|
| 16 Nov 2014 12:44 PM |
All jokes aside, this is a pretty serious threat, not just to the security of every ROBLOX account, but to the security of a vast number of computers and their users. So let's go over what RedBox is, why it's bad, and how you can protect yourself(and others).
Redbox is the exploitation of a bug within Merely's Group Enhancer. By putting in specific JavaScript code into a wall post, they can make a red box using very large font size on the impact font, and they can link it to any website imaginable. Unsuspecting users accidentally click the link detailed in the "red box", thus taking them to the website linked. While it can be used to link a person to any site, good or bad, RedBox is primarily being used to link users to extremely malicious websites, usually containing adult content. These sites will download onto your computer a number of malicious programs. Among this malaware incudes key logs, trojans, and other computer viruses. It's not as simple as not clicking on the box, either. It can be as little as moving your mouse over the object that triggers the link. And because these red boxes can span an entire page, it can be extremely difficult to avoid mousing over even the closest edge.
So you're probably wondering to yourself, "How can I prevent this?" There's two major ways that you can prevent being affected by the bug. The first is disabling Merely's Group Enhancer. You can see why in the link above. You can also do this by entering incognito mode(Ctrl+shift+N). This will automatically disable ALL extensions. This prevents Merely's Group Enhancer from accidentally translating the javascript into an interactable object. The second is going to chrome settings, and disabling JavaScript. This may break quite a few websites for you, but it will allow you to keep using Merely's Group Enhancer relatively safely, just without links.
As for keeping your members safe?
The simplest answer is awareness. By posting to your shout information on what RedBox is, or even just post to the shout for your members to disable Merely's Group Enhancer ASAP, you can help them be more aware of the threat. This exploit is only a threat to people who aren't aware of it. By spreading awareness of what it is and how to avoid/prevent it, it's absolutely possible to keep everyone safe.
What about preventing others from posting these links?
You can't directly prevent it from being posted, but because most of the accounts that post RedBox links are alts and aren't already in the groups they attack, it can be relatively simple to prevent the links from spreading. First, if your group is public, you should highly consider making it private. Then, as an added precaution if your group is private, make it so that you need to be of a certain rank in order to post on the wall. This will prevent the vast majority of RedBox links being posted. People won't risk the deletion of their main accounts, so they'll stick to alts primarily
If you suspect that your computer has already been compromised, please view this link: http://www.roblox.com/Forum/ShowPost.aspx?PostID=149826764
That link details how to know if you're affected by this exploit, and also details what to do if you find evidence you are affected.
tl;dr -RedBox is an exploit of Merely's Group Enhancer -If you don't disable Group Enhancer you'll get KL'd and you get sent to a nasty website -Spreading awareness of what RedBox is, is the easiest way to prevent your members and other people in general from falling to it -Prevent newer accounts and newer members from posting on the wall or even joining if you want a good way to protect your own group.
With that, I want to take another step towards this threat being eliminated. This thread will also serve the purpose of being a petition for ROBLOX to devote immediate, direct, and total attention to the permanent fixing of this devastating exploit. It's not only a threat to the security of ROBLOX accounts, it has the potential to threaten bank accounts and PINS, credit card information, and overall financial and internet security. So we request ROBLOX puts all of their resources to solving this major issue.
Signed, WIJ Lieutenant KK141 |
|
|
| Report Abuse |
|
|
| |
|
Voile
|
  |
| Joined: 19 Dec 2011 |
| Total Posts: 7598 |
|
| |
|
|
| 16 Nov 2014 12:48 PM |
| It doesn't KL you, it just takes you to adult sites. Lol |
|
|
| Report Abuse |
|
|
HarrySG
|
  |
| Joined: 26 Sep 2009 |
| Total Posts: 5705 |
|
|
| 16 Nov 2014 12:48 PM |
thankyou
frigid is as cool as ice - harrysg 2014 |
|
|
| Report Abuse |
|
|
| |
|
|
| 16 Nov 2014 12:49 PM |
@Sav The RedBox itself doesn't Keylog you, it just takes you to the adult content site. However, that site may be loaded with malaware, and there's plenty of reports of KL's happening already. As I said above, it's the site that downloads the malicious content.
