Thirty years of virtual cruelty, from a text-world voodoo doll to trillion-ISK Ponzi schemes — the trolls who found the holes in every game world ever built.

In-Game Griefing, PKing, and the Great Virtual Scams

Every online game is a small society with a rulebook, and every rulebook has holes. This is the sourced history of the players who lived in those holes — the griefers, player-killers, con artists, and raiders who turned other people’s fun into their own. The through-line runs from the first documented case of virtual cruelty, a text world in 1993, to griefing-as-content on today’s mass platforms, and it organizes around three recurring moves: exploiting a mechanic the designers never intended, exploiting trust inside a social structure, and exploiting the boundary between the game and real life.

For the short version — one incident, told for the laugh it deserves — see the episode The Best Griefing of All Time. What follows is the long one.

The MUD era: A Rape in Cyberspace (LambdaMOO, 1993)

LambdaMOO was a text-based multi-user virtual world — a MOO, or MUD Object Oriented — running on a server at Xerox PARC and founded in 1990. In March 1993 a user operating a character named “Mr. Bungle” deployed a “voodoo doll” subprogram, code that let one player force text describing another player’s character’s actions, overriding the target’s control of their own avatar. Bungle used it to make the characters “legba” and “Starsinger” appear to perform violent sexual acts in a public room (Wikipedia, Julian Dibbell). The harm was entirely textual; the significance was that participants experienced it as a genuine violation.

Journalist Julian Dibbell documented the incident and the community’s response in “A Rape in Cyberspace,” first published in The Village Voice on December 23, 1993, and later collected in his book My Tiny Life (1998) — its full title running “A Rape in Cyberspace, or How an Evil Clown, a Haitian Trickster Spirit, Two Wizards, and a Cast of Dozens Turned a Database into a Society” (Julian Dibbell, Wikipedia). Three days after the event the community held an in-world meeting, running roughly two and three-quarter hours, to decide what to do. No consensus emerged, but a “wizard” — an administrator with god-level powers — ultimately “toaded” the Mr. Bungle character, deleting it from the database (Wikipedia).

The episode is widely credited as the founding case study in online-community governance and virtual harm, forcing early questions about free speech, moderation authority, and whether acts committed only in text can constitute real harm; LambdaMOO subsequently moved toward a petition and ballot governance system (Wikipedia, The Daily Beast). It is the ur-text: the first time a virtual troll’s behavior generated a documented governance crisis and a body of scholarship, decades before “trolling” was a household word. See the Mr. Bungle profile for the fuller portrait.

Ultima Online: PKing culture and the death of Lord British (1997)

Ultima Online (Origin Systems, September 1997) was an early graphical MMORPG whose open-world, largely-PvP design produced a notorious “player killer” culture — players hunting and killing other players, then looting their corpses. This PKing dynamic became the defining social problem of the game’s early years and drove the later “Trammel/Felucca” facet split that separated consensual from non-consensual PvP (Wikipedia).

On August 8, 1997, during a beta stress test, creator Richard Garriott’s in-game avatar “Lord British” was killed by a player character named Rainz, who cast a “fire field” spell on him. Lord British was supposed to be invulnerable, but after a server reset the developer-invulnerability flag had not been re-enabled, and Garriott did not re-issue the command, leaving the avatar killable (Massively Overpowered, Wikipedia). Sources vary between August 8 and 9 depending on time zone, but treat it as the same beta event (Ultima Codex).

Rainz was subsequently banned by Origin, though accounts differ on whether the ban was for the Lord British kill specifically or for prior exploiting; the kill is routinely described in gaming journalism as one of the most infamous events in MMORPG history and an emblem of the “anything can happen” nature of open sandboxes (Massively Overpowered, CBR). It was the moment the game’s own god became subject to the same rules as everyone else — the canonical example of emergent player agency defeating designer intent.

