It’s stealing them from the site, so it doesn’t matter if it’s inactive or not. If you’re thinking about temporarily overwriting with an empty baseplate:
So Ripull Minigames is apparently on sale for $150.
Lol I’m insulted by that price.
1 Like
If they were smart, and I bet they are, they have probably created a way to just scrape the games page and download basically all games someone would ever want to buy and now have a massive library. RIP.
[quote] Can the developers who had their work showcased as examples of what the exploit can do verify if the scripts/UI design etc. are actually valid?
Examples of ‘copied’ work:[spoiler]Mad Games:
External Media
WIP (Stylis studios):
Reimagined (Zolarketh):
External Media
[/spoiler] [/quote]
Yeaaa boiii.
I don’t really have an exact understanding of how was this pulled off, but hopefully not because of, say, password being stolen of a Roblox employee account that has access to that sorta stuff?
Is this privileged access to the place? Can they make changes to the place?[/quote]
If the password was stolen then it could’ve been at RDC maybe? I imagine admins logging in and someone running some spoofing program or so? [Just an assumption, admin stuff might not be linked to Roblox accounts; idk … might be my paranoia]
[quote] [quote=“Revolucien” post=188785]Can the developers who had their work showcased as examples of what the exploit can do verify if the scripts/UI design etc. are actually valid?
Examples of ‘copied’ work:[spoiler]Mad Games:
External Media
WIP (Stylis studios):
Reimagined (Zolarketh):
External Media
[/spoiler] [/quote]
Yeaaa boiii.
I don’t really have an exact understanding of how was this pulled off, but hopefully not because of, say, password being stolen of a Roblox employee account that has access to that sorta stuff?
Is this privileged access to the place? Can they make changes to the place?[/quote]
If the password was stolen then it could’ve been at RDC maybe? I imagine admins logging in and someone running some spoofing program or so? [Just an assumption, admin stuff might not be linked to Roblox accounts; idk … might be my paranoia][/quote]
ROBLOX gave us all information on how to install VPN clients for security reasons so I think staff used them as well. Besides, I remember reading staff accounts with admin priviliges have 2-factor authenticaion.
At any rate there’d be even more havoc you could wreak if you had admin privileges.
I wonder what response we’re going to receive to this.
flashback to Stealth Pilot getting terminated
Ey?
well fuck.
can someone tell me if they took my places as well?
2 Likes
If they were smart, and I bet they are, they have probably created a way to just scrape the games page and download basically all games someone would ever want to buy and now have a massive library. RIP.[/quote]
Where did you find this?
They’ve got access to all previous versions of games, all closed games, all assets
If they were smart, and I bet they are, they have probably created a way to just scrape the games page and download basically all games someone would ever want to buy and now have a massive library. RIP.[/quote]
Where did you find this?[/quote]
This is taken from the Vermillion forum, David
[quote] So Ripull Minigames is apparently on sale for $150.
Lol I’m insulted by that price. [/quote]
Based on this, and probably other games are being sold at this price of higher, is Roblox able to file legal charges against The0neAnd0nly? I would figure that he has made thousands from people buying places to try to take some of the profits of the original creators.
ROBLOX would have to spend more money to sue him than they’d gain from him, and what if he isn’t in a country that he can be sued in (i.e. China)?
1 Like
We are investigating as the absolute top priority. Any leads anyone can give would be helpful too.
I took some time to discuss the case with the guy who is offering it, The0neThe0nly.
As you may expect, he is in this for the money.
His main reasoning is that he believes Roblox’s exploit reward system is totally flawed, and that hes getting scammed because he never received any boss white hat. He reported an exploit to ConvexHero, which lead to the server console’s code execution being disabled for a month, and he was never rewarded. He also reported some DLL injection, and when he reported it, he was told it “wasn’t important enough”, but when it leaked a week later, they went forward and patched it anyway.
According to him, he is also responsible for the case where Roblox’s account suddenly had friends. He told me that he managed to get the CreateFriend/BreakFriend Web API working because he got the accessKey that is on the API.
How he did that remains confidential from me, though my best guess is that he somehow managed to extract it from Roblox Studio’s Memory.
2 Likes
That’s false, unless there’s another time I don’t know about. RenderSettings was the one that did that, whoever was owner of that account at the time (it’s changed hands a couple of times, I really don’t know who it was) used the bytecode exploit back when that was a thing. He got CoreScript access on the server and proceeded to use the (at-the-time) new in-game FR feature to have ROBLOX send him an in-game friend request, which he accepted. This lead to it being disabled for security reasons. As far as I know.
That’s false, unless there’s another time I don’t know about. RenderSettings was the one that did that, whoever was owner of that account at the time (it’s changed hands a couple of times, I really don’t know who it was) used the bytecode exploit back when that was a thing. He got CoreScript access on the server and proceeded to use the (at-the-time) new in-game FR feature to have ROBLOX send him an in-game friend request, which he accepted. This lead to it being disabled for security reasons. As far as I know.[/quote]
It was very recent.
I think Roblox still has 1 friend.