The thread is closed, which links to an explanation, which is below:
-----------------------------------
[lpkane] - 5.1.13 at 1:46am
lol that got aggressive quickly
back towards the end of march, as btc was skyrocketing, jaguar and i were talking about how cool it would be if we could use massive amounts of gpus logged into the client to mine
we went back and forth about it, considered doing something for april fools, didn't get it done in time, and eventually elected to put some test code in the client and try it on a few admin accounts, ours included
we ran the test for a few days on our accounts, decided it wasn't worth the potential drama, and pulled the plug, or so we thought
fast forward to 48 hours ago, a fuck up in the client server results in a restart which results in a setting getting changed which enables it for all idle users, and here we are
and the results for 48 hours of your combined efforts?
~2 btc, or roughly $280 usd at current exchange rates, not bad!
anyway, our bad, we just released a client update with the btc stuff removed, and your $280 is going into the s14 prize pot -- if you're still feeling sad, feel free to pm me and i'll attempt to buy back your love
but for the record, i told jag he shouldn't be lazy and run the miner in a separate process, rookie move
3. over the 2+ weeks it was apparently running, a total of 29.27627734 btc was mined, way more than 1.9!
4. daily sweeps were set up which converted btc to usd, and transactions totaled $3,602.21 (just sold the remaining btc to get a total)
so first the bad news, this is way more shady than i originally thought, and as the person who is ultimately responsible for everything it's 100% my fault
now the good news, as of the client update released in the last hour, all the btc stuff is out which should solve the gpu and av warnings, and in a blatant attempt to buy back your love (and less likely your trust), i'm going to do the following:
1. 100% of the funds are going into the s14 prize pot, so at the very least your melted gpus contributed to a good cause
2. every user who was premium this month will get a free one month premium code which they can use whenever and for whomever they like, and you'll find the code under manage accounts -> premium codes
once again, our bad, thanks for keeping us honest
-----------------------------------
So, it turns out, it wasn't $280 worth of BTC that was mined, it was $3,602.21 . How you can 'accidentally' mine more than $3000 of BTC is beyond me!
Yeah. Only after several people in the first thread figured out that their antivirus software had been detecting the miner for much longer than 48 hours, and one of them contacted the pool used to confirm how much had actually been made, though.
>anyway, our bad, we just released a client update with the btc stuff removed, and your $280 is going into the s14 prize pot
To be honest I thought that this was what the story was originally going to be about. They should add it in as an opt-in setting so people can support ESEA's tournaments.
> fast forward to 48 hours ago, a fuck up in the client server results in a restart which results in a setting getting changed which enables it for all idle users, and here we are
This is some of the most hand-wavy bullshit I've seen in my 15 years of IT experience.
This isn't surprising in the least. Anti-cheat clients are the worst, ever scummier than anti-virus clients.
If anyone here has ever played a game that used Inca GameGuard, you know what I'm talking about. If you open a page in your web browser with a title that seems suspicious to GameGuard, it can fucking REBOOT your computer without warning! And that's not the only client with such problems. From my experience, it has been a problem shared by many anti-cheat clients: they're all a bit too trigger-happy, even though they shouldn't be holding that gun in the first place. And if that wasn't bad enough, these clients are also notoriously buggy. They will corrupt the state of your kernel (they will do things like overwrite entries in your SDT/SSDT, making various system calls fail; in fact, it's very common practice for some of these tools to outright disable the use of functions like NtOpenProcess or ZwWriteVirtualMemory, and then not even bother to reallow them after the anti-cheat client exits), they will litter your Windows folder, and wreak havoc however they want.
And here's the kicker: these anti-cheat clients aren't even that effective if you know what you are doing.
It is even worse than most anti-cheat clients which "only" monitor and notify.
Not only will it actively pre-emptively change the state of your programs, some changes irrecoverably, but in addition it cannot be independently uninstalled, i.e. the game publisher who bundles it has to provide an uninstaller for it or it will not be uninstalled if you remove the game.
The difference here is that ESEA was the most trusted league in America and the majority of competitive cs players have subscribed to it for 7 dollars a month. (The anti-cheat was only one aspect of the client)
From what I understand the guy who runs ESEA is pretty much saying "Yeah, we were talking about this one day and did it. Now you've caught us, so we'll be removing it and giving everyone a free month. We also made $3000 something dollars by mining with your computers, but we don't want you to be mad at us, so we won't do it again. But we totally had no problem with this earlier."
He's also claiming that all of the money made this way will be put into a tournament prize pool, but still, that doesn't justify the behavior or attitude.
For correctness' sake, they didn't make $3000, they made 30 BTC, which could be sold on the market for approximately $3000 at the current rates, minus transaction fees and plus or minus market fluctuations.
One of the times that I accessed this page I was given this error, for people who aren't using a browser capable of detecting this kind of thing (although I don't know how serious these detections really are).
Danger: Malware Ahead!
Chromium has blocked access to this page on play.esea.net.
Content from bjskosherbaskets.com, a known malware distributor, has been inserted into this web page. Visiting this page now is very likely to infect your Mac with malware.
Is this for real? I just went to this page on a mac. Did not get any warning or any other signs. What should I look for? Finally can the mods please remove this link, if this is confirmed?
It was only a matter of time before someone tried this, if I were in their position I would contemplate it too given the rise of the cost of a Bitcoin and they won't be the last to try something like this. I the day a widely used software application like uTorrent decides to remove the malware and banner ads and instead bundles in a Bitcoin miner that runs when your machine is mostly idle (like download a torrent over night).
It's a paid service ($7/month) that lets you set up competitive matches of Counter-strike (and TF2 and LoL) with other ESEA players. It has it's own ranking system, it's own league/ladder, and anti-cheat system. It has over 20,000 subscribers. It's the most popular of such services for Counter-strike, and has been around for many years.
This incident is really serious. People have reported damaged hardware from this. Mining bitcoins can run quite hot if your system is not built for it. ESEA has been known for being scummy in the past - this is a huge breach of trust and security that I can't believe so many players are overlooking it.
The worst part is their response to all of this. They're playing it off like a joke and think it's no big deal. The $3600 they made came at the expense of far more than $3600 in electricity costs from the community. They lied about the whole thing, and keep changing their story as people figure out more of it. There's more discussion on this on the csgo subreddit: http://www.reddit.com/r/GlobalOffensive/comments/1dgad2/esea...
This is about as bad as you can get for any kind of software developer. I'd rather run an installer that tries to install a toolbar than one that secretly mines Bitcoins. At least those which bundle toolbars generally inform you and provide an opt-out.
Although IANAL, the legality of this is highly questionable, considering the recent (mis?)usage of the Computer Fraud and Abuse act, and the fact that nothing in their EULA/ToS permits this kind of use case.
BTC mining on GPUs uses a ton of power, like quadruple-the-monthly-power-bill-in-your-apartment kind of power. If you're willing to pay the energy company and bring more harm to the environment for something, I don't feel like you're really thinking about the true cost. I'd rather just pay up-front on simple terms.
The monthly power bill in my apartment is consistently $7 / month. If it went up by a factor of 5, I'd never notice; a while ago I got fed up and paid several months in advance because it seemed so ridiculous to have a $7 bill every month.
What's a typical power bill like, and what's going on with mine?
(my power uses - lights, fridge, and one to two old computers in a 400 sq. ft. apartment in downtown SF)
I live in a 4 bedroom house in Hawaii. My power bill is usually around $200. We don't have A/C or anything other than your typical household appliances. Hot water heater gets a solar credit applied to it. Then again our price/kWh is $0.35 which is significantly higher than the rest of the country.
Sometimes if the meter is not accessible by an electricity company they'll just use an 'estimated' reading from past bills. Could be your lucky enough to be stuck with some very low past estimated reading.
I do not have A/C, heat, a microwave, or a dryer (I'm not even allowed to install a washing machine...). I get hot water, but I imagine there's a central source of that for the whole building.
An hour of GPU is not much. I think a single GPU can do a few Megahashes per second. To hit one BTC/day you would need about 20 Gigahashes per second all day.
I think they'd make a bunch more by showing you the ads.
But 1btc/day is >$100/day. They don't make that much on a single client showing ads. More like $0.10 at most, or 0.001btc (which takes much less mining power).
I don't know how popular their client is but I have a HD7970 which is not bad at all (enough to run any currently released game on full settings) and when I don't game I let it mine which gives me about $0.5 - $0.75 a day.
An HD7970 can peak at around 200W consumption, so the entire PC is probably consuming around 300W, or about 7kwh per day. I pay $.11 per kWH, so I would be losing money on the deal.
Should change this link to an actual news item, currently it goes to their front page which of course provides no information. I know reddit's crappy but this post is actually doing a good job aggregating info as it becomes available: http://www.reddit.com/r/Games/comments/1dglil/popular_compet...
This should probably be a really big story covered and analyzed by all the serious video game journalists... just kidding those don't exist. If we're lucky maybe Forbes will cover it or something.
-----------------------------------
[lpkane] - 5.1.13 at 1:46am
lol that got aggressive quickly
back towards the end of march, as btc was skyrocketing, jaguar and i were talking about how cool it would be if we could use massive amounts of gpus logged into the client to mine
we went back and forth about it, considered doing something for april fools, didn't get it done in time, and eventually elected to put some test code in the client and try it on a few admin accounts, ours included
we ran the test for a few days on our accounts, decided it wasn't worth the potential drama, and pulled the plug, or so we thought
fast forward to 48 hours ago, a fuck up in the client server results in a restart which results in a setting getting changed which enables it for all idle users, and here we are
and the results for 48 hours of your combined efforts?
http://www.picsend.net/images/923377coin...
~2 btc, or roughly $280 usd at current exchange rates, not bad!
anyway, our bad, we just released a client update with the btc stuff removed, and your $280 is going into the s14 prize pot -- if you're still feeling sad, feel free to pm me and i'll attempt to buy back your love
but for the record, i told jag he shouldn't be lazy and run the miner in a separate process, rookie move