TSR: Still hacking YOUR community. Updated 11 April 2012 « THE TRUE FACE OF TSR: The dangers of visiting thesimsresource.com

March 17, 2011

TSR: Still hacking YOUR community. Updated 11 April 2012

Filed under: Uncategorized — Tags: ddos, denial of service attacks, Gnomes that hack, greed, hacking, information sharing, money, Petty. Bitter. Little. Man, the sims resource, thomas, thomass, trojans, true face, tsr — coconut @ 00:25

Full list of sites hacked or TOU attacked. I will update this list when/if I hear of more hackings, and update with any more details I find out about those already listed.

GOS ( False TOU report from TSR last year. Hacked again 16 Feb 2011. Lost 3 days posts, IP left was the TSR proxy. Site saved by Pescado, TSR FAILED to do much damage. Full Details on GOS forums. )
Reflexsims ( Now Blackpearl- Feb 2009. Toms countdown to their demise can be found in the FAIL article )
Gaysimsclub
Sims2artists ( Hacked 4 times, last 2 being Aug and Dec 2010. IPs left are a mix of the TSR proxy and random proxy servers. One of the admins IM, image sites and Email were also hacked. )
Natural Sims
Coconut’s LJ ( TOU report twice, private blog hacked once. )
Exnem ( Hacked 2009 – Tom admitted to this one )
Booty/PMBD/Maty ( DDossed countless times )
Simssecret
The Sims petition to EA ( Hacked and destroyed before it could be sent. TSR later shared the full names and emails of everyone who signed it. Former TSR manager admits that Tom supplied her with the data stolen from the hacked petition )
BuggyBooz ( MTS2 account hacked after she rightfully complained that Shakeshaft stole her meshes and sold them on TSR. Buggys meshes were deleted by Tom in an attempt to hide the fact that buggy was the original creator. )
Basicforsims
Sugah’s Place
SIMplyEdward ( Hacked 3 times. Ip left was the TSR proxy )
Coolsims ( Hacked 2010, site now under ongoing continuous attack Feb 2011 )
Bitethebullet ( Hacked oct 2010 IP was 74.55.11.66 from the TSR proxy, site now under ongoing continuous attack Feb 2011 )
Coloursims ( Hacked 2010, site now under ongoing continuous attack Feb 2011 )
Sunhairs Sms Creations ( Hacked 5th June 2010 – Forum deleted and the word c**ts displayed on front page )
Crazy Town ( Hacked June 2010 – IP traces to the TSR proxy. See comments for more details. )
Living sims ( Hacked Nov 2010 after owner refused to close the site and work on the TSR magazine )
Sunsetsims ( Closed due to false TOU report from TSR )
Coconuts shoutbox ( Dec 2010 – Not hacked but porn links left, IP’s belong to Atwa’s place of work, and Thomas. See screencaps. )
Awesims ( Hacked Jan 2011 – Site hacked and changed to porn, Emails hacked, nameservers changed, work site also hacked. Owner banned from TSR and falsly accused of piracy on both her site and on Sunset Sims. Site hacked after a false TOU report from TSR was ignored by her host. )
Adelevk ( Hacked Feb 2011 - Malicious content injected )
Sims Oasis ( Hacked Feb 2011 )
ashleycjul.so-pink.org ( Hacked Feb 2011, along with her box.net, mediafire, and photobucket accounts. Nasty pics posted )
nectere.net ?? ( As yet unconfirmed as a hack, front page says F**k off c**ts and nothing else, could be a hack, could be an upset site owner )
Neffretti 13 ( reported via shoutbox, have been unable to find this site to confirm. link now supplied on shoutbox. )
Sims 3 Musketeers ( Hacked Feb 09 2011. Site reports that everything was deleted. Site unaccessable just now, info available on Google cache )
Cherryblossomsims forum ( Ongoing. Under massive attack over the last few days Feb 2011. IP: TSR proxy )
Sherriesims ( Hacked Feb-March 2011? Unconfirmed, reported via shoutbox )
Sailfin ( Hacked 5th March, Goatse porn posted, board taken offline. Logs confirm the TSR IP appears heavily during the time of the attack)
Simbecile’s blog ( Hacked sometime between 8th – 9th March. Box.net account also hacked. Gross images posted. This site belongs to a 16 year old girl )
enayla’s personal site was hacked and malicious content injected. http://www.furiae.com
SunsetSims (New host) ( Injected with a virus in March 2012, under constant DDos to date )
Coconut ( Images of Tom & Pedobear, Levini screencaps hacked March 27 2012 )
Zveki ( Fake reports filed from TSR on all of HIS site files resulting in their deletion. Youtube hacked. Easter 2012 )
Dreamsims ( TS3stuffs ) http://ts3stuffs.blogspot.com/ 10th April 2012

If you know of any I have missed please remind me and I will add the to the list.

Updated 17th March – Simbecile’s blog update

In addition to her blog, I have now been informed that Simbecile’s box.net account was also hacked, and that “gross content was left behind” This is TSR’s MO. I am shocked and saddened to hear that Simbecile is a 16 year old girl. I understand that over at Blackpearlsims they are trying to recover her lost files, Simbecile is also known as Alfie on BPS, so if you have any files from either Simbecile or Alfie please contact her or blackpearlsims.

9th March 2011: Since I have written the last article it seems that more sites have been attacked. The latest being GOS , Cherryblossom sims forum, bitethebullet and colorsims. Crissi tells me that Cherryblossomsims forum has been under massive attack over the last few days. I do not know the nature of the attack as yet, but the reported IP is the same one that attacked GOS, which belongs to TSR. The same goes for Bitethebullet and colorsims, S1mOne reports that bitethebullet is also under continued attack since last week and the same is happening to coloursims. Bitethebullet was last hacked in Oct 2010, the IP of the hacker belonged to the TSR proxy.

***

If you know of a site that has been hacked/DDossed/TOU attacked please give them all the help that you can. You can help by suggesting alternative hosting, recovering any lost files if you have ever downloaded them, taking new item screen shots for those who have lost photo accounts, donating to their site if you can, linking to their new site if they have to change url or offering kind words, support and a friendly ear. These sites are the backbone of our community and we can not afford to lose them.

I have heard from SIMplyEdward , He was one of 3 forumotion sites that got hacked. His site was hacked 3 times. He has provided the IP: 74.55.11.66 This IP traces back to THEPLANET.COM INTERNET SERVICES. The same place as the TSR proxy, which is the paid proxy from the hide IP network, that was provided to Atwa as a gift from Tom and Per back in 2008. It was later provided to all main staff at TSR, for use with ‘trolling’

The proxy is part of the hide IP network and has 2 bands of IPs, one band traces to the UK with the hosts rapidswitch, ( Found on Gayles forum and involved in the hacking of sims secret http://tsr.mustbedestroyed.org/?p=462 ) and the other band traces to the US with the host THEPLANET.COM. ( The same trace as the proxy IP found on Toms account at MTS and the IP that hacked BuggyBooz account there. 70.85.179.186 )

I have a copy of this myself, and although that particular IP is not on it, the US trace is the same, so they may be using an older or newer version of the program. While it is notable that other staff do have access to this proxy supplied by TSR, they do not have access to the database or to the unencrypted passwords, Such information could only be supplied by Tom, Steve, Per, Johan or Micke.

Comments (34)

34 Comments »

Hi, coconut. I just stumbled upon your site accidentally several days ago when I was looking for a site where I can download Sims’ CC (weird that your site link came up in the googling list, but I’m glad for it. Seems like Someone up there is looking out for me).
I don’t think I’ve read your articles in the chronological order, but I think I get the gist of it. So glad to have the warning, but I feel sad to see how bad it goes.

Anyway, about the hacking, I’m wondering if there’s anyone we could report it to legally? I mean, my country don’t have much rule regarding internet yet, so I don’t know if this kind of thing could be considered as e-crime? If so, what’s the law say about it?

Thanks and I hope that the hacked sites would recover soon!

Reply: Hi ishy, I am so glad you found the site. Players like you are the exact reason why I keep on doing this. If I can just stop one person from being hacked, losing money or having their personal information shared than it has been all worthwhile!
As for reporting, they are based in Sweden, and they ARE breaking Swedish law. I do not know who to report this to, but someone who lives in Sweden would be able to better advise you.
-Coconut

Comment by ishy — February 3, 2011 @ 01:33
There were three of us at Forumotion that got hacked. BasicForSims, Sugah’s Place and, SIMplyEdward.

Basic and Sugah’s Place got the worst of it. The pictures, and MediaFire and, I’m guessing their emails. My site only got deleted/hacked. My PhotoBucket and MediaFire accounts were not touched. Actually, my site got hacked three times. The third time, they actually did me a favor.

Proxy IP address, 74.55.11.66 It’s out of, Dallas, Texas. BuggyBooz, found out for me. The name behind it, I honestly don’t remember.

Reply: SIMplyEdward, I can not thank you enough. I am so sorry to hear of the hacking of your sites. This IP traces back to THEPLANET.COM INTERNET SERVICES. The same trace as the proxy IP found on Toms account at MTS and also the IP that hacked BuggyBooz account there. The TSR proxy, which is a paid proxy, was provided to Atwa as a gift from Tom and Per back in 2008. It was later provided to all main staff at TSR. The proxy is part of the hide IP network and has 2 bands of IPs, one band traces to the UK with the hosts rapidswitch, ( http://tsr.mustbedestroyed.org/?p=462 ) and the other band traces to the US with the host THEPLANET.COM. I have a copy of this myself, and although that particular IP is not on it, the trace is the same, so they may be using an older version of the program. Thank you again for this information
-Coconut

Comment by SIMplyEdward — February 3, 2011 @ 10:03
EDIT: After a bit of research, I found out that proxy IP address is out of, Houston not Dallas. And, Basic did not get her site hacked into. Just her MediaFire and PhotoBucket accounts.

Sorry about that….

Comment by SIMplyEdward — February 3, 2011 @ 11:16
Another site that may be useful. http://www.ccmostwanted.com/report/report3.htm (and yes, Sweden DOES have cyber crime laws).

Comment by NotTelling — February 4, 2011 @ 01:02
I recently opened up my Chrome browser and one site that I had had open in a tab had this to say:
“Hi everyone. If you’re wondering where everything is, its been moved to my new site. My Photobucket, Mediafire, and Box accounts were all “broken into” and everything was deleted, except for a few pictures of my downloads, which were replaced with some really gross, disturbing images.”

http://ashleycjul.so-pink.org/page/3/

Comment by Shady — February 4, 2011 @ 06:21
Anyone wanna try call him?

+46(0)70-3000224

http://www.hitta.se/ViewDetailsWhite.aspx?Vkiid=fVXMe2yeDRtK4ZsN1GmAhw%253d%253d&Vkid=39852766&vad=tomas+isacsson

Reply: That is the TSR office address, not his home.

Comment by guybrush — February 5, 2011 @ 00:44
Hi coconut

Living Sims was hacked in November I just saw the little question mark and thought you were wondering

Reply: Thankyou, I was not sure
-Coconut

Comment by fashionista — February 8, 2011 @ 04:50
You mention someone called ‘Per’ in this entry. I don’t think I’ve heard of them yet. Who is it?

Reply: Per -The guy who does all the jobs that everyone else is too lazy to do, sort of like a technical dogsbody.
He does his own job as listed here:
http://www.thesimsresource.com/staff/Per%7CTSR/
and then he does Tom and Johans jobs. He is not the brightest star in the sky, bless him, so he does not see when he is being used.

Comment by SomeGuyJones — February 8, 2011 @ 10:38
Sites with quality and integrity earn members and respect, sites with crap and no conscience resort to hacking. Toma$$ and Co are shameless and disgusting. I feel newly inspired to donate to free sites, even ones I don’t regularly visit, just because of these renewed assaults.

Coconut, my hat is off to you (if I wore one). You persevere where others might fold. Your efforts are much appreciated.

Comment by CatOfEvilGenius — February 9, 2011 @ 07:27
Is there any particular weakness they’re leveraging to gain access to these accounts/sites? I have a very tiny site and I want to avoid goatse and other lovely images being smeared across its pages. I know better than to use the same TSR password/username/e-mail addy anywhere else. Anything else I can do besides staying vigilante?

Reply: Only advice I can give is Do not use any passwords you have used on TSR. Do not let any TSR tools you may use connect to the internet.
-Coconut

Comment by Abdi La Rue — February 10, 2011 @ 12:47
I wanted to inform you that back in June of last year Crazy Town was hacked by the IP 74.55.11.66. I sent emails to The Planet and received no response from them. They hacked my account, changed my and the other admins passwords and email information and then deleted my other admins account. Luckily they were stopped before doing any further damage and the damage they did do was easily fixed.

No clue why my site was targeted.

Reply: Thankyou for coming forward. The IP belongs to the TSR proxy.
-Coconut

Comment by TheISZ — February 16, 2011 @ 07:35
Sad to say, they struck GOS early this morning again. Fortunately, Pescado and the Admins were able to save it while it was being attacked. You can guess who it was, and everyone is very pissed.

Please, site owners, back your sites up and lock down the security. This is an on-going attack and they’ve gone crazy.

