Wow they really screwed up. Many accounts lost due to hacking

Felheart5 · September 2012

Originally posted by Connmacart
Originally posted by VirusDancer
It's like locking the front door. Doors have improved. The locking mechanisms for doors have improved. The frames for doors have improved. Etc, etc, etc.

Yes, it's still the person's responsibility to lock their door - but that doesn't mean that the doors & locks have not also improved.

The technology companies can use has improved - if they choose not to improve what they are using (when other companies have) - you cannot blame the user for that...outside of the user still doing business with that company.

Sure but if a person has the most advanced lock, but uses the same key for all. On top of that has lost about ten keys around town than don't be surprised if you get robbed. Anet is not responsible for peoples stupidity

The door analogy doesn't quite work. It's more like if we all had personal security guards we pay for on top of the regular lock and key, the developer, or at least most competent internet content providers do their part in having good security routines on their end as well. This hasn't quite been the case so far with GW2.

MercuryRisin · September 2012

Originally posted by WizGamer

http://www.guildwars2forum.com/threads/9418-Error-3002-email-not-found

http://www.gamefaqs.com/boards/938738-/63906420

I received an e-mail from ArenaNet:

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

-The ArenaNet Team

They didn't even bother checking with me before changing my password. How did that happen?

This is really unfortunate for ArenaNet, but I really feel like they should have had better security systems in place. This is ridiculous.

TL; DR GO CHANGE YOUR E-MAIL and PASSWORD NOW

DUDE, that email that you got WAS THE HACK,

i almost clicked that myself, but decided to read more email first, thats when i read an article about GW2 accounts being hacked, why? because they clicked that link in the same email you got. Fortunate for me i subscribe to other tech/gaming websites.

Whats rule #1? never click an email link before investigating first

But here is something else, I believe it was an inside job, someone working at Arenanet that sold our email addresses to said hacker/hackers, how else did they wind up with our email addresses in the first place that bought and registered the game?

Orphes · September 2012

Originally posted by dbgager

It was the users fault that hackers gained his PW in the first place. Don't expect NCSoft to protect you from your own stupidity.

SOE doesn't allow the login to be changed and have an added verification to be able to change the email adress.

Blizzard adds a verification step to change the login/email.

Why is it so hard to grasp that ArenaNet can do better and why only retort to insults?

Doesn't matter how stupid I am.

VirusDancer · September 2012

Originally posted by Connmacart
Originally posted by VirusDancer
It's like locking the front door. Doors have improved. The locking mechanisms for doors have improved. The frames for doors have improved. Etc, etc, etc.

Yes, it's still the person's responsibility to lock their door - but that doesn't mean that the doors & locks have not also improved.

The technology companies can use has improved - if they choose not to improve what they are using (when other companies have) - you cannot blame the user for that...outside of the user still doing business with that company.

Sure but if a person has the most advanced lock, but uses the same key for all. On top of that has lost about ten keys around town than don't be surprised if you get robbed. Anet is not responsible for peoples stupidity

ANet is responsible for having relatively decent doors. Nobody's arguing that if the user posts their user/pass combination on every forum that it's ANet's fault. That does not remove the responsibility of ANet to do what they can.

Car safety would be another analogy. Car safety has improved. It the driver thinks it's a good idea to drive off a cliff, that's not on the car company. Yet, car safety has continued to improve. All sorts of things along those lines have improved.

It's no different with computer security.

Password boxes used to be clear text. Yes, it was the user's fault if somebody was standing next to them as they typed their password. Guess what though? Password boxes still show asterisks all the same these days.

Customer X is using Company A's product. Company B provides a similar product, but they include additional security features. Customer Y, in reviewing the two products - is likely to go with Company B. Customer X is also going to take note of what Company B. Customer X may switch to Company B. Company A does not want to lose Customer X and also would like to steal Customer Y away from Company B. Heck, they see Customer Z out there looking through the window and want to snag them. Company A's going to include additional security features as well.

I can see some of the folks defending ANet running their own companies...ahem:

Customer: Hey, my account was stolen because you didn't ask me to verify the changes.
Owner: No, your account was stolen because you're an idiot.
Customer: Other companies provide additional security features where this would not have happened.
Owner: No, it would have still happened because you're an idiot.
Customer: No, they would have asked me to verify the changes and I would not have.
Owner: Idiot, idiot, idiot...hey, did I mention idiot?
Customer: Yeah, I'm an idiot for doing business with you. Goodbye and good riddance.

It's mind boggling...

