They do that in order to prevent people without experience (e.g you) from opening them and downloading and running the so-called ‘virus.exe’ by mistake that you dream of.
Wait, exactly how do malicious websites reach you if a browser is not involved? Because last time I checked you needed to do a HTTP/S request before webservers start sending you data.
suuure … 
request is sent but the reply is blocked by the firewall BEFORE its passed down to be interpreted by the browser.
Of course only when browser itself isnt screaming at me that opening that link would be stupid …
as i sayd do whatever you want. You are all responsible for whatever happens to your systems, so go ahead, im done trying to convince you that you all arent nearly as safe as you think you are
The RXP version found via a quick google search is fine. If you can find even one line of malicious code from it feel free to post on these forums. But you won’t find any 
I mean you don’t need to even study computer science to realize the rar file doesn’t have a single executable in it. And you cannot make viruses via “wow addons”. Placing lua files in your addon directory cannot compromise your credit card data.
I can confirm that I’ve included a cryptominer into the pirated RestedXP addon that will mine MageCoins for me that I’ll use to buy various gnome NFTs.
Welcome to the water botnet, suckers!
or maybe it’s just that, the full version of a paid addon which you can easily verify with various tools
2 Likes
I downloaded an addon and my computer became a Jet engine and flew away… 
3 Likes
Then they have to make their game properly.
Alot of quests/items etc are very confusing…
For example the Jailer weapon or trinket, the IQD trinket from DoS.
They put ??? in it because they’re to lazy to make a proper tooltip.
Wowhead fixes this for them.
Yes but it’s easy to crack, see How to share RestedXP guides with other Battle.net accounts
It doesn’t work like that
I think you need more training - it’s been possible for years, and to believe that the developer immediately fixes vulnerabilities is just incredibly naive … we are always at least 1 step behind.
Easily obtainable Exploit kits silently and automatically find and exploit vulnerabilities on your computer as you browse the web. In reality, there are millions of OS and Browers in use that are still out of date … think the NHS in the UK until recently was still on Windows XP! Curse Addon Website has been compromised several times in the past.
They are prevalent because they are automatic. A hacker doesn’t need to do any of the searching and hacking himself. He can simply deploy an exploit kit and let it do all the heavy lifting.
First, a hacker installs an exploit kit on a compromised website. Then, that web page will discreetly reroute traffic to a different page. Within this page is where the hacking really occurs.
While a visitor is on that page – and it could appear to be an exact copy of the page they intended to visit – the exploit kit is scanning their device remotely for any vulnerabilities that it can take advantage of, often through applications that web browsers run, such as Flash, Java, Silverlight, and others.
If the software finds a vulnerability, it will send malicious code through that opening and install itself onto your computer. Once successful, they send the payload.
No it doesn’t, the addon is free at any level.
What you wrote is in simple words “Phishing”, it has nothing to do with what we have been arguing.
It’s not Phishing as such - because you go to the correct website (it;s not pretending to be another) - but it has been compromised. The subject touched on whether a website alone exploit by just visiting it … which it can.
As someone who works in the business, Asghaad is completely correct.
No, he’s not talking about the addon itself (and those of you suggesting it should probably not add your opinion to these kind of discussions). No, you don’t need to click anything. No, it’s not reserved for “major websites like Google”.
Your firewall / antivirus is a good first line of protection (it will block a lot of bad stuff), but it is in no way perfect.
You can, and will, get infected by various malware just by going to various websites (in particular sketchy warez pages, but even “normal” ones as well).
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.