Page 1 of 5 12345 LastLast
Results 1 to 10 of 57

Thread: Alert! Geocaching Dot Com and User AutoJoey

Hybrid View

  1. #1
    Join Date
    Jun 2004
    Location
    Bangor, ME
    Posts
    6,061

    Exclamation Alert! Geocaching Dot Com and User AutoJoey

    I'm not sure if this is an isolated incident but this was posted in the NH forums, figured I'd post it here just to give a heads up.

    I woke this morning to ALL but 1 of my hides being found by User "AutoJoey"

    This "User" signed up Sunday and has 1800+ Finds??

    I dont think so..

    I deleted the logs on my Hides.

    Im thinking Groundspeak's computers have been infiltrated by a Hacker!!

    DO NOT CLICK ON THE LINK IN THE LOGS!!!

    Updat @ 6:25am: Now up to 2000 finds.
    This IS a BOT!

    It brings you to some Wiki and has MALEWARE! (I know because when I clicked on it I lost my passwords and log in Info!!)
    Last edited by brdad; 10-04-2010 at 07:22 AM.
    DNFTT! DNFTT! DNFTT!

    "The funniest thing about this particular signature is that by the time you realize it doesn't say anything it's to late to stop reading it..."

  2. #2
    Join Date
    Sep 2010
    Location
    Rochester, NH
    Posts
    10

    Default

    I notified our reviewer (NH) an hour ago (6:22AM) and he is trying to get Groundspeak to axe the account. Still a mess to clean up though.

  3. #3
    Join Date
    Dec 2004
    Location
    Biddeford, Maine
    Posts
    311

    Default

    I did a quick scan. This person seems to have hit only NH caches. I only looked at maybe a dozen or so pages (he's up to 2250 caches now).

    Has anything like this ever happened before?
    Oscilating between remarkable brillance and sheer stupidity with amazing regularity.

  4. #4
    Join Date
    Jun 2004
    Location
    Bangor, ME
    Posts
    6,061

    Default

    I don't recall anyone automating logs destructively before, but it certainly would not be hard to do. I'm guessing if it has happened, they were caught quickly. The timing on this was good though, Sunday night when logs have been coming in fairly heavy anyway, and when the left coasters and gc.com workers are asleep.

    It does seem to be localized to NH, so my first guess is they started with a random cache there and then logged one of the nearest caches on that list and so on. If that is the case it will spread to other areas if it is not stopped in time.

    I'm not sure as there is any need to delete the logs outside of concern for malware infection mentioned, once gc.com gets started I think they can delete them all.
    Last edited by brdad; 10-04-2010 at 07:47 AM.
    DNFTT! DNFTT! DNFTT!

    "The funniest thing about this particular signature is that by the time you realize it doesn't say anything it's to late to stop reading it..."

  5. #5
    Join Date
    Jul 2004
    Location
    Niskayuna, NY
    Posts
    601

    Default

    Some of my NY caching friends have had the same thing happen. They have notified GC.COM.




    A house is not a home without a cat.

  6. #6
    Join Date
    Jul 2007
    Location
    Lunenburg, MA
    Posts
    24

    Default

    We are in caching in Vermont and noticed that it happening here too. The caching name is JoeyBot and he logged over 1200 caches on 10/2.

    Anniebananie

  7. #7
    Join Date
    Dec 2005
    Location
    ME
    Posts
    3,517

    Default

    Happy to see this posted here. I had asked the NH website admin to post it here but presume he is working this AM.

    Hopefully GC.com will take care of this.

  8. #8
    Join Date
    Jun 2004
    Location
    Bangor, ME
    Posts
    6,061

    Default

    3528 finds as of 10:00. I'm not sure what time gc.com starts their day, but it should not be long from now.
    DNFTT! DNFTT! DNFTT!

    "The funniest thing about this particular signature is that by the time you realize it doesn't say anything it's to late to stop reading it..."

  9. #9
    Join Date
    Jun 2004
    Location
    Bangor, ME
    Posts
    6,061

    Default

    I guess I was wrong about gc.com deleting the logs, so if you have any on your caches you should delete them yourself...


    From NH Zamboni in the national forums:
    Thank you for the e-mail messages and concern regarding the user "JoeyBot" / "AutoJoey" over the weekend. It's good to see how responsive and attentive the caching community has been to this issue. JoeyBot attacked Vermont Sunday logging about 1500 bogus cache finds. AutoJoey is currently logging finds in NH. For those of you who contacted me yesterday I immediately forwarded concerns to Groundspeak and JoeyBot has been banned from the website. Earlier this morning I contacted Groundspeak requesting bannination of the AutoJoey account.

    For the health of your PC. Please do not click any of the links included in the found it logs.

    Traditionally Groundspeak will only take action on cache logs in limited situations such as profanity and personal attacks that violate the Terms of Use Agreement. Other than that, taking action on someone's cache page is typically not performed. Please delete any bogus 'found it' logs from your caches. I regret the burden this places on the affected cache owners.

    Thanks

    Zamboni / Trevor
    Geocaching.com volunteer reviewer for VT / NH
    DNFTT! DNFTT! DNFTT!

    "The funniest thing about this particular signature is that by the time you realize it doesn't say anything it's to late to stop reading it..."

  10. #10
    Join Date
    Sep 2010
    Location
    Rochester, NH
    Posts
    10

    Default

    NativeMainer-"Has anything like this ever happened before?"
    The Groundspeak forums have been talking about various BOT attacks in this thread started 9-19-2010.

    http://forums.groundspeak.com/GC/ind...ic=260242&st=0

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •