You won't get an answer on this. Except maybe, that "everything is safe, no one can cheat, fraud or scam" and that there are regularily "security scripts" managed by the "security team". Only to find the other day out that the russian robbed your CC.

No $ for cheats.

Well, absolutely correct. In a game where cheaters do whatever they want, your credit card is not safe. Of course not.

I can confirm that no cheats or hacks can be applied to our game. Our game server is secure against any penetrations or attacks. 

Recently we have identified the number of players that were violating our Terms of Use. However, they didn't use any cheats and they have obtained their units in a fair way. 

If you guys are so concerned about your CC info, I suggest you do what others do and use a prepaid card or even gift cards. If you guys look at the payment screen other options for payment are available besides paypal or a credit card. 

Malibou's Most Wanted

Frank Connett said:

 No other BH that has been in existence on this server could have ever taken down so many Presidio's in such a short period of time say an hour as they did?

nobody would want to, even though this is a combat game we still have a balance we have to watch out for, 

if you bend to one side to much you will find that it damages a part of the game play, those that "respect" how the gaming is  

They know the importance..

RuAL's leader doesnt really have that respect, and what ive heard he didn't have it in Ru platform either 

However, what is misunderstood here is that bots are not magic, nor do they crack anything. They simply automate tasks, which is almost the same as having live players. The difference between a bot and a live player is that a bot can't be bargained with. It can't be reasoned with. It doesn't feel pity, or remorse, or fear. And it absolutely will not stop... ever, until you are dead! ;-) This means that the only real abuse with bots comes from running a huge amount of alts, that a living person would be unable to run. Now, this is an abuse worthy of swift action and harsh punishment, but it is not a security vulnerability, and - from all that was said by you and Plarium on this issue - I have a feeling that this is exactly what is happening here.

Look at the prize ranking, they have LH-automation too ... so the script is obviously more complex than the common Automation scripts. even without that lh-automation they could build up thousands of accounts with each several million offense to burn in a couple of months, simply by doing nothing.

And i want to say it again: even if we Keep on reporting bots to the Support, they can create more bots at one day than we can Report. that will go on forever and Change the game.

players will start to use their own scripts or quit the game. if everyone uses these scripts, presidios are basically useless for example ... and you tell us thats no cheating? WHY???? just because your serverdata's aren't changed? thats pure sarcasm i hope ....

bernd said:

However, what is misunderstood here is that bots are not magic, nor do they crack anything. They simply automate tasks, which is almost the same as having live players. The difference between a bot and a live player is that a bot can't be bargained with. It can't be reasoned with. It doesn't feel pity, or remorse, or fear. And it absolutely will not stop... ever, until you are dead! ;-) This means that the only real abuse with bots comes from running a huge amount of alts, that a living person would be unable to run. Now, this is an abuse worthy of swift action and harsh punishment, but it is not a security vulnerability, and - from all that was said by you and Plarium on this issue - I have a feeling that this is exactly what is happening here.

Look at the prize ranking, they have LH-automation too ... so the script is obviously more complex than the common Automation scripts. even without that lh-automation they could build up thousands of accounts with each several million offense to burn in a couple of months, simply by doing nothing.

And i want to say it again: even if we Keep on reporting bots to the Support, they can create more bots at one day than we can Report. that will go on forever and Change the game.

players will start to use their own scripts or quit the game. if everyone uses these scripts, presidios are basically useless for example ... and you tell us thats no cheating? WHY???? just because your serverdata's aren't changed? thats pure sarcasm i hope ....

i agree  with everything you said

it is cheating, and if you can send the bot cords to plarium support so they can take action of the bots that are showing up then this can get fixed faster

PLARIUM is finally stepping up to this guys, Im not just saying that,

ive seen true facts of it by my own eyes

 But they won't I REPEAT won't interfere with our game unless WE ask them to look at something, ,

So if bots are coming up on your gaming events, bring them in, show them here, 

And as said please turn them in support, even if you have 10 tickets out already...

http://support.plarium.com/enpirates/Tickets/Submit/Step1/23

maybe bot the new bots coming to life, need to be noticed and need to be turned in, if you want the bot attacks to stop...

plarium will not get involved unless we ask them to and give them what we want ....

bernd said:

players will start to use their own scripts or quit the game. if everyone uses these scripts, presidios are basically useless for example ... and you tell us thats no cheating? WHY???? just because your serverdata's aren't changed? thats pure sarcasm i hope ....

You're twisting my words. I never said that it wasn't cheating, but that it's not hacking. This topic was started with concerns about the safety of your credit card data, and I addressed that.

If I wasn't clear enough, here: bots are a way of cheating, same as alts, but on a massive scale.