EverQuest: The Ballad of Fansy the Famous Bard (2001)

In 2001 EverQuest (Sony Online Entertainment) opened Sullon Zek, a near-no-rules PvP server sometimes described as a “penal colony,” where the population skewed heavily “evil” — reported at roughly 80 to 90 percent — and ganking, corpse-camping, and training were rampant (Massively Overpowered). A player running a low-level Bard named “Fansy” found a design gap: too low-level to be flagged for normal PvP, but able to cast Spirit of the Wolf, a movement-speed buff. He repeatedly aggroed high-level monsters and led “trains” of them onto the dominant evil players, killing them en masse while remaining effectively untouchable (Massively Overpowered, The Escapist).

The campaign reportedly killed on the order of 400 characters and ran for about three days before SOE intervened and closed the loophole. Fansy gleefully documented his victims’ rage on the forums, and his writeups on notacult.com are the primary source and the origin of the name (Massively Overpowered, notacult.com). Blizzard later inserted a tribute NPC, “Magus Fansy Goodbringer,” into World of Warcraft’s city of Dalaran — an unusual case of one studio memorializing another game’s griefer (Massively Overpowered). A single low-level character weaponizing aggro mechanics against an entire server’s dominant faction remains the purest example of asymmetric griefing as folk heroism. See the Fansy the Famous Bard profile.

World of Warcraft: Leeroy, the plague, and the funeral raid

World of Warcraft — the game Mark Kern’s original team shipped in 2004 — became the mass stage where in-game chaos went mainstream. Three of its episodes anchor the corpus.

Leeroy Jenkins (2005)

“Leeroy Jenkins” is a World of Warcraft video uploaded May 11, 2005, in which a player — real name Ben Schulz, of the guild PALS FOR LIFE — charges into a raid encounter shouting his own name while his guildmates are still planning, wiping the group. The clip became a defining early-2000s internet meme (Wikipedia, Warcraft Wiki). The video was later confirmed to be staged — its makers called it a scripted but “faithful re-enactment” — and in December 2017 Schulz and cameraman Ben “Anfrony” Vinson released a “dry run” first-take clip, Vinson saying they had assumed it was “so obviously satire” no one would think it real (Wikipedia, Neowin). This is not griefing in the harm sense; it is performed in-game chaos as content, and the origin point of the “in-game clip as viral comedy” genre. See the Leeroy Jenkins profile.

The Corrupted Blood incident (2005)

Beginning September 13, 2005, WoW’s new Zul’Gurub raid introduced the boss Hakkar the Soulflayer, who cast a contagious hit-point-draining debuff called “Corrupted Blood” that was meant to stay inside the raid instance (Wikipedia, PC Gamer). Players carried the infection out using hunter pets, which could be dismissed while infected and re-summoned in crowded cities such as Ironforge and Stormwind; combined with NPCs acting as non-dying reservoirs, this produced a runaway virtual “plague” that depopulated cities until Blizzard patched it and reset affected servers (Wikipedia, Washington Post).

It was not pure griefing — it began as a bug — but some players deliberately spread it, making it a documented case of intentional in-game contagion. It was subsequently studied by epidemiologists: Eric Lofgren and Nina Fefferman published on it in The Lancet Infectious Diseases (2007), and the US CDC contacted Blizzard about the data, which noted the event was an unintended software bug (Wikipedia, PC Gamer). It is the case where in-game player behavior around a contagion produced genuine academic epidemiology, and it was frequently revived during COVID-19 as a real-world modeling analogue.

The Serenity Now funeral raid (2006)

In 2006 a Horde player, in-game name Fayejin, on the Illidan server died in real life — a stroke, per reporting. Her guild announced an in-game memorial at a fixed location in Winterspring and asked attendees to be left in peace. An Alliance guild, “Serenity Now,” raided the memorial and killed the attending mourners, then published a video of the attack (GamesRadar, TheGamer). The raid became a lasting flashpoint in debates over online-gaming ethics; academics Martin Gibbs, Marcus Carter, and colleagues analyzed it in “Serenity Now bombs a World of Warcraft funeral,” framing the controversy as community “boundary-work” distinguishing legitimate from illegitimate play, and Serenity Now’s own video acknowledged the act was not considered morally proper even though the mechanics permitted it (Gibbs et al., AoIR). It is the canonical “magic circle” collision — a real death mourned inside a game world designed for combat, and the clearest test case in the corpus of consensual cruelty versus real harm.

