Run an antivirus scan on your computer, clear your cookies, and change your roblox & email account passwords. Also enable 2FA with a mobile authenticator app if you haven’t already. Do make sure you don’t have any weird chrome extensions as well.
I do not download Antivirus apps.
I did not accept cookies from malicious sites.
I have 2FA enabled.
I’ve read over the extension source code, there’s no reference to external servers nor does it access your cookie/auth token. The extension - based on the link from bitsplicer - is unlikely the cause.
Yes, It does not seem suspicious.
I do not download Antivirus apps
This may very well be the problem.
Pop your roblox account email into https://haveibeenpwned.com/ and check if there are any results. If that doesn’t return anything, it really wouldn’t hurt to do a virus scan on your computer.
That’s good news. You probably got cookie logged, then. Still, of course, change your passwords and everything like that.
However, one thing still worries me. You said your hacker logged in from a VPN in Moscow, Russia. I’m gonna go out on a limb and say you don’t live in Moscow. If that Russian (or Russian VPN using) hacker had your cookie and attempted to login to your account from Russia, the cookie wouldn’t work. This is because Roblox cookies are region-locked as an anti-botting measure.
So maybe he got in some other way, like with your password.
i have 2FA on… how would he get in my account?
Email 2FA or authenticator app 2FA?
i think that your cookie got stolen by visiting a suspicious link. changing the password should change it
or just go to your browser settings and delete all current cookies, as it could have stolen other cookies.
Delete Cookies
Chrome:
Browser Settings > Privacy and Security > Clear Browsing Data > Click Clear Data
Change Password
Roblox Settings > Security > Change Password
How to prevent something like this in the future?
Don’t visit any unknown links, or download something suspicious.
Put URLS and Downloads into VirusTotal before actually visiting/downloading them.
before downloading an extension, check the reviews to make sure that its legitmate. If you see too many 5 star reviews, it may indicate that they’re bots.
Make sure you have a PIN on Roblox enabled. So the hacker won’t be able to change anything until they know the PIN.
Have 2FA Enabled. The Hacker won’t be able to actually login until they know the code from the email.
I Recommend not putting your phone number on your account. People could SIM Swap.
Change your Password every Month, 6 Months or every Year. Using a Password Manager should help.
This is my currrent Security Setup/Things i do before actually doing them. Hopefully this helps @kernelvox
Auth app 2FA, Isn’t it prefered?
That’s kindof how cookie logging works, it bypasses 2FA. Cookies are what allow you to stay on your account without logging in again, but if someone else gets the cookie then they are in your account.
that sucks, i use restore old server list to track down the opps but whatever, everything like searchblox ends up like this anyway
if its really causing this thats unfortunate
clear your cookies and click this in settings
I’ve logged out the suspicous accounts, And i’ve found the username of the hacker.
report
Having 2fa does nothing, Cookies bypass 2fa, When you log in, it gives you a cookie to remember you so you don’t have to log in everytime you visit roblox, When someone uses your cookie, it appears as if its the same session.
Didn’t they patch Cookie logging?
Well, they really just can’t, They can detect your location however this can be easily spoofed, and they dont do this as for mobile devices, they can move around alot therefor making it so they cant patch it