My account was hacked and how it's been handled so far.

Printable View

Show 40 post(s) from this thread on one page

09-12-2013, 10:48 AM
LuxLux

SE problem might be from the customer service. They could easily be selling the accounts. SE should consider investigating this issue internally.
09-12-2013, 10:49 AM
rabbitzero

Quote:

Originally Posted by FayeOrikasa

Just so all the naive and ignorant people know... You can get a keylogger from legitimate sites, usually related to the game.

For example, back in 2005 the popular site Allakhazam (ZAM) unknowingly had an advertisement embedded with a keylogger.

People don't seem to remember this, since it was that long ago, but Flash had a flaw in it that allowed adds with flash to run things like that. So the hackers found a way to put an add with keylogger on targeted sites. Even the add could look legit, on a legit site, and just visiting with flash on the computer could give you it. It got closed about a week or two after, but even Blizzard had big notices on the start of the game. It's also one of the reasons the launcher got created.

That said, a lot of these hacked accounts seem to be from leaks other places where people used the same password/login info and not using a token. Doing one is risky enough, doing both is silly.
09-12-2013, 10:49 AM
ShinrinCole

Quote:

Originally Posted by Ryujin_Ketu

He told me to change my password immediately so the other individual couldn't log back in, so I did.

Wait, if you changed your password and they are still able to log in... you have a key logger on your computer. I suggest to run a virus scan right now, because that's what's happening with your account being hacked, some how you got a keylogger, this can happen if you go to any site though an ad or badly written webcode.

I've been hacked on WoW myself, back in march, took a few hours to straigten it out on the phone. Even though I did a virus check, it didn't detect anything, and i got me a authiticator as Blizz calls it (get it from the same company as SE's ones) and all's been good since.
09-12-2013, 10:50 AM
Mysticstrider

Why can't you just deactivated your security token through account management? I remember there's a security token activation there and the feature to add the mobile app security. I'm sure you tried that lately but it hasn't been working it seems... but never give out your personal account information to anyone, even the customer service representatives working for any company. I never give out any of that to anyone, if I do I always change my password immediately when they issue our a temporary password for me to my account. But I'm sorry what happened to your account and some of the items, I hope you're still able to retrieve them.
09-12-2013, 10:52 AM
Silverwalk

Quote:

Originally Posted by Tsuneo

It sounds like the game doesn't kick you even if a token is added to the account or if the account password is changed which in turn means if the person who compromised the account doesn't log out they don't have to go through the new security measures.

I see.

Does anyone know if the game locks you out and requires you to change your password if a log in attempt is made from a different IP?
09-12-2013, 10:54 AM
ShinrinCole

Quote:

Originally Posted by Tsuneo

It sounds like the game doesn't kick you even if a token is added to the account or if the account password is changed which in turn means if the person who compromised the account doesn't log out they don't have to go through the new security measures.

If that is true, then the hacker shouldn't be able to log back in after maintenance.
09-12-2013, 10:58 AM
Gerkargeo

Makes me wonder if the forums are protected? In Chrome, I don't see the web address with https, it just has the forum name. Maybe they found a way to get username/pwd from forum and are sending it out through some gill dealer network, or they have it on some online list that is pooled.
09-12-2013, 11:02 AM
Mamakat

I've actually been pretty stressed today about the possibility of being hacked (since it seems it's been happening more and more) Had to remove my old token cause one of my kids lost it, and can't register phone ap til tomorrow, so I made a crazy new pass that I had to write down to even remember. /sigh my heart goes out to everyone who got hacked to spam gil selling advertisements. They'll be on the entire server's blacklist by the time they get back and won't be able to talk to anyone T.T
09-12-2013, 11:11 AM
Silverwalk

Another question. Was your password unique to ARR?

If not what other sites did you use it on?

We might be able to figure out which site they getting passwords from with this information.

edit: Ok I see where you said you only used this password for ARR.
09-12-2013, 11:21 AM
Comicbookguy

My LOTRO account was hacked and I haven't played that game for 3 years and never visited any of the gil seller website since I wasn't playing any MMORPG.

Sometime it's an insider job. Turbine employee giving out account information to gil seller. It's like your Credit Card...some dirty bank employee will sell thousands of CC information to people for $20k

Show 40 post(s) from this thread on one page