EVE Online: heists, betrayal, and suicide-gate

EVE Online (CCP Games, 2003) is the corpus’s richest griefing ecosystem, because it treats scamming, espionage, theft, and betrayal as legitimate emergent gameplay — sanctioned by the developer as long as no software exploit is used.

The Guiding Hand assassination of Mirial (2005)

A mercenary player group, the Guiding Hand Social Club, spent roughly ten months infiltrating the player corporation Ubiqua Seraph, with operative Arenis Xemdal rising to become the trusted lieutenant of the corp’s CEO, “Mirial.” On April 18, 2005, on the code word “Nicole,” the group executed a coordinated hit: they lured Mirial out, destroyed her ship and escape pod, looted corporate hangars across the galaxy, and reportedly recovered her character’s corpse (PC Gamer, EVE Ref). The combined loss, assets stolen plus destroyed, was reported at more than 30 billion ISK — estimated in contemporary reporting at roughly £10,600 of real-money-equivalent value, and described at the time as the largest theft of virtual assets in any video game (PC Gamer). It is griefing as long-con espionage rather than brute force, with trust itself as the exploited mechanic.

The disbanding of Band of Brothers (2009)

On February 5, 2009, Band of Brothers — then one of EVE’s dominant alliances and the sworn enemy of Goonswarm — was disbanded from the inside. A BoB director, Haargoth Agamar of Black Nova Corp, used his director privileges to kick every member corporation out of the alliance and transfer assets, in coordination with Goonswarm (EVE Online, Imperium News). Because a disbanded alliance name becomes available, Goonswarm affiliates immediately created a new corporation claiming the “Band of Brothers” name and ticker, permanently denying it to the former members; a wallet transaction associated with the event carried the note “mittani says hi,” popularly retold as “The Mittani sends his regards” (EVE Online). CCP’s investigation found no software exploit — the disbanding fell within game mechanics — so CCP did not reverse it (Imperium News). It was the largest single act of political sabotage in EVE history, and the moment Goonswarm’s reputation for information warfare was cemented.

Fanfest 2012: suicide-gate

At EVE Fanfest 2012, a live CCP event, Alexander “The Mittani” Gianturco — then chairman of the Council of Stellar Management — made remarks encouraging attendees to harass a specific player whom he described as having expressed suicidal thoughts, celebrating Goonswarm’s targeting of that player; the incident is reported by multiple outlets and was treated by CCP as a real occurrence (Engadget, The Escapist). CCP responded by suspending Gianturco’s EVE account for 30 days for a terms-of-service violation and removing him from the CSM — he had already announced his resignation as chairman — stating the panel format “went far beyond the boundaries of what is acceptable for an official event” (Engadget).

Gianturco issued a public apology for his remarks. Per reporting, he stated he is not a sociopath or sadist and did not want anyone to harm themselves over “an internet spaceship game,” and some accounts add that he gave the targeted player his in-game fortune (Engadget, International Business Times). Gianturco is a former corporate attorney — he practiced at the Washington, D.C. firm Zuckerman Spaeder — who left law to work on EVE full-time and leads the Imperium/Goonswarm coalition; he has been described in mainstream press as one of EVE’s most powerful players and self-describes in media as ruling through propaganda, espionage, and deception (International Business Times). EVE is where griefing graduated into geopolitics, and where a single griefer became a media-cover “tyrant.” See the The Mittani profile.

