Hacking in RuneScape involves a player gaining access another player's account. This usually happens when the player has visited a site with a keylogger or they had given out their password. This is an unfortunately common event, however, this can be avoided. There are easy steps that can be taken to keep a player's account safe from being hacked.

How to Get Hacked[edit | edit source]

Players can only be hacked when they are not playing their character.

Websites[edit | edit source]

Some websites are not safe for players. While some sites may look secure, many are not.

RuneScape Wannabes[edit | edit source]

Some websites may claim that they are RuneScape and look very similar to the site. However, if the player looks at the address bar, they will probably see something wrong with it, such as instead of saying https://www.runescape.com/, it might have more words or letters.

Fan Sites[edit | edit source]

Some fan sites are not safe as well. There have been security issues with some fan sites, where players have been able to hack these websites and put viruses or keyloggers on them. It is best to run a virus scan or adware/spyware scan after visiting a fan site.

Links[edit | edit source]

Players should never follow a link that directs to RuneScape. They should only bookmark the site on their own, not use another site's link to RuneScape. Clicking on another site's RuneScape link may contain a keylogger. Keyloggers are viruses that go into the player's computer and will record everything they type. The information is then sent to the creator of the keylogger. If the player types in their account name and password on RuneScape's official site, the keylogger will log it and send it to it's creator. The keylogger's creator will then go to RuneScape, enter the player's account name and password, and go on their account, stealing all their belongings.

If the player is using a fan site forum, they should not use their RuneScape username or password on that site. Players should use a different account name and password whenever possible.

Giving Out Passwords[edit | edit source]

Players must never give out their password. They must keep their password safe. They should not tell it to family, friends, or anyone else.

An friend or a family member may accidently disclose the password, or may use the password on the player's account and steal all their belongings if they are untrustworthy.

Remember, never give out a password. A password is meant to keep something safe. It should not be told to people.

It is also a good idea for players to check behind them if they are in a public place to make sure that nobody is looking at their computer. People have been known to lose their accounts because someone saw them type in their password.

Auto Programs[edit | edit source]

Many players cheat on RuneScape and use a program that does the work for them. This is against RuneScape's Rule #13.

Some sites allow players to download and use auto programs. These sites sometimes have keyloggers. The programs also sometimes have keyloggers.

Players must exercise caution when visiting these auto program sites.

JAGeX Staff Claims[edit | edit source]

JAGeX is the company that makes RuneScape. Some players will claim that they are JAGeX staff or that they know people who work for JAGeX.

JAGeX staff will never contact a player through email or in-game. The only time a staff member will contact a player is through the message center, where they send messages to players.

If a player receives an e-mail 'from JAGeX', they must delete it right away. JAGeX themselves will never send players e-mails.

Also, in-game, JAGeX staff members have a gold crown beside their name that appears in the chat box. If this gold crown is not beside the player's name, then they are not JAGeX staff. Also, almost all the staff have the word Mod before their names.

Emails[edit | edit source]

Players will never receive an email from JAGeX.

JAGeX will never send players an email. This is said all over RuneScape's website so that all players will know.

If a player does receive an email from JAGeX, it is a player trying to hack accounts and must be deleted right away. All of these emails have keyloggers and will steal the player's password.

JAGeX will only send players messages through the message center, which is located on RuneScape's website.

Preventing Hacking[edit | edit source]

There are very simple rules that can be followed to protect a player's RuneScape account as well a their computer from keyloggers and other players.

• Players must never give out their password. If a player does this, then they are only asking to be hacked.

• Make a hard to guess password. Try making the password contain letters, numbers, and symbols, such as abc123?!?. A password with letters, numbers, and symbols is much, much harder to guess with a program than a password with only letters.

• Players should change their password often. Once a month is recommended. However, players should not change their password on a non-secured public wireless connection. Doing so can get the player's RuneScape password hacked. So if the player is using an unsecure public wireless connection, they should not change their password until they use their own internet connection.

• Players should try to not use their password on other sites. Try making many different passwords and keeping them somewhere safe in case the player forgets them.

• Players should run a virus scan or a adware/spyware scan on their computer once a week. This is the easiest way to not get hacked. An excellent program for this is Hitman Pro, which not only checks for spyware but for all kinds of invasive programs.

• Some sites are unsafe. Some fan sites and pornographic sites contain keyloggers, so if a player visits them, they should run a virus scan or adware/spyware scan after visiting these sites.

• Players are strongly recommended that they set recovery questions. These can be accessed on RuneScape's main website. Players enter 5 questions about them that only they would know. It is best if you make questions that only you can answer, not your friends, family, etc.

• Players must never download auto programs. These programs as well as the sites always have keyloggers.

• For a web browser, use Mozilla Firefox or Google Chrome instead of Internet Explorer.

• Players are strongly recommended that they set a bank PIN. This personal identification number can be made when they go to a bank. The player has to talk to the banker and ask about a PIN number. The player can then make a four number password for their bank. This PIN can be hacked from keyloggers that make Screen shots in the right time, but it's safer then without. It is almost impossible to be hacked if a player uses a PIN.

What to do When Hacked[edit | edit source]

JAGeX will not give players back the items they lost. Many players turn to JAGeX when they get hacked. However, they do not give items back because people could potentially take advantage of getting free items.

If a player is hacked, they could raise their skills and sell the produce. In time, the player will be able to afford new items.

The Difference Between Hacking and Scamming[edit | edit source]

There is a large difference between scamming and hacking.

Scamming is when a a player cheats another player. Here is an example.

A player is buying a rune platebody. Another player trades them and puts up a rune platebody in the trade window. The player buying then puts up 80,000 gp. Both players hits accept, but the player buying doesn't look at the second trade window. They hit accept immediately, and then complete their trading. The player that bought the plate looks in his inventory only to see an adamant platebody. They were just scammed.

Hacking is completely different from scamming. Hacking involves a player's account being stolen, not a player cheating another player.