorts of connections going from the client to the runemate server. you'll find that the only time it's transferring your accounts login information (IF you enter them into the client) are encrypted. they're encrypted in a way that nobody but the user himself could reconstruct the decryption key (given the user knew exactly how they're built).

Technically arbiter and cloud in conjunction could use the runemate credentials you're sending to the server by logging into the client to decrypt your players credentials just as if they were you. Let's ignore that this is already extremely unlikely since both would have to be equally willing to hack their users, but okay, it is a minor security flaw.

Now they have hundreds of thousands of player account credentials. What are they gonna do then, just pick random ones? or go after a specific runemate user? there isn't even a guarantee those credentials are valid, you can enter just about anything.

Runemate sends very few information such as gp in inventory, any rings of duelings equipped, or a part of your quest list, in order to build navigation paths using runemate's web. this data isnt even mapped to a distinct rs account you've added to your client, just to your runemate user.

Lets assume they'd go with the users with the most wealth currently in the inventory by using the data of a completely different service (it's getting more and more ridiculous as you can see). Now if they logged into these accounts, you would see a lot of users complaining about locked accounts due to suspicious account use, namely differences in IPs, jagex tends to do that a lot.

i've seen some ban reports, and i've seen some "hacked" reports, but i've never seen an "account locked" report on the forums.

There is a single way runemate could be at all involved in a hacked account. and that is if your runemate account itself gets compromised by you leaking your password somewhere. and even then there is still 2FA being enforced

 

[cuppajava]

How much gp did you lose anyway?

 

[nugz at 7]

How much gp did you lose anyway?

Well sadly I JUST bought robin hood hat, ranger boots, anguish, and tunic for my pure. I was in middle of doing MM1 so I left gear on.

If I had banked the gear I'd still have it. They didn't get my chins in bank or anything luckily.

so like 65M.

 

[cuppajava]

Well sadly I JUST bought robin hood hat, ranger boots, anguish, and tunic for my pure. I was in middle of doing MM1 so I left gear on.

If I had banked the gear I'd still have it. They didn't get my chins in bank or anything luckily.

so like 65M.

tbh I'm always really curious how people like you did get hacked since I'm essentially completely convinced it wasn't through rm

In the past few months have you logged into your runescape account through a web browser at all (including what you thought was the official runescape site)?
Have you used any other botting/RSPS/third party clients at all? Have you signed up for any runescape fansites? Do you use the same password for other things?

It could have happened in a lot of ways. If you use the password elsewhere, you may have gotten phished elsewhere or the security wasn't good for the site. Or if you signed up for a fansite/other client/bot it's possible they phished your password somehow (or just used your pass if you signed up with the same pass). If you logged in through the runescape.com website at all, it's possible it was a phishing site, especially if you mistyped the URL, clicked an ad or anything in an email, or even googled it and clicked the wrong link.

If I got hacked, what I would do is search my browsing history for the word "runescape" and see if any suspicious sites show up, and think back to everything I've signed up for/signed into/downloaded recently.

People trust runemate with way more than 65m, so I really just don't see how runemate would have taken your like $40 of gp.
 
Just googled your username "nugz at 7" and saw you have what looks like an RSPS account, and I'm sure you're a member of other RS related third party communities as well. One of them stole your shit, not runemate. Case closed.

Edit 2: hell, you have multiple RSPS accounts. Clearly you're active on multiple runescape related 3rd party services and why you're so sure it's runemate that stole your $40 is completely beyond me

 

[vendettas]

tbh I'm always really curious how people like you did get hacked since I'm essentially completely convinced it wasn't through rm

In the past few months have you logged into your runescape account through a web browser at all (including what you thought was the official runescape site)?
Have you used any other botting/RSPS/third party clients at all? Have you signed up for any runescape fansites? Do you use the same password for other things?