RuneScape: the Falador Massacre (2006)

The “Falador Massacre” occurred June 5–6, 2006, on RuneScape world 111 — hence “w111 glitch,” and nicknamed the “Doomsday Massacre” because the date abbreviated to 6/6/6. It began at a party in the player-owned house of “Cursed You,” the first player to reach level 99 Construction. Players sparring in the house’s combat ring were correctly flagged for PvP, but when the host kicked them from the house, the PvP flag failed to clear for a subset of players (RuneScape Wiki, PC Gamer). Those players retained the ability to attack others anywhere, including safe zones. Led by “Durial321,” they went to Edgeville and killed players in the crowded city — including victims carrying valuable items such as a green partyhat — while item loss was permanent, with no rollback (RuneScape Wiki).

Jagex locked the leaders’ accounts, participants received “black marks,” and the biggest killers were permanently banned; a Jagex moderator apologized to victims, but no items were restored and the game was not rolled back. Cursed You’s later ban, in August 2006, was for real-world trading and unrelated to the massacre bug (RuneScape Wiki). A stuck PvP flag turned a housewarming into a citywide slaughter — a textbook case of a boundary-state bug being immediately weaponized, and a durable RuneScape folk memory.

Browser and social worlds: Habbo, Second Life, Club Penguin

Habbo Hotel: Pool’s Closed (2006)

In July 2006, with raids beginning July 12, 4chan’s /b/ organized a raid on the children’s and teen social world Habbo Hotel. Hundreds of users created identical avatars — a black man in a grey suit with an afro — and formed blockades around the virtual swimming pool, spamming “Pool’s closed” with absurdist “due to AIDS” additions (Know Your Meme, Habbox Wiki). The stated pretext was a rumor that Habbo moderators banned avatars based on skin color; raiders also arranged avatars into formations, including a swastika, to provoke moderators. Operator Sulake responded with mass bans and moderation changes, the “Pool’s Closed” avatar became one of the earliest viral raid memes, and the raid is re-staged annually (Know Your Meme, Habbox Wiki). The Habbo raids are frequently cited — including in Hari Kunzru’s New York Review of Books essay on trolling — as a formative moment in the emergence of 4chan and Anonymous raid culture and its deliberately transgressive “for the lulz” aesthetic (New York Review of Books).

Second Life: grey goo and the Patriotic Nigras (2006)

In November 2006, Second Life (Linden Lab) was hit by “grey goo” attacks: self-replicating scripted objects — spinning gold rings, listed to a fictional “Dr Robotnik” — that multiplied across the grid as users interacted with them, degrading servers and causing side effects like unreliable account balances and broken teleportation. Linden Lab locked out non-staff logins and ran rolling grid restarts to purge the objects; the term borrows from the nanotech self-replication doomsday scenario (The Register, Boing Boing). A prominent Second Life griefing group was the “Patriotic Nigras,” associated with 4chan, which used scripted objects and disruptive avatars to attack in-world spaces through the mid-to-late 2000s (Wikipedia). Second Life is where griefing became a scripting discipline — code as a weapon against server infrastructure itself — and where 4chan raid culture crossed from a walled kids’ world into an open user-generated economy.

Club Penguin

Club Penguin (Disney’s children’s virtual world, 2005–2017) was likewise a target of organized raids and rule-breaking, and its heavy filtering and moderation regime is often cited as the counter-model to open worlds — the platform response of choosing lockdown over emergence. The general raid-target framing is well attested, though individual incidents are thinly documented in reputable outlets.

The modern era: Minecraft, Roblox, and griefing-as-content

2b2t (“2builders2tools”), founded December 2010, is the oldest Minecraft “anarchy” server — no rules, no permanent bans — and among the oldest continuously running Minecraft servers of any kind. Destroying other players’ builds and using hacked clients are normalized; Rock Paper Shotgun’s Brendan Caldwell described griefing there as “just a form of weather.” Notable history includes the long-running griefer “popbob” and the June 1, 2016 influx after YouTuber TheCampingRusher’s video, which flooded the server with newcomers and led to mass griefing of long-established “OG” bases via leaked coordinates (Wikipedia). 2b2t turned griefing into an entire self-documenting subculture with its own historians and lore — griefing as heritage.

