Had an experience last night, one that I don't care to repeat. Im DM'ing a campaign in forgotten realms, so I was in the LFP area looking for one more player. I posted a couple times about what I needed and waited. So, later on in the day. I get a message on discord from someone I didnt know. Found out he was interested in the game I was hosting, but I didnt see him on DNDbeyond or any response from his screen name on there. I assume he had heard about it through the forum but decided to go straight to me, so its cool no worries. I said in the title that it was a required TTS game, so you had to have the game to play in my group. A few red flags went off. He said some things that really made me nervous. Mentioning that he had a job in cyber security as one, 2 he said he was completely new to the game and didn't know how to use it, but upon entering the game without any solicitation or request for help, was able to join my session without having any of the information provided to him. Claiming he doesn't know how to use TTS, but is doing things that I don't even know how to do with the game. The next big red flag was that he kept asking to be promoted and get more permissions. If you dont know this game, how do you know that you need to be promoted in order to do something? This all made me very uneasy, but I decided to throw caution to the wind and give him permission. A few moments later my screen indicates to me that this guy is trying to load a mod and needed my permission to bring it to this table. Right as I ask him what he's doing, he leaves discord. I see an upload start to begin on all of our names, signaling that there is an upload in progress that Im also downloading from a source. I am in cyber security too, so I do an IP trace on this download origin, I see that the IP address is from a city in Spain. Just as I figure out where it came from, my whole game crashes as well as the all the players who were connected to the game. None of us are able to log back into the server for several minutes. I notice on my router behind a router with a double fire wall, that an unauthorized upload was detected through TTS root file and was blocked and quarantined. I was able to prevent the malware from entering my drive, and thus preventing it from infecting my players.
I told you all of that to tell you and warn you that if you're going to invite un-vetted players to your group. Then its important that you vet them before you invite them and pay close attention to how they portray themselves and their knowledge of the situation. I am 90% certain that it was an attempted hack, and anyone knows who plays TTS that its not the most secure game out there. So, if you play TTS, do not give unknown players permission to do anything. Do not accept new players without first vetting them on DNDbeyond. Learn from my mistakes. There are lots of people out there that would seek to do you harm if you allow them to. Don't allow the excitement of a new player character to misdirect you. That all being said, good journey to you all.
I think you let it go way to far. Dude, you work in cyber security and this happened. Anyway that sucks a big one. I would comb through your system now looking for any "problems". You never know.
Hello, the player mentioned is me! As you can see, I do have an account here that predates our game together. My discord name and dndbeyond name are also very similar, though not the same.
I bought TTS as per your request. It is a crappy interface and I am not going to play D&D on it. I would like to make a few things clear.
First of all I have no hard feelings about you banning me from your game. It was the first session, and as I said, TTS did not work out at all for me.
As for the permission thing, every time I tried to find a place at the table, I was told I dint have the permission to do so, or something in that vein. Naturally I assumed the default role for new people entering was observer, this is why I thought I needed to be promoted to the player role.
This turned out to be wrong, the other players at the table were able to let me know that I had to select a team to be able to join the table. It was odd.
As for me doing things you dint know about, once I was able to be join the table, I started exploring the objects on the table, trying to select a character token. As per your rule, I made sure not to go anywhere near the flip the board button.
I am not in cyber security. However after you let me know of your background in cyber security, I let you know that I found that cool, and that I worked with cyber security in an IT company, I was actually tech support.
You did mention to me that something was sent to you, you did not specify what, beyond saying you thought it was an attack.
Let me be clear, I did not intentionally send you anything. However I did ask you more information as perhaps I unintentionally sent you something. I asked you specifically what IP sent you the attack as you were monitoring your firewall from what I understood. I wanted and still want to confirm that my computer did not send you something.
I scanned my computer thoroughly several times during the week, with a few softwares, and did not find anything on my side.
Now that I know that the IP was from Spain, I am relieved, I now know it was not from me, as I am from Canada. Of course I dont expect you to simply take my word for it, as VPNs are a thing.
While I appreciate you advising the community, rightly so, to verify new members, I believe this was either a misunderstanding or you jumped the gun and blamed the new guy for something that looked like an attack.
I hope yourself and your players have a great campaign.
I do realize that I probably jumped the gun a little bit. There were several things that gave me a red flag. I realize it was probably all coincidence. But, at the end of the day. My players felt safer, I felt safer. It wasn't anything you did yourself, I don't think. It was the circumstances following that. But, its fine. It was probably just a misunderstanding on my part. I have a degree in Information Technology and Cyber Security. There were several things happening all at once that made me suspect you. At the same exact time, another computer on my network had just been duped into a Ransomware, and it of course came from Spain. This happened pretty much when you entered discord and my server, and it started glitching out my end of the game, which eventually kicked all the players out. That is what sent the red flag to me. But, clearly it wasn't from you. I will say now that I apologize if I made you feel shunned or accused. There were just a lot of things happening at that exact time that made me suspect you. Plus you said you knew something about cyber security, which further deepened my suspicions. Im glad you took the time to bring this up. This gave me an opportunity to address it and resolve it. That being said, I need to replace a player from my group. You are welcome to bring your "cooking" class and give that a go again, if you want. I thought the idea you presented was pretty cool actually.