Comment by MaryH — February 17, 2011 @ 02:39
GoS was attacked today again, and again there was that tsr IP! >:O
http://www.digitalperversion.net/gardenofshadows/index.php?topic=21619.msg546481#msg546481

Comment by GoSling — February 17, 2011 @ 03:11
GOS was hacked today. They hacked a mod or admin account. So this is the second time. http://www.digitalperversion.net/gardenofshadows/index.php?topic=21619.0

Comment by Lol — February 17, 2011 @ 04:41
I think that they are now attacing MTS, cause I still try to open this site and there is only blanc space in my web browser.

Comment by Andlani — February 19, 2011 @ 22:37
In case the comment(s) may be overlooked in the shout, I’ll just post here as well.

We’ve been under continuous hacking attempts since last week as well, not only (former) staff accounts are targeted but also some member accounts. These appear to be members who have (had) their own site/blog, that has been hacked before or is now under attack. (such as cherryblossom’s, coloursims, sims musketeers).

We were hacked in October last year btw, by the same IP addy that has hacked others (74.55.11.66). This IP again shows up in our accesslogs a few days ago, on Feb 14. The nick that was used in the hacking was Trance, they used a disposable email-service (or whatever you call it), so no way of tracing.

Thankyou Simone, could you PM me at PMBD?
-Coconut

Comment by S1m0ne — February 21, 2011 @ 00:44
Welp, I just lost a little faith in humanity. Do the TSR guys not have souls, or something? It’s absolutely pathetic. I hope all those hacked can recover.

Comment by Jay — February 22, 2011 @ 08:41
I was wondering- Who is behind the hacking? Is it the owner of TSR site or what?

Reply: Yes

-Coconut

Comment by Me — February 23, 2011 @ 05:31
This never ends, does it? I mean about TSR screwing with others and hacking sites. =/

I wish I could do something about this to stop them, but I don’t know what that could be. I wish I knew about the thread on the official Sims 3 forum much earlier so I could have joined in with a rebuttal against the FAs and other TSR sheep who bleated in support of Thomas’ Slave Repository. I mean, there’s no need for us to make stuff up. The truth is bad enough as it is, both past and present, and all the proof we need is here on this blog.

Reply: TSR went into overdrive over that thread, I have not checked but last I heard they were complaining to EA to get it removed. For some reason they were more upset about people not trusting the tool on that thread than they have been at being exposed for hacking the community. I have to wonder yet again why they are so defensive about the workshop and why they will go to any lengths to make the community trust it enough to download it, even if no one trusts TSR as a whole.

-Coconut

Comment by CoconutFan — February 23, 2011 @ 14:56
Probably because they want the largest share on the ‘market’ for their ‘product’. If it becomes a standard, and other tools get abandoned or are less popular or wellknown, they can make more money off of it.
They could eventually ask for monetary compensation for ‘extra’s, plugins, etc.

Comment by Lol — March 3, 2011 @ 21:21
I’m confused. Why can they get away with this? Isn’t it illegal to hack? If the attacks can be traced back to Thomas and TSR – he should be held accountable, right? WTF???

Comment by Trina — March 4, 2011 @ 07:57
Sailfinsims has recently been attacked. Nasty porn pics posted, profanity posted. The site is back up and all better now. Hack FAIL.

http://www.freesimsfinds.com/?p=7648

Comment by CatOfEvilGenius — March 7, 2011 @ 05:00
[...] TSR: Still hacking YOUR community. Updated Feb 20 « THE TRUE FACE OF TSR Related Posts: Simspiration UPDATED WITH EXCLUSIVES! Simspiration nº2 December 2010 updates! Longer Parties Mod (UPDATED for LN) [...]

Pingback by TSR: Still hacking YOUR community. Updated Feb 20 » SunsetSims — March 8, 2011 @ 01:39
Hi!
I’ve looked into this a little bit, being Swedish and all makes it a little bit easier to find info relating to Sweden

TSR leaking information on their members is a violation against the Personal Data Act, (In Sweden it’s called Personuppgiftslagen, or PUL). PUL is controlled/checked/monitored by something called Datainspektionen. While Datainspektionen may not be able to do *very very* much, and I suppose a little less for those of you who are living outside the EU, they would certainly want to know about this large amount of violations.

Information on this can be found at http://www.datainspektionen.se, just use other languages at the upper right corner, pick english, ang go to legislation.

As to the hacking of websites and deleting them, it was very difficult to find any info. I mean, WHERE has the crime been committed? At Thomas’ computer in Sweden, or at the websites server? If the crime is done in Sweden, the crime is called Dataintrång, and is a crime against Brottsbalken Chapter 4 Paragraph 9. Someone with more experience on Law could specify this.