On Roblox, “griefing” denotes deliberately harassing other players and using game features in unintended ways, while “exploiters” run modified clients to spam decals, kill players, or break games; Roblox’s own community wiki and developer forum document griefing as a persistent moderation problem (Roblox Wiki, Roblox DevForum). Roblox has also run recurring crackdowns on illicit “condo” games — user-made spaces with sexual content — and on players who repeatedly join rule-violating experiences, with commentators describing enforcement as “whack-a-mole” as banned games quickly reappear (PCGamesN, Today).

From the Leeroy Jenkins clip onward, in-game chaos migrated from a nuisance to a format: griefing, trolling, and staged disruption became a staple genre of gaming YouTube and streaming, where the disruptive act exists to be recorded and monetized rather than merely to spoil someone’s session — TheCampingRusher’s 2b2t videos being a direct example of a creator’s audience mobilized into a griefing wave (Wikipedia). Griefing completed its arc from private cruelty to a public content economy — the same trajectory the books trace for trolling generally.

The great virtual scams

Where the incidents above cover destruction and disruption, the scams cover fraud — the theft of value by deception. EVE Online is again the center of gravity, because CCP explicitly permits in-game scamming and theft under the EULA (only real-money trading and software exploits are bannable), so EVE’s scams are the largest, best-documented, and most brazen in the medium. The perpetrators below are, with two exceptions, identified only by in-game handles — pseudonyms, not legal identities.

Cally’s EVE Investment Bank Ponzi (2006)

In 2006 a player using the handle “Cally” ran the EVE Investment Bank, a player bank that took ISK deposits and paid a monthly dividend — reported rising from around 9 percent toward 16 percent to build confidence — a classic Ponzi structure paying old investors from new deposits. Cally then closed it out, kept the deposits, and posted a taunting video “confession” (The Escapist, EVE University). The take is reported at roughly 700 to 800 billion ISK — contemporary headlines cited “700 billion ISK,” while the Escapist writeup and later retrospectives cite figures up to 790 to 800 billion — making it the largest heist in EVE to that date (Slashdot, Softpedia). CCP ruled that Cally had not violated the EULA — the scam was legal within EVE’s design — setting the precedent that large-scale in-game fraud is sanctioned play (The Escapist).

Ricdic and the EBANK embezzlement (2009)

EBANK, then EVE’s largest player-run bank with about 2.3 trillion ISK in deposits, was embezzled by its own CEO, “Ricdic,” who took roughly 200 billion ISK — about 8.6 percent of deposits (Engadget, TheGamer). Unlike a pure in-game scam, Ricdic converted the stolen ISK to real money — reported at roughly US$5,000 — to cover real-life debts, and because real-money trading violates the EULA, CCP banned him, reportedly before he could sell all of it; the bank suffered a liquidity crisis afterward, ultimately disclosing it had fallen about 1.2 trillion ISK into deficit (Engadget, TheGamer).

Bad Bobby and Titans4U (2010)

“Bad Bobby” ran Titans4U, an investment vehicle selling access to copied Titan-class blueprints, governed by five trustees so no single party could take the assets. Bobby engineered a share-dilution vote under the pretext of adding trustees, gained majority control, and walked away with about 850 billion ISK in assets in 2010 (EVE Online, Engadget). Reporting valued the haul at roughly US$45,000 in real-world-equivalent terms, described at the time as a record-setting EVE scam (The Mary Sue).

The Phaser Inc. Ponzi (2011)

In 2011 the Phaser Inc. scheme, run by handles “Eddie Lampert” and “Mordor Exuel,” promised about 5 percent weekly returns and drew over 4,000 investors and more than 1,831 billion ISK in deposits; after paying out interest and honoring wary withdrawals, the operators kept roughly 1,034 billion ISK — over a trillion. Guinness World Records recognized it as the most successful Ponzi scheme in EVE, and Mordor Exuel later stated it was “100% pure meant to be Ponzi scheme, right from the start” (Engadget, Guinness World Records). (The “Eddie Lampert” here is an EVE in-game handle that happens to coincide with the name of a real-world hedge-fund executive; the two are unrelated.)