Goodness Gracious that Booty is Spacious! ( ͡° ͜ʖ ͡°) |
|
|
| Report Abuse |
|
|
HarrySG
|
  |
| Joined: 26 Sep 2009 |
| Total Posts: 5705 |
|
|
| 16 Nov 2014 12:50 PM |
yeah, and it won't be too long until someone changes the site to a keylog
frigid is as cool as ice - harrysg 2014 |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 12:52 PM |
what an original and informative post that was totally not posted about an hour ago and deleted because it was probably too detailed
cri |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 12:53 PM |
It's not entirely original but it focuses more on protecting yourself and others than what the actual technical information is. I originally had it linked in this thread but it got deleted so I removed the link. This is also a petition to get ROBLOX's attention. And it's here because your post was deleted, probably because ROBLOX thought the JavaScript you had was an offsite link.
Goodness Gracious that Booty is Spacious! ( ͡° ͜ʖ ͡°) |
|
|
| Report Abuse |
|
|
Vulturite
|
  |
| Joined: 08 Sep 2013 |
| Total Posts: 4107 |
|
|
| 16 Nov 2014 12:55 PM |
| Very nice and informational post king. Thanks mate. |
|
|
| Report Abuse |
|
|
| |
|
|
| 16 Nov 2014 12:58 PM |
| Does it take u to a popcorn site? |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 12:59 PM |
If so show me a redbox post pls
loljking.
but srys does it take u to a popcorn site? |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 01:00 PM |
:|
So basically, ignore every redbox you see on ROBLOX. Got it, I will continue to use my group enhancer normally. Because without it I might as well quit ROBLOX.
-The DarkenedDestiny |Add 5k| |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 01:00 PM |
It does. Apparently one or two very isolated and unique ones have taken people to screamers, but the vast majority goes to adult content sites.
Goodness Gracious that Booty is Spacious! ( ͡° ͜ʖ ͡°) |
|
|
| Report Abuse |
|
|
|
| 16 Nov 2014 01:00 PM |
All hail the glorious red box!
Lord of all things, breaded and unbreaded. |
|
|
| Report Abuse |
|
|
WlNDCROSS
|
  |
| Joined: 16 Jul 2014 |
| Total Posts: 465 |
|
|
| 16 Nov 2014 01:03 PM |
i deleted group enhancer
is that safe, too?
"Desperate needs comes for desperate measures. Hail SWB." | 2banez is cool |
|
|
| Report Abuse |
|
|
Fanciest
|
  |
| Joined: 22 May 2014 |
| Total Posts: 34 |
|
| |
|
|
| 16 Nov 2014 01:07 PM |
| Is there a way to combat red box? |
|
|
| Report Abuse |
|
|
| |
|
|
| 16 Nov 2014 01:15 PM |
You can prevent it by following the steps outlined above, and you can help lessen its threat by informing others. Awareness is the best weapon.
Goodness Gracious that Booty is Spacious! ( ͡° ͜ʖ ͡°) |
|
|
| Report Abuse |
|
|
Deraktus
|
  |
| Joined: 03 Nov 2012 |
| Total Posts: 1715 |
|
| |
|
|
| 16 Nov 2014 01:17 PM |
since I don't want to make another thread here is the technical explanation behind the red box
http://pastebin.com/fjD6TLcU
only way for red box to go away is if merely fixes his extension |
|
|
| Report Abuse |
|
|
alexto56
|
  |
| Joined: 11 May 2012 |
| Total Posts: 3978 |
|
|
| 16 Nov 2014 01:20 PM |
"isolated and unique ones have taken people to screamers"
What's a screamer? |
|
|
| Report Abuse |
|
|