I’m sure you’ve heard of it. But how are the most common cases done? how would you prevent getting cookie logged? Well to get knowledge on that you’re in the right place!
I’ve noticed a rather increase in traders and developers getting cookie logged within a finger snap. I’m here to make people aware on what to do in possible logging cases, how to notice if someone is attempting to log you, how to handle the situation as safely as possible and above all, prevent yourself from getting logged in the first place.
Do’s & Don’t s
I’ll be starting off with the most important things of all, some things you do not want to try and just avoid so you won’t get logged. This also isn’t meant as a scare to any files but it occasionally happens.
So first off, beware of who you commission/commissions you. You DO NOT want to end up sending them a file that states
copy as HAR when you right click it. These files contains a bunch of info regarding your activity of your web browser. Yes this does include cookies.
Do not touch it, copy anything in the network section, or to make it clear; If you got no clue what the console does (F12) don’t even enter the console or any of the related sections to adjust or take stuff from it.
Secondly, Don’t download sketchy stuff from the internet(this includes from social platforms such as Discord, Facebook, etc).
The risk of having a cookie logger in a file you download is always there, there’s no escaping that. Just be safe and only download from sources you find trustful.
and finally, Don’t ever touch your ROBLOXSECURITY or RBXID code without proper knowledge on them. Yes these codes are included in the HAR file, no it’s again not something to just give to people. simply Don’t EVER share it.
If you got no clue what any of the things in the screenshot below are used for or how it works, close it immediately. The web console/inspector or any of the tabs included in the screenshot are not something to mess with without proper knowledge on them.
So we’ve discussed what you should avoid doing when we’re talking about possible cases of getting logged, but what should you do even in cases to prevent being logged/were logged? there are a couple possible options for this, eventually most of them lead back to one single outcome.
firstly, whenever someone even mentions or asks you to copy files as a HAR and send it them, report them to the appropriate platform the user sent the message from and action should be taken. People asking you for these files are 10/10 trying to scam or even take over your account.
If the user contacts you on a different platform there isn’t much roblox can do as there’s no proper way on knowing if the user sending you the request on e.g. twitter or discord is the same user as they claim to be on Roblox. Of course you could always try and report it to Roblox, It wouldn’t do any harm to do so and it’s even recommended if you ask me.
secondly, If you’ve recently been logged but haven’t sent anyone a file from the console menu or even downloaded anything from anyone you might want to check your add-ons of your browser. There are a lot of fake Roblox+ plugins, these should be avoided from installing. Beware with what you plug into your browser, as neat as the add-on might look.
I’ll be linking the real Roblox+ and BTRoblox links for both Chrome and Firefox below for the ones that want to be safe and sure about downloading anything.
to top it all off, Clear your cookies once in a while, I know it might seem like a hassle to have to log back into your account again when you do so but it’ll be worth it in the end. alongside of it being safer to do at least once every month or 2, it’ll also help with keeping your browser clean from unwanted cookies.
clear your cookies once in a while, It’s really worth it in the end to keep your browser clean, check plugins on authentication and just watch out with who you have contact with and what you download. In the end report someone that you suspect to be a logger to the proper platform’s support.
Personally I’m not a fan of Chrome due to it’s high CPU usage and the amount of memory it eats and certainly not of Opera due to it’s past activity. Firefox is more of my favorite for various of reasons. I’m currently using Firefox Developers Edition as I’m engaged a lot in web/app development. On top of that has Firefox itself a rather handy tool for tracking activity and making sure you’re browsing the internet safely (read more about it here)
Privacy is of importance for me, and Firefox really helps me with that. As shown in the picture two of my accounts have been breached in total, on top of that does Firefox instantly send me an automatic generated email whenever any account associated with the email i linked it with has been publicly breached.
As you can see, these 2 breaches were fairly old (and of really unimportant accounts for me, long live spam email accounts). But in the end the choice is yours and you should use whatever browser you’re comfortable with.
Useful Community Tips/Additions
What is a "HAR" file?
How to reset your RBXID, ROBLOXSECURITY and RBXSESSION
What to do when your valuable items/robux have been stolen
Don't run anything you're not familiar with
Check the link before opening it in your browser
Trusted Roblox Extensions
I hope this brought you some knowledge around keeping your accounts safe and what you should and shouldn’t do. By all means do leave recommendations/tips in the comments and I’ll be updating the FAQ/Useful info section when questions/tips have enough support and need for answers or gives additional information that I haven’t clarified in the topic. Stay safe!