Jagex_Weath

I've secured the account for you. I can see that you've submitted a recovery for it and this should be granted in a short while by our support mods.

Unfortunately, it looks as though the email that you had registered on the account is not as secure as you had hoped. The hijacker used this email to recover your account (rather than going through the manual recovery system). I recommend taking some time to secure your email and/or create a new one that is not affiliated with anything other than your OSRS account. I'd also recommend checking the email on a website such as haveibeenpwned, to try and identify how it was leaked.

I've begun the process of tracking any wealth that was taken from the account. I'll ban any hijacking/real world trading accounts that have received or sold the wealth. I have also made the anti-hijacking team aware of your account so they can fully investigate the person responsible for the hijacking.

Yep that's what I mean by unknowingly giving them his login info

No but it would be fair to say that the "hacker" was given the password if they used it to access the database

I genuinely have 0 knowledge of how they're stored or secured so wouldn't even be able to guess

You can unwillingly or unknowingly give something away, I haven't at any point said that the account owner did so with the intent of allowing third party access. If our password dadabase was accessed by someone who has the admin username and password, it would be a fair statement that someone gave it away somehow

The hijacker logged into the account without changing the password so whether OP did it knowingly or not, he did give out his login info

There's no proof I can post without giving out sensitive information

He gave the hijacker his username and password

Here's some of the evidence from your in-game chat logs:

WHAT?

GUESS IT COULD BE

LOL IDK HOW MUCH TO ASK FOR IM DOWN 45MIL ATM SO IDK MAKE OFFERR=-P

SOUNDS FAIR

REAL LIFE NAME TO BTW=-P

NOPE NEVER BEEN ASKED

COMPLIMENTS BUT NEVER BEEN ASK

OK SO BUY A BOND THEN WHAT

K BRB

OK MIND SHOWING THE 200M?

NEVER SEEN MORE THAN 60M

NOPE

ok

redeen convert or what

says i gotta log out lol

ok got it

ok

ok trade

is there scam involving names?

said pay 200m for my name and gave me bond

xferred to 126 then to there lvl 58...

she wants urs says 1b

lol

u hear?

800m for urs

is what shes offering she says

she says name any price.

if i get paid and show you its legit..would you do it?

yah i think its scam idk

shes asked me to buy bonds.. etc no delivery

... Read more

None of them were hijacked through the recovery system.

Advice I'd give for your long lost account would be to supply as much info as possible. Giving us a rough creation date and location really helps too for long time dormant accounts like that

Just to clarify, we have a policy of not returning names to accounts where the player has been hijacked through their own doing. This is to prevent people from faking hijackings in order to sell names and then recover them at a later date.

The lack of Authenticator is relevant in this case because the name was changed from within the game. It also helps to highlight that OP had not taken advantage of the security advice and systems that we have in place

Hey, I've sent an inbox message to your RuneScape account.

Hey, I've sent an inbox message to your RuneScape account

Hey, I've sent an inbox message to your RuneScape account.

That name hasn't changed accounts for years.

It could make it appear as though you have drastically changed locations but we wouldn't use that alone to conclude that you're not the account owner.

Possibly because the original owner wanted the wealth but had no interest in keeping the account.

I followed all the wealth that left the account and none of it has been sold.

Obviously only OP and/or the creator would know the answer as to why they recovered it again, rather than just registering OP's email back on the account. I can only speculate that it was an attempt to make it appear as though the OP was the one recovering the account from the original location.

The IP address for both this recovery and the first one that started this chain of events are identical and the OP is the last one to log into the account. If we had indeed given it to a hijacker, I'm not sure how the OP would have managed to regain access to the account.

Because the account creator was in control of the account

I've seen quite a few comments in this thread (and the last one) from people who are both confused as to what happened with this account and concerned that they might find themselves in a similar situation in the future. I'd like to hopefully ease some of those concerns by providing a timeline of what happened with the account and some limited details that will hopefully explain why I came to the conclusion that the account was not hijacked.

At the start of the month, we granted a password recovery for the account. This recovery contained very strong information, such as passwords, contact information and a good geo-location match with the account creation.

After reading OP's first post, I looked at the account and noticed that, on the day that OP first appeared on the account:

• The login location moved 5,000 miles in 10 minutes
• A new email was set on the account
• A new password was set on the account

I then check...

Read more