Crowbar said:

bernd said:

players will start to use their own scripts or quit the game. if everyone uses these scripts, presidios are basically useless for example ... and you tell us thats no cheating? WHY???? just because your serverdata's aren't changed? thats pure sarcasm i hope ....

You're twisting my words. I never said that it wasn't cheating, but that it's not hacking. This topic was started with concerns about the safety of your credit card data, and I addressed that.

If I wasn't clear enough, here: bots are a way of cheating, same as alts, but on a massive scale.

As for LH-automation, it all depends on how complex the strategy is. It might actually be simple to teach a bot to do it, but without knowing the strategy we can't really know.

Sorry Crowbar but you are wrong. Automation of the items can only be achieved by injecting code into the software. An action which requires unauthorised access to the software = hacking.

It's a separate issue from credit card information but doesn't bode well for server security and that leads to obvious concerns.

Finding the information within millions of lines of data is no easy task and the request for details is to narrow down the search area. Obviously the servers' automated data check isn't designed for, or up to, the job in hand.

Crowbar said:

I am not wrong. The game runs in a flash client that communicates with the server. If you figure out how the client sends its commands, no injection nor anything similar is needed. You simply send the same requests that would normally be sent by the client. To the server, this is indistinguishable from an ordinary player normally playing via the client.

And, since the client is practically open source, you can mimic any kind of encryption that might be protecting this communication.

To produce items on the scale we have seen would require automation of the requests and on a multiple basis to have so many "members" building so quickly?

The lack of diary scores isn't correlated against the troops available / resources required?
That would imply also that the limit on lighthouse prizes enforced on "normal" players is being manipulated to achieve the recent scores?

It is also impossible for the "normal" player to hide eleven buildings behind the stronghold but these "bots" seem to be able to do this.

If you figure out how the client sends its commands, no injection nor anything similar is needed. You simply send the same requests that would normally be sent by the client. To the server, this is indistinguishable from an ordinary player normally playing via the client.

Alyona Kolomiitseva said:

Crowbar said:

If you figure out how the client sends its commands, no injection nor anything similar is needed. You simply send the same requests that would normally be sent by the client. To the server, this is indistinguishable from an ordinary player normally playing via the client.

You're right. And I would add that even if you do that, you can't do anything except the authorized actions that could be performed via game client.

So why do These bots have no raidpoints and so much prize Points?

and you say it would be ok if i start 2 k alts today and run them via Automation, because all they can do is the same a normal Player can do .... so in 3-4 months i can burn 2 k accounts for attacking? and all that is cool for you because your game is safe then and all the stupid Players can still give you their Money?!

sorry i cant believe these bots used to "log in" daily (for what? they didnt do raids at all ...), so them being inactive is no real proof for me ,especially as some of them liberate themselves now after being blocked more then one week. Nobody of us knows which tool is used by RuAl, so nobody can say for sure that These accounts can be banned at all.

the only Thing i can see ingame is that plarium has shut down the "real bots" which were useful for us Players, so most of us cant get enough ressources now anymore. Rual wont care, their bots didnt raid at all.

So as we all cant trust Plarium anymore we want to know which / how many bots are banned - or at least an Explanation why those informations cant be forwarded to us. We see no Need to protect the privacy of non-human bot-accounts.

As of July 24th, I was hacked - I have been using paypal and players, including European players (euros used) tapped into my account. So far the game has done nothing. Paypal says I gave permission to the game to charge me whenever anything is bought. So I am not getting help there. The only hope I have is my credit card who notified me of the hacking in the 1st place.

The owners of the game make money off the buying of virtual items. Yes, they got money items purchased thru my account by someone else. But in the long run, they will get less money from me in the future.

A warning to others, when the box asks to remember you and what way you are paying, don't click it.

I am thinking of prepaid debit cards, but I am not sure what the game will accept. I see 2 prepaids accepted - they are not available to me. So I am leary of putting out money for a prepaid card that may be rejected by the game.

I'd like to bring up a point here on this.  I feel much the same as Crowbar.    I don't want them to remember my paypal info.  I have to "uncheck" the box when I use paypal to purchase something.  EVERY TIME?  Really?  How about reversing that automation and allowing me to "check" the box if I want to be remembered?

tso:   " A warning to others, when the box asks to remember you and what way you are paying, don't click it."

crowbar: "This is good advice. Personally, I have no idea how safe the game is from real hacking, so - despite the fact that my password is very strong - I never link my PayPal to the game. Yes, it's a bit less convenient to buy rubies that way, but convenience should never be put before security"

Also someone said  "Giftcards"  I used to use them a lot more often.  For security it's the way to go if you can get one the game accepts.  imo