SOMER Blink was a large player-run lottery and gambling operation. In 2013 it emerged that CCP’s community team had given SOMER Blink rare in-game ships — Ishukone Watch Scorpions — to use as prizes, provoking a favoritism and “soft-RMT” outcry among players (Engadget, Kotaku). In 2014 the controversy escalated: SOMER Blink advertised a promotion as “approved by CCP” without authorization, and its founder then published private CCP communications, after which CCP permanently banned the founder across all accounts and SOMER Blink shut down (Engadget, Imperium News). It is the case where a player enterprise and the developer’s own favoritism blurred — showing that the “scamming is legal” culture can implicate CCP itself when real-money-like value and preferential treatment enter the picture.

Burn Jita (organized destruction, 2012 onward)

“Burn Jita” is a recurring, organized suicide-ganking event — first run by Goonswarm over a weekend beginning April 27, 2012 — in which large fleets of cheap, single-shot ships swarm Jita, EVE’s largest high-security trade hub, destroying freighters and haulers before the in-game “police” (CONCORD) kill the attackers. The first event destroyed on the order of 100 billion ISK of player assets in a day, reported at roughly US$3,600-equivalent, and later editions destroyed more — 2017’s was reported around US$14,000-equivalent (Guinness World Records, PC Gamer, Massively Overpowered). Not a scam but organized griefing-as-economics — deliberately torching value in “safe” space to make the point that nowhere is safe, and associated with Goonswarm and The Mittani.

Ginko Financial’s collapse (Second Life, 2007)

Ginko Financial was a Second Life “bank,” described as an alleged Ponzi scheme, paying extremely high interest on Linden-dollar deposits — reported around 0.145 percent per day, roughly 44 to 70 percent annualized — reportedly funded partly by in-world casino investments (Wikipedia, MIT Technology Review). After Linden Lab restricted in-world gambling in 2007, a bank run collapsed Ginko, and when it folded the equivalent of about US$750,000 in real value evaporated — Linden dollars being legally exchangeable for US dollars — with some individuals reportedly losing up to US$10,000 (NBC News, Wikipedia). Linden Lab responded in January 2008 by banning in-world “banks” that promised interest or any rate of return unless the operator held a real-world banking license — an unusual case of a virtual world importing real financial regulation (Wikipedia, CFO). It is the clearest case of a virtual scam producing large real-money losses and a real regulatory response, sometimes cited as a small-scale rehearsal of the 2008 financial crisis.

RuneScape’s confidence scams

RuneScape’s economy spawned a durable catalog of confidence scams, formally against Jagex’s rules and punishable by mute or ban. The most famous is the “armour trimming” scam: the scammer offers to “trim” a victim’s (usually rune) armour for free — trimmed armour is only obtainable via Treasure Trails or trade and cannot actually be created — using a shill or a staged trade to build false trust before taking the armour (RuneScape Wiki, RuneScape Wiki). Other staples include the item-duplication “dupe” scam, telling a victim that dropping an item and pressing a key sequence will duplicate it and then stealing the dropped item, along with “drop/trust” trades, telegrab-based cons that exploit inaccessible-tile bugs, and account phishing via fake login pages (RuneScape Wiki, Old School RuneScape Wiki). Scamming here was social engineering at pre-teen scale, and “trimming armour” became a lasting meme precisely because it preyed on players who did not read the rules.

Diablo III’s gold-dupe exploit (2013)

After Patch 1.0.8 in May 2013, a gold-stack integer-overflow bug — triggered by cancelling auctions after the stack limit was raised from 1 million to 10 million — let players duplicate gold via the Auction House, with one player reportedly amassing about 371 trillion gold before Blizzard took both the gold and real-money auction houses offline (GameSpot, The Escapist). Blizzard chose not to roll back servers, instead auditing accounts to recapture more than 85 percent of the duplicated gold and identifying 415 players who exploited the bug, banning or reverting those who used it for personal gain — significant because the real-money auction house meant duplicated gold could be laundered into actual cash (Game Rant, BlizzPro).