Impmon · September 2012

I've used various gaming websites to post on forums and I've only been hacked once and that was from using one particular site. That was a curse gaming website. I downloaded some addon's for WOW. I logged onto the armory one day and noticed my character looked naked. Quickly logged on to find another character was created and got messages for someone trying to log in while I was on. The new alt was a mule and had a buttload of cash and shards.

I quickly changed everything and contacted gm's who restored my stuff.

All that happened after using a curse.com gaming website.

Now i see that people who post on their gw2guru run by curse gaming are finding their accounts hacked. They've unwittingly used the same password for all their accounts.

I suspect they've been hacked for some time or someone set up the site specifically to hack peopes accounts.

dbgager · September 2012

You must realize that websites can install software on your computer without you knowing..Especially if you have inadequate malware protection. And even then some its very hard to detect. Drive by installations. Just by clicking on some of these links, all the sudden you have a keylogger even if you don't provide any data. ANd these things run in hidden processes, which are called rootkits, so you don't even know there running.

Felheart5 · September 2012

Originally posted by MercuryRisin

DUDE, that email that you got WAS THE HACK,

i almost clicked that myself, but decided to read more email first, thats when i read an article about GW2 accounts being hacked, why? because they clicked that link in the same email you got. Fortunate for me i subscribe to other tech/gaming websites.

Whats rule #1? never click an email link before investigating first

Don't think so, got the same email, being careful around stuff like that I didn't click anything and tried login in instead. At that point the account was already lost. So I believe that actually is a legitimate email simply telling you the email change was succesful.

Edit: Doesn't matter as such though, never click links in mails like that even if they likely are legit. Still safer to just log in at the actual site or whatever.

Orphes · September 2012

Originally posted by VirusDancer
Originally posted by Connmacart
Originally posted by VirusDancer
It's like locking the front door. Doors have improved. The locking mechanisms for doors have improved. The frames for doors have improved. Etc, etc, etc.

Yes, it's still the person's responsibility to lock their door - but that doesn't mean that the doors & locks have not also improved.

The technology companies can use has improved - if they choose not to improve what they are using (when other companies have) - you cannot blame the user for that...outside of the user still doing business with that company.

Sure but if a person has the most advanced lock, but uses the same key for all. On top of that has lost about ten keys around town than don't be surprised if you get robbed. Anet is not responsible for peoples stupidity

ANet is responsible for having relatively decent doors. Nobody's arguing that if the user posts their user/pass combination on every forum that it's ANet's fault. That does not remove the responsibility of ANet to do what they can.

Car safety would be another analogy. Car safety has improved. It the driver thinks it's a good idea to drive off a cliff, that's not on the car company. Yet, car safety has continued to improve. All sorts of things along those lines have improved.

It's no different with computer security.

Password boxes used to be clear text. Yes, it was the user's fault if somebody was standing next to them as they typed their password. Guess what though? Password boxes still show asterisks all the same these days.

Customer X is using Company A's product. Company B provides a similar product, but they include additional security features. Customer Y, in reviewing the two products - is likely to go with Company B. Customer X is also going to take note of what Company B. Customer X may switch to Company B. Company A does not want to lose Customer X and also would like to steal Customer Y away from Company B. Heck, they see Customer Z out there looking through the window and want to snag them. Company A's going to include additional security features as well.

I can see some of the folks defending ANet running their own companies...ahem:

Customer: Hey, my account was stolen because you didn't ask me to verify the changes.

Owner: No, your account was stolen because you're an idiot.

Customer: Other companies provide additional security features where this would not have happened.

Owner: No, it would have still happened because you're an idiot.

Customer: No, they would have asked me to verify the changes and I would not have.

Owner: Idiot, idiot, idiot...hey, did I mention idiot?

Customer: Yeah, I'm an idiot for doing business with you. Goodbye and good riddance.

It's mind boggling...

I do not know if I ever have disagreed with you. If so I am sorry and you seem to be the only hope for logic and mankind...

Castillle · September 2012

The only part where they screwed up is not enough verification on changing your email.

Amana · September 2012

We have a thread for this topic here: http://www.mmorpg.com/discussion2.cfm/thread/363238/Thread-For-Discussion-of-Phishing-Emails-Account-Security-Matters-.html

Please check before posting. Thanks.

Howdy, Stranger!

Wow they really screwed up. Many accounts lost due to hacking

Comments

Howdy, Stranger!

Quick Links

Wow they really screwed up. Many accounts lost due to hacking

Comments