HACKED!

**PetiteMalFleur** · 09-30-2013 01:59 AM

Just before ffxiv released another gaming site was hacked. In reading other forums it looks like a lot of people share account names and passwords between the two. People with stored credit card information have also had their money stolen. Has she played other mmos?

**Zeronic** · 09-30-2013 02:24 AM

She has, Ultima online. We heard something about LoL being connected to this but she hasn't played that. Besides, on Ultima she had a completely different name.
All the news I hear makes me wanna cry. We are paying costumers. We bought the game. Fix resolving issues before creating new stuff (aka new problems). Certainly when it comes to account related information or logging.
But, tbh, the blame should be on those hackers. To get their filthy hands on my girls account.

**Medura** · 09-30-2013 03:32 AM

as some say, get the autentication key, after 10 minutes, the hacker will be kicked, and cannot log back in without the key.

**GinTama** · 09-30-2013 03:45 AM

Originally Posted by Zeronic

I heard about gil spammers being regular people that got hacked, and I assumed those were people that gave all their info to said sellers so their account got breached. However, me and my GF both play this game the slow way and have no need for this so called service.
This morning however, she couldn't log, and I saw her being online in north shroud. First I thought it was a bug regarding the 3201 error. After coming back though, she was a lvl 26 botanist, instead of a 25. Taking a look I found her teleporting the place T_T.
She has been broken by this, since due to her handicap playing is hard and it took a long time to amass everything. She is afraid to lose it all by a stupid arrogant prick that somehow got into her account. Technical support doesn't give a damn, and after a couple of hours and tickets ingame, no reply. Support on the website is not available on sunday it seems.
We changed her password. But tbh we don't know why we should even do that since she gave no one her password ( not even I know it). What can we do? And please tell me she doesn't lose her char/equips

Lenalee, partner of Sienna Sapphire

sorry to hear that, sadly everyone can get hacked no matter the security. thats just the way hacking works, of course you can make it harder for the hacker. Its possible that your GF used the password and username somewhere else and that place got hacked and had the data leaked. But even if thats not the case, hackers got their methods. you just got unlucky.

**ShannaraAK** · 09-30-2013 05:08 AM

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

**lordjoosie** · 09-30-2013 05:45 AM

Originally Posted by ShannaraAK

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

If you really feel like getting a token and the other things that have been suggested aren't going to keep you from getting hacked, why would you have any interest in this game at all? A game where you're going to lose all your progress at any time and there's nothing you can do about it isn't worth playing.

I'm of the opinion that with the right steps you can take responsibility and control of your own account security. Get a security token Make a good password and don't use it anywhere else. Make an email account that doesn't use your character name and that you give out to nobody but SE. Don't buy gil. Don't visit RMT websights or open phishing emails. Get a good antivirus and keep it updated.

It's true that even with all of this, a talented hacker could still get into your account. But if you think someone is going to go through the time, effort, and expense to crack SEs security and totally overrun their systems, or circumvent all antiviruses and take control of your PC, rather than grabbing the literally THOUSANDS of accounts that could care less about security, and do none of the things I mentioned, you're out of your mind. They're running a business and the best business decision is to pick the low hanging fruit. Unfortunately there's a lot of it hanging low.

If you have really used a token and done all of the things I mentioned and still got hacked, I'm truly sorry and I suggest you do what I'll do if I ever get hacked. Run like hell, because if there's no way to keep your progress in a game there's no sense playing it.

**LamiaTrucido** · 09-30-2013 06:05 AM

Originally Posted by ShannaraAK

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

You aren't getting hacked without doing something wrong.

If you don't have a token and you get hacked - without having a virus, keylogger, or other malware on your computer, it was because you used the same username and password on your SE account as you did on another account/forum/etc and THAT was compromised, therefor your SE account got compromised. In this situation, you were hacked because you used poor judgement and used the same password on multiple sites (or alternatively used a incredibly simple password that was easily cracked). In this situation, it was your fault for using duplicate information.

In the case that you got hacked using a token, you had a piece of malware on your computer that interrupted your session, stole the one-time password, and then the hacker used it to log in and strip your account/use it to RMT/change your password/etc. In this situation it was your fault for having malware on your computer.

Both situations are the fault of the user.

Unless, of course, you would like to propose that someone stole the kernel to all the Digipass one-time passwords (like happened to RSA when China broke into Lockheed-Martin last year) and as a result have the ability to replicate your one-time password.

Of course, they would still have to know which of the (hundreds of thousands? millions?) of one-time password kernels are yours.

**Zeronic** · 09-30-2013 06:06 AM

No, she did not use a token, since we didn't knew that there was one for Iphone/android.
However, her accountname was picked for this game, and she doesn't have a small or easy password. She didn't have 1 specific mailaccount for a game but she does have 1 mailadres for games, thus only used before by ultima. She didn't buy anything from goldsellers (why would someone even do that?) And the only mail she got from square was one that said that she just payed for 1 month. No link in there, and she didn't click on any other kind of link like that.
Also for the above poster, so does this account to everything? I should assume that if I play sorta safe ( and not totally covered in ANY kind of security) that I can just play normally. If I don't give my information to anyone I should assume that I should not be breached.

**lordjoosie** · 09-30-2013 06:19 AM

I can't speak for LamiaTrucido, but for me I think "it's your fault" is probably not appropriate in this situation. What is appropriate is "it's your responsibility." To answer your question, as I think you're asking it, yes. If you never use the username and password or email for another sight or game, use updated antivirus, never go to shady websights, (or do it on a different PC) and don't open phishy emails, even without a token or token app you should never get hacked. The token is just another layer of protection in case something breaks down along the way.

**Kittra** · 09-30-2013 08:43 AM

It's really sad that they don't just implement a "World GM" like other MMOs so that players can report hacked accounts/abuse and get these issues resolved in minutes.

What we're left with is a technical support chat that, at my best guess, 75% of the time cannot help people with their problems as they do not have access to the functions of the game, only the account functions...

It's times like these that I miss the good old GM reporting in FFXI which would send an offending character off to Mordian Goal temporarily with an "active" GM where they could then resolve the offending account or ban it.

Thread: HACKED!

Thread Tools

Search Thread

Display