|
|
On February 22 2013 12:01 Mithhaike wrote:Show nested quote +On February 22 2013 11:29 Infernal_dream wrote:On February 22 2013 11:19 Mithhaike wrote:On February 22 2013 11:01 r.Evo wrote:
It pretty much boils down to weak/not encrypted databases being stolen (it was Sony where this happened right?) or user failure. The latter is pretty hard to accept tho. =P I'm only pointing out that GGG should have prevented ANY Brute Forcing from happening via a simple step. Luckily POE is a free game. My gear/gems are still there(quality gems not taken phew,valuable gems like Reduced Mana & chain still inside my stash), i've lost all my currency which is not a biggie(im a poor guy rofl) but its the fact i've gotten hacked for the first time ever that pissed me off. With my precautions, i've been safe while gaming for over 10years (started gaming when i was 13, im 26now). It's pretty hard to accept that im the weak link i admit, seeing how i've been hack-free and safe for over 10years,it's only reasonable & fair to put the scrutiny on GGG instead. Please tell us again, if they had people accounts why they would pick yours? If hackers had gotten into GGG's database and somehow stole logins, why you? Or anyone in this thread for that matter? Why would they waste their time bruteforcing yours, instead of say, krips? Or any other well known player or someone on the top of ladder? They have more gear, it'd make a bigger scene, so on and so forth. Something just isn't making sense to me. What im trying to say here is that if it's not brute forcing, then its something on GGG's end which they will never announce. I assume it's brute forcing because it's a smaller issue than GGG having a security breach(and its partly my fault in this case). But hell if you want me to take that stance im okay with it, after all i've already lost all my currencies. So lets take it as "GGG has a security breach! Look at all the people who got hacked!" instead if it makes you feel better
Once more: It is physically impossible to get brute forced with a ten character password at this point in time.
a) GGG has had their databases hacked/stolen/decrypted/sold them
b) It's some kind of user failure
Brute forcing is completely out of the question.
|
Brute Force is obviously out of the question. What is more probable is that it is a flash/java exploit on a 3rd party/fansite that can somehow access the login info stored in your browser/config files. It's likely that acquiring the info of all these accounts took time, but they act now that the bots are ready.
I got hacked once a few years ago. It was a 3rd party site that had its database breached, and I had the same login info on that site and the main site. My account was worth 4 digits. I guess it happens to all of us at some point. I'm careful now, but as long as I don't have an RSA token or an authenticator, I'm always a bit worried.
|
On February 22 2013 15:24 Pwere wrote:
Brute Force is obviously out of the question. What is more probable is that it is a flash/java exploit on a 3rd party/fansite that can somehow access the login info stored in your browser/config files. It's likely that acquiring the info of all these accounts took time, but they act now that the bots are ready.
I got hacked once a few years ago. It was a 3rd party site that had its database breached, and I had the same login info on that site and the main site. My account was worth 4 digits. I guess it happens to all of us at some point. I'm careful now, but as long as I don't have an RSA token or an authenticator, I'm always a bit worried.
Brute forcing is never completely out of the question as long as the most common passwords are things like "1234" or the username. therefore the limitation of logins to specific IPs might help quite a lot in that regard.
Third party software on the other hand is against the TOS of the game and therefore "ban-able". I would say that people getting bots, overlays, applications etc. are doing it at their own risk no matter what and are therefore more or less on their own when doing that! GGG are likely to ban the most abuseful and easiest detectable of those in the future so I would in no way recommend them! Sites with logins have to be trusted before you let them have your passwords and if you do not trust them, then use unrelated usernames, emails and passwords. It is not GGGs fault!
After the release of the game there has been nasties constantly roaming everywhere and trying to break the game by Ddossing game servers, spamming players ingame, creating cheats and bots, phishing/keylogging etc. etc. It is a completely different story from closed beta where only some primitive bots were there.and players were generally relatively nice barring the usual chat spammers, grifters and ill-mannered kids.
|
http://www.pathofexile.com/forum/view-thread/172532
This situation is exactly why games have security systems in place to prevent people accessing accounts in this way. Path of Exile does not yet have such a system, but it will do very soon.
This whole situation is a lesson in why it is inadequate to assume that passwords are sufficient security. I am very, very sorry that we did not have better security measures to make stolen passwords useless when we entered Open Beta.
Well im happy GGG recognize the seriousness issue and is solving it.
Sorry for sounding mean over the last few posts. It's just exasperating trying to tell people "no i did not download hacks/do stupid stuff" over and over again.
r.Evo thanks for the chat 
|
Wait my password might be stolen? Fuck... I need to change some psswords
|
Ugh, my middle mouse button just broke on my Razer Lachesis.
|
On February 22 2013 23:09 Varanice wrote:
Ugh, my middle mouse button just broke on my Razer Lachesis.
I can't stand using my middle mouse button for skills. I always ended up scrolling in everytime I'd try and use it for a skill. I try the hardest I can to not have to have a skill on my middle mouse.
|
You can disable scrolling to zoom in in the settigns
|
On February 22 2013 22:11 Mithhaike wrote:http://www.pathofexile.com/forum/view-thread/172532Show nested quote +This situation is exactly why games have security systems in place to prevent people accessing accounts in this way. Path of Exile does not yet have such a system, but it will do very soon. Show nested quote +This whole situation is a lesson in why it is inadequate to assume that passwords are sufficient security. I am very, very sorry that we did not have better security measures to make stolen passwords useless when we entered Open Beta. Well im happy GGG recognize the seriousness issue and is solving it. Sorry for sounding mean over the last few posts. It's just exasperating trying to tell people "no i did not download hacks/do stupid stuff" over and over again. r.Evo thanks for the chat
They aren't recognizing anything. What they say is common knowledge. They only put honey on people's wounds to make them stay because their real opinion is more like this : " Fuck those dimwits, I wish these by-products of one night stands had the fucking intelligence not to click on the free exalted orb link ... "
Plus it forces them to develop a authenticator, something they probably didn't want to do. In the long run it may not matter at all but right now I can bet anything that they are more pissed off than sorry.
|
Most of the time when people get account hacked its because of phising sites. There is alot of information in POE so of course people clicking links left and right. And just 1 click on the wrong site that may look like fine and is goodbye account.
Happen to me once in wow and since that day I never ever click any links I don't know 100% is secure and I have never been hacked since.
People have to remember its almost impossible to bot in POE so the currency sellers has to get items to sell elsewhere. And hacking accounts is one way they do it and they very good at it. Its there job
|
Is there any way to re-bind the middle mouse button? I'd really like to use that 8th skill a little more.
|
On February 22 2013 23:33 Qbek wrote:
You can disable scrolling to zoom in in the settigns
Yes, this is what I done as soon as scroll to zoom feature was patched in :D
|
On February 23 2013 00:12 lynx.oblige wrote:
Is there any way to re-bind the middle mouse button? I'd really like to use that 8th skill a little more.
i use MMB for auras ^^ So i basically never need to click it, but still the slot is useful.
|
Sill need someone for maps, i think im gonna multibox just to get extra loot from 66's since they are pretty faceroll solo but i need people to party up with for 70+ maps. im lvl 81 wand templar ign Butcherski
|
LMP vs GMP on freezing pulse? Kripp is using GMP on his FP Templar and most say GMP is better, but is it just a preference or is it basically a necessity that GMP > LMP
|
First race starts in 30 minutes!
|
On February 23 2013 01:19 Archers_bane wrote:
LMP vs GMP on freezing pulse? Kripp is using GMP on his FP Templar and most say GMP is better, but is it just a preference or is it basically a necessity that GMP > LMP