It could have happened in a lot of ways. If you use the password elsewhere, you may have gotten phished elsewhere or the security wasn't good for the site. Or if you signed up for a fansite/other client/bot it's possible they phished your password somehow (or just used your pass if you signed up with the same pass). If you logged in through the runescape.com website at all, it's possible it was a phishing site, especially if you mistyped the URL, clicked an ad or anything in an email, or even googled it and clicked the wrong link.

If I got hacked, what I would do is search my browsing history for the word "runescape" and see if any suspicious sites show up, and think back to everything I've signed up for/signed into/downloaded recently.

People trust runemate with way more than 65m, so I really just don't see how runemate would have taken your like $40 of gp.
 
Just googled your username "nugz at 7" and saw you have what looks like an RSPS account, and I'm sure you're a member of other RS related third party communities as well. One of them stole your shit, not runemate. Case closed.

Edit 2: hell, you have multiple RSPS accounts. Clearly you're active on multiple runescape related 3rd party services and why you're so sure it's runemate that stole your $40 is completely beyond me

This. 65M is small beans when it comes to hundreds of people using RM. Suspicion is expected, and perhaps worth some investigation, but correlation =/= correlation.

 

[nugz at 7]

tbh I'm always really curious how people like you did get hacked since I'm essentially completely convinced it wasn't through rm

In the past few months have you logged into your runescape account through a web browser at all (including what you thought was the official runescape site)?
Have you used any other botting/RSPS/third party clients at all? Have you signed up for any runescape fansites? Do you use the same password for other things?

It could have happened in a lot of ways. If you use the password elsewhere, you may have gotten phished elsewhere or the security wasn't good for the site. Or if you signed up for a fansite/other client/bot it's possible they phished your password somehow (or just used your pass if you signed up with the same pass). If you logged in through the runescape.com website at all, it's possible it was a phishing site, especially if you mistyped the URL, clicked an ad or anything in an email, or even googled it and clicked the wrong link.

If I got hacked, what I would do is search my browsing history for the word "runescape" and see if any suspicious sites show up, and think back to everything I've signed up for/signed into/downloaded recently.

People trust runemate with way more than 65m, so I really just don't see how runemate would have taken your like $40 of gp.
 
Just googled your username "nugz at 7" and saw you have what looks like an RSPS account, and I'm sure you're a member of other RS related third party communities as well. One of them stole your shit, not runemate. Case closed.

Edit 2: hell, you have multiple RSPS accounts. Clearly you're active on multiple runescape related 3rd party services and why you're so sure it's runemate that stole your $40 is completely beyond me

Lol Nugz at 7 is literally my name for RSPS, in which I haven't played in a very long time. ( I dont use Nugz at 7 for anything to do with real runescape whatsoever, EVER. NOR downloaded as my PC had a fresh install, I have nothing downloaded and I can show you.

I changed my password on the pure just about 4 days ago before even using runemate because I'm skeptical. I don't click links, I am not retarded. I promise. I have too many accounts I care about to be dumb. I have a near maxed ironman, a maxed main and plenty more. This is the first bot I've ever used. I searched and picked runemate, didn't download ANY other clients whatsoever. Other than runelite.
 

tbh I'm always really curious how people like you did get hacked since I'm essentially completely convinced it wasn't through rm

In the past few months have you logged into your runescape account through a web browser at all (including what you thought was the official runescape site)?
Have you used any other botting/RSPS/third party clients at all? Have you signed up for any runescape fansites? Do you use the same password for other things?

It could have happened in a lot of ways. If you use the password elsewhere, you may have gotten phished elsewhere or the security wasn't good for the site. Or if you signed up for a fansite/other client/bot it's possible they phished your password somehow (or just used your pass if you signed up with the same pass). If you logged in through the runescape.com website at all, it's possible it was a phishing site, especially if you mistyped the URL, clicked an ad or anything in an email, or even googled it and clicked the wrong link.

If I got hacked, what I would do is search my browsing history for the word "runescape" and see if any suspicious sites show up, and think back to everything I've signed up for/signed into/downloaded recently.

People trust runemate with way more than 65m, so I really just don't see how runemate would have taken your like $40 of gp.
 
