After receiving this email I noticed my place had been updated (not by me) and I found a one line change.
Thanks for the heads up.
2 Likes
kind of curious what that line was
23 Likes
Were inactive places affected?
1 Like
I assume people that didn’t get a mail (and have one (that’s verified) linked to their account) aren’t affected?
(quickly took a look at my Develop page to see which places were updated since the 7th and checked their Version History, and it seems nothing got uploaded to my places, which is good)
If it’s not sensitive info, what was the change?
1 Like
This is what broke Jailbreak a week ago. I made a thread about it here [Serious!] Jailbreak players cannot purchase items
I never gave an update because I wasn’t sure how public Roblox would be about this security issue. An exploiter updated Jailbreak with some code that inserted a module giving them a full access command bar in servers. We only caught this because they just happened to make a mistake. They accidentally deleted one character from our code which broke some in game items.
After investigating this with Roblox, and with us both blaming each other for the game being broken, we quickly discovered that it was a third party. Somebody had updated Jailbreak and it wasn’t us.
28 Likes
As far as we know, this only impacted active places; additionally, for the exploit to work the place had to have been reasonably popular.
4 Likes
Hah, I saw a bunch of people on Twitter saying this email was fake.
With that said, DO NOT share your place file hashes. If you share the hash, your place can be stolen.
3 Likes
The guy who hacked into my game was nice c:
I checked my game and no code appears to have been altered or added, beyond this comment.
Still, it’s a bit scary that they were able to do this.
13 Likes
Are our games compromised? @Nightgaladeld
1 Like
alright ill have to temp uninstall it
thanks for the heads up,
kinda worried lol there’s 2 edits on that day to my game
Why @WebGL3D? Is there a way to disable this in extension preferences without disabling the extension?
1 Like
It is probably to lower the amount of people stealing assets. Animations used to be able to be stolen as model files this way.
I have a lot of cleaning and game reduxing to do then; I am not scanning one of my primary development places however. When I joined the team to actually get hands-on access to the place, I ran a couple scripts in the command bar for debugging purposes and discovered the existence of 1.9K+ scripts with brutally inefficient code. We don’t update it anymore since it’s old and we’re looking for something new. Given the circumstances we’re in, I highly doubt our game was unaffected.
cc @doser225
Damn, this sound scary not even joking. I’ll be sure to check out my places to see whether they have been affected. Thanks for letting us know!
1 Like
What I’m interested to know is why said individual or group of individuals seem to only have modified code for themselves, not to steal and leak games (yet). Leaving behind creepy messages too, surely gives me shivers.
2 Likes
Internal members of the forums should see this thread as it has some nice information on who is affected and so fourth.
1 Like
Thanks, I’ll ensure that Captivator hasn’t been compromised. I always edit my games on a local file on my computer so I can just upload the most recent file to wipe any potential changes the third party could have made.
1 Like