Anyone can press charges, wether they live in Sweden or not (as shown by piratebay a few years ago).

The point is, the crimes that have been committed are relatively small, but the number of violations may be enough to create some sort of reaction.

Polisen.se (and then picking your language of choice), may also be useful to you. Those living in the EU should have no problem finding information from your domestic lawyers.

I’m not an expert or anything, but I do live here and speak the language, and I would really like to help anyone who can benefit from this information.

That guy really pisses me off!

/ Sofia

Comment by Sofia Åsman — March 9, 2011 @ 12:00
Hi Coconut!
I’m so happy that I found your site and BIG thanks for keeping it online! I was really shocked, because I didn’t know what was wrong with TSR. On the forums like GOS or SimsCave I was seeing something like “anti-TSR action” and I’m glad that plenty of simmers let others know what Thoma$ and others from the staff are doing.
I also wanted others to be aware, so I put link to your blog in my signature on the forum where I’m a well-known one. I got some replies from users, but as it is Polish sims forum so not everybody could have understood.
I’ve written an artcile for Forum Newsletter, it will be published tomorrow. Article is based on information from your site. I’ve translated and quoted parts of your notes, I also have used some of the photos (not hotlinked).
Links to blog are given in the end of article.
I hope it’s okay for you and I wish more people knew that TSR sucks

Regards,
Liv

Reply: Thankyou Liv, for taking so much time to alert others of the dangers of TSR. I am really pleased you have written the article and translated my notes for others to read, Thankyou so very much for your help.
-Coconut

Comment by Liv — April 21, 2011 @ 19:55
Wow, didn’t think TSR was this bad….

I don’t go there very much, I can probably count what I’ve downloaded from there on one hand.

Sounds like the mafia of the sim community. O.O

Comment by Sean — May 25, 2011 @ 17:57
I don’t understand how they can get away with this. Isn’t hacking like this illegal? Can’t they be arrested?

Comment by Mary Ventura — May 27, 2011 @ 12:58
The f*ckers seem to have hacked BPS as well….

Comment by Maron — July 7, 2011 @ 02:43
i don’t get it, they have evidence of tsr been after this hacks, why they don’t start a court deal or something similar?
In my country we had 3 courts about hacking the sites, each of hackers were subjected to jails from 10 to 15 years, and paying like 100k rubles. Yeah, maybe TSR wouldn’t be subjected to jail or anything like that, because of the difference in details: in my country the sites been hacked was a govermental site, a nationwide tv chanel site, and someones blog. But still TSR could be at least asked to pay for damage, or even closed. I thought my country has the worst law system, but now i think it’s worlds T_T

Comment by happyyasu09 — October 4, 2011 @ 08:53
The Sims 3 website is being hacked. Hackers are taking things out of Comments boxes. I saw it.

Reply: What kind of comments are being taken? I am not sure I understand?? – Coconut

Comment by D. Oh — February 9, 2012 @ 09:53
Hi Coconut, just letting you know LivngSims is being hacked as well. http://forum.livingsims.net/

When I tried to go there today I found that, and macthekat’s messahe about being hacked. If it’s TSR again… damned buggers

Reply: As the hack happened within 2 days of TSR’s latest target, Zveki hosting at LS, and also the fact that LS has been hacked by TSR before, I would say it is a safe bet that this was TSR’s work. – Coconut

Comment by Michelle — April 26, 2012 @ 21:25
Coconut, don’t forget to add Dandan/Steve’s latest victim to the list.

Good point! thank you, I do have a few to add to the list, I will try and make some time to update it later this week. -Coconut

Comment by Silver Arrows — July 3, 2012 @ 05:53
I have defended tsr on the official forums… what a fool I was. I cant find the post anymore, so here’s to hoping no one else can either. Or even better: perhaps I erased it already and cant remember doing so. I have some memory problems that pop-up at random. I will very likely forget this site too in a few weeks, but I use a firefox add-on to post stickynotes on specific websites. Needless to say, I added one today to tsr

Comment by toomanytabs — September 1, 2012 @ 08:09
The EULA published by EA on November 6. 2012 and posted on The Site That Must Not be named, item 15,
appears to indicate that any item contributed by using the game software is theirs and no one has the right to receive compensation for it. This is a paraphrase please see the entire thing for yourself and I think it will help form some kind of defense for you. Good luck to all who have been violated. My hope is that you all get a lawyer and sue the bastard.

Comment by rudai — December 28, 2012 @ 01:59