How would we know without feedback :') . If you have pets in your home and suddenly you hear 0 noise you just know they’re doing something they’re not supposed to XD. Probs they’re just doing something with a different tactic.
What did I tell you. attempted remote code execution attack. Going to see you guys later, in a year or 4.
2 Likes
i can relate.
:l … pretty bad attempt. it’s clear the forum sanitizes the input. i’m glad that sort of things doesn’t work.
the good thing is that if they resorted to try different bs, is because their previous methods are not working anymore. so 1 point for epic anyway.
1 Like
just bringing this into view.
i’ve also found a post in a thread last night, but i had to go to bed when i saw it.
someone putting something random. and 3 days later changed the post to include a post to a phishy stuff, through a link shortener. that goes to github.
i noticed because i went back to the topic to see how the issue was progressing.
it already got removed, same as for the github link. gh usually takes very little in reviewing and removing such content, but only once reported.
imho i wouldn’t mind if url shorteners where not allowed. though given that they host the content in github it also makes it difficult.
4 Likes
A funnily coincidental (I guess) moment I noticed that attempt and posted about remote execution 
I also thought the same, yet, some advanced attempts are less noticable and easier than some rando posting generated javascript in a forum box.
I want to do what I can to add some value to this place. Teaching people here, sharing code etc. is a useful thing and shouldn’t be stopped by this kind of crap, yet, especially with the bots and all it’s hardly something I look forward to if it puts my stuff at risk. I’m not entering a warzone to tell people how to move a cube from A to B for science man.
Desparate maybe… Wonder who’d click. Wonder how that doesn’t get filtered out by the forum… could quickly turn into a case of EPIC drags group A into XXX, gambling, dr*gs and what not.
What I’m somewhat surprised by is that in 2025 we haven’t reached a constant flood yet of these posts, emails and so on. Especially with AI it’s not hard to just flood the place. Wish it was different. Wonder why it’s not as bad as it could be. It’s definitely not countermeasures. And with flood I mean DDOS kind of bad sht, not 10 posts an hour. There’s been a crpton of exploits in the wild for a lot of things especially lately that need to be fixed at g*npoint.
i feel you.
same for me.
before i used to lurk daily and try to answer as much as i can.
but lately i’ve realized that when i see a new user i actually wait a couple of days before responding, or until i notice they respond to another user.
and then i noticed i stopped visiting the forums.
turns out filtering by keywords is actually really hard. ie. android packages k (the 3 letter acronym which i can’t type anymore) gets filtered.
also xxx is not necesarily a bad word. sometimes i write that not in reference of p**n.
as in “xxxx this yyyy that”
good point. i don’t think epic is being targeted by an intense threat group, just some basic spam maybe some phish. but also epic team has been responding to these attacks so it’s not like the forum isn’t protected.