Rollback Post to RevisionRollBack
To post a comment, please login or register a new account.
Had an experience last night, one that I don't care to repeat. Im DM'ing a campaign in forgotten realms, so I was in the LFP area looking for one more player. I posted a couple times about what I needed and waited. So, later on in the day. I get a message on discord from someone I didnt know. Found out he was interested in the game I was hosting, but I didnt see him on DNDbeyond or any response from his screen name on there. I assume he had heard about it through the forum but decided to go straight to me, so its cool no worries. I said in the title that it was a required TTS game, so you had to have the game to play in my group. A few red flags went off. He said some things that really made me nervous. Mentioning that he had a job in cyber security as one, 2 he said he was completely new to the game and didn't know how to use it, but upon entering the game without any solicitation or request for help, was able to join my session without having any of the information provided to him. Claiming he doesn't know how to use TTS, but is doing things that I don't even know how to do with the game. The next big red flag was that he kept asking to be promoted and get more permissions. If you dont know this game, how do you know that you need to be promoted in order to do something? This all made me very uneasy, but I decided to throw caution to the wind and give him permission. A few moments later my screen indicates to me that this guy is trying to load a mod and needed my permission to bring it to this table. Right as I ask him what he's doing, he leaves discord. I see an upload start to begin on all of our names, signaling that there is an upload in progress that Im also downloading from a source. I am in cyber security too, so I do an IP trace on this download origin, I see that the IP address is from a city in Spain. Just as I figure out where it came from, my whole game crashes as well as the all the players who were connected to the game. None of us are able to log back into the server for several minutes. I notice on my router behind a router with a double fire wall, that an unauthorized upload was detected through TTS root file and was blocked and quarantined. I was able to prevent the malware from entering my drive, and thus preventing it from infecting my players.
I told you all of that to tell you and warn you that if you're going to invite un-vetted players to your group. Then its important that you vet them before you invite them and pay close attention to how they portray themselves and their knowledge of the situation. I am 90% certain that it was an attempted hack, and anyone knows who plays TTS that its not the most secure game out there. So, if you play TTS, do not give unknown players permission to do anything. Do not accept new players without first vetting them on DNDbeyond. Learn from my mistakes. There are lots of people out there that would seek to do you harm if you allow them to. Don't allow the excitement of a new player character to misdirect you. That all being said, good journey to you all.
I think you let it go way to far. Dude, you work in cyber security and this happened. Anyway that sucks a big one. I would comb through your system now looking for any "problems". You never know.
Hello, the player mentioned is me! As you can see, I do have an account here that predates our game together. My discord name and dndbeyond name are also very similar, though not the same.
I bought TTS as per your request. It is a crappy interface and I am not going to play D&D on it. I would like to make a few things clear.
First of all I have no hard feelings about you banning me from your game. It was the first session, and as I said, TTS did not work out at all for me.
As for the permission thing, every time I tried to find a place at the table, I was told I dint have the permission to do so, or something in that vein. Naturally I assumed the default role for new people entering was observer, this is why I thought I needed to be promoted to the player role.
This turned out to be wrong, the other players at the table were able to let me know that I had to select a team to be able to join the table. It was odd.
As for me doing things you dint know about, once I was able to be join the table, I started exploring the objects on the table, trying to select a character token. As per your rule, I made sure not to go anywhere near the flip the board button.
I am not in cyber security. However after you let me know of your background in cyber security, I let you know that I found that cool, and that I worked with cyber security in an IT company, I was actually tech support.
You did mention to me that something was sent to you, you did not specify what, beyond saying you thought it was an attack.
Let me be clear, I did not intentionally send you anything. However I did ask you more information as perhaps I unintentionally sent you something. I asked you specifically what IP sent you the attack as you were monitoring your firewall from what I understood. I wanted and still want to confirm that my computer did not send you something.
I scanned my computer thoroughly several times during the week, with a few softwares, and did not find anything on my side.
Now that I know that the IP was from Spain, I am relieved, I now know it was not from me, as I am from Canada. Of course I dont expect you to simply take my word for it, as VPNs are a thing.
While I appreciate you advising the community, rightly so, to verify new members, I believe this was either a misunderstanding or you jumped the gun and blamed the new guy for something that looked like an attack.
I hope yourself and your players have a great campaign.
I do realize that I probably jumped the gun a little bit. There were several things that gave me a red flag. I realize it was probably all coincidence. But, at the end of the day. My players felt safer, I felt safer. It wasn't anything you did yourself, I don't think. It was the circumstances following that. But, its fine. It was probably just a misunderstanding on my part. I have a degree in Information Technology and Cyber Security. There were several things happening all at once that made me suspect you. At the same exact time, another computer on my network had just been duped into a Ransomware, and it of course came from Spain. This happened pretty much when you entered discord and my server, and it started glitching out my end of the game, which eventually kicked all the players out. That is what sent the red flag to me. But, clearly it wasn't from you. I will say now that I apologize if I made you feel shunned or accused. There were just a lot of things happening at that exact time that made me suspect you. Plus you said you knew something about cyber security, which further deepened my suspicions. Im glad you took the time to bring this up. This gave me an opportunity to address it and resolve it. That being said, I need to replace a player from my group. You are welcome to bring your "cooking" class and give that a go again, if you want. I thought the idea you presented was pretty cool actually.