WoW gold-selling, phishing, and account theft

World of Warcraft’s large economy made it a persistent target for a gold-selling black market fed by account compromise: stolen accounts are stripped and their gold resold, driven by phishing — fake Blizzard emails, sites, and login pages — plus keyloggers and trojaned add-ons; Blizzard treats buying gold and RMT as bannable and has run repeated security campaigns (Wowpedia, Blizzard). The threat has evolved with the game — security researchers at Kaspersky documented scammers abusing the WeakAuras add-on to manipulate what victims saw in Auction House trades and steal gold, showing that add-on trust remains an exploited vector (Kaspersky).

Habbo furni scams and real-world arrests

On Habbo Hotel, “furni” (virtual furniture) and coins are the currency of scams — including bogus duplication offers, since duplication is impossible and the scammer simply keeps the traded item, and phishing sites that mimic the Habbo login to harvest credentials (Habbo Wiki, Habbo Support). Habbo furni theft crossed into real-world law enforcement: in 2007 Dutch police arrested a 17-year-old and questioned five 15-year-olds over the theft of an estimated 4,000 euros (about US$5,900) worth of virtual furniture obtained via phishing, and Finnish authorities reportedly examined up to 400 related theft cases (Gizmodo, Graham Cluley).

Entropia’s real-money economy

Entropia Universe (MindArk) runs a real-cash economy with a fixed PED/USD exchange rate, making its virtual items directly convertible to money — and the site of record-setting virtual sales. Jon Jacobs (“Neverdie”) sold his “Club Neverdie” virtual property in 2010 for a reported US$635,000 in total, the largest single chunk about US$335,000, while a virtual space station had earlier sold for about US$330,000; Entropia holds Guinness World Records for most expensive virtual objects (Forbes, Wikipedia). It is the counter-example that clarifies all the others — when virtual value is designed to be real money, “scams” and “sales” sit on one continuum, and the stakes are literal.

Themes and lessons

The magic-circle boundary. Johan Huizinga’s “magic circle” — the idea that play happens inside a bounded space with its own rules — is the load-bearing concept. Most of these incidents are consensual cruelty inside the circle: players signed up for a PvP sandbox and got what the sandbox allows. The genuinely disturbing cases are the ones that puncture the circle — the Serenity Now funeral raid and the Fanfest 2012 remarks — where a real death or a real suicidal person collides with in-game combat. Player-killing a consenting stranger for their partyhat is not the same category of act as harassing a suicidal human, even when the same mechanic enables both; that troll-versus-harm line is the one the corpus holds, and the one the glossary draws (Gibbs et al.).

Griefing as emergent politics. EVE is the proof that when a game refuses to police social betrayal, players build states, spy agencies, and propaganda arms. Griefing at scale becomes governance and geopolitics — the same dynamic the books describe when trolling organizes into movements.

Griefing as content. The Leeroy-to-2b2t-to-Roblox line shows the act being progressively performed for an audience and monetized — the game-world mirror of trolling’s move from private lulz to a public attention economy.

The troll taxonomy in miniature. In-game griefing is a controlled natural experiment in the series’ immune-system thesis, with trolls as the network’s antibodies and pathogens. The mechanics map cleanly: the exploiter (Fansy, Falador, grey goo, the Diablo III dupe) finds the unpatched hole; the infiltrator (the Guiding Hand, Haargoth’s BoB coup) abuses trust; the con artist (Cally, Phaser, Bad Bobby, Ginko, armour-trimming) sells a lie for value; the raider (Habbo, Serenity Now, Burn Jita) mobilizes a mob against a target; and the lulz-seeker (Pool’s Closed, 2b2t) disrupts for its own sake. Each provoked the same governance responses — moderation, bans, walled gardens versus tolerated anarchy — that the books track in the wider internet.