Just googled your username "nugz at 7" and saw you have what looks like an RSPS account, and I'm sure you're a member of other RS related third party communities as well. One of them stole your shit, not runemate. Case closed.

Edit 2: hell, you have multiple RSPS accounts. Clearly you're active on multiple runescape related 3rd party services and why you're so sure it's runemate that stole your $40 is completely beyond me

My browsing history only shows youtube and the subreddit. I haven't used Nugz at 7 for ANY rsps or ANYTHING related to RS for a very long time. You focus on Nugz at 7 yet that isn't a login for ANY runescape stuff whatsoever.

I know you don't want to believe RM could do this, but I assure you I have nothing downloaded other than Runemate that could cause a possible Hacking. It's been MANY years and I've never EVER been hacked, for a reason.

 

[savior]

I know you don't want to believe RM could do this, but I assure you I have nothing downloaded other than Runemate that could cause a possible Hacking. It's been MANY years and I've never EVER been hacked, for a reason.

I'm not blaming you for being suspicious, everyone in your situation would be. i'm blaming you for not thinking twice, look at how large the runemate community is, you really think pocket money worth of hacked wealth is a worthwhile source of income for the owners?
given the scale of things it'd make no sense to risk the reputation

but i get why that alone doesnt prove anything, so feel free to read the spoiler if you want to get more technical about this

Spoiler

feel free to debug any sorts of connections going from the client to the runemate server. you'll find that the only time it's transferring your accounts login information (IF you enter them into the client) are encrypted. they're encrypted in a way that nobody but the user himself could reconstruct the decryption key (given the user knew exactly how they're built).

Technically arbiter and cloud in conjunction could use the runemate credentials you're sending to the server by logging into the client to decrypt your players credentials just as if they were you. Let's ignore that this is already extremely unlikely since both would have to be equally willing to hack their users, but okay, it is a minor security flaw.

Now they have hundreds of thousands of player account credentials. What are they gonna do then, just pick random ones? or go after a specific runemate user? there isn't even a guarantee those credentials are valid, you can enter just about anything.

Runemate sends very few information such as gp in inventory, any rings of duelings equipped, or a part of your quest list, in order to build navigation paths using runemate's web. this data isnt even mapped to a distinct rs account you've added to your client, just to your runemate user.

Lets assume they'd go with the users with the most wealth currently in the inventory by using the data of a completely different service (it's getting more and more ridiculous as you can see). Now if they logged into these accounts, you would see a lot of users complaining about locked accounts due to suspicious account use, namely differences in IPs, jagex tends to do that a lot.

i've seen some ban reports, and i've seen some "hacked" reports, but i've never seen an "account locked" report on the forums.

There is a single way runemate could be at all involved in a hacked account. and that is if your runemate account itself gets compromised by you leaking your password somewhere. and even then there is still 2FA being enforced

read

another question since you're trying your best to make clear how careful you've been the past 15 years, what made you chose runemate as botting client?

 

[hoggster99]

The fact that you're convinced that it was Runemate that stole your shit is just beyond me. 1000's of people use Runemate every single day. I've never seen a single post on the forums saying "Runemate hacked them". 65M? Mate, just ask yourself. Why would Runemate as a botting client put their reputation on the line to steal some pocket money from 1 single random user? Answer: They wouldn't. Another question; Wouldn't it be stupid af for them to do it as soon as you make an account on Runemate? That would be the most obvious hack ever. I don't think anyone is that stupid.

 

[cuppajava]

Wait lol, are you sure the bot didn't just bug out and kill you? You said you were training strength on a pure and lost the items you had on you.

Note: even if you weren't in lumby it's possible the bot died and tried to walk somewhere

 

[savior]

Wait lol, are you sure the bot didn't just bug out and kill you? You said you were training strength on a pure and lost the items you had on you.

Note: even if you weren't in lumby it's possible the bot died and tried to walk somewhere

l0l now i'm interested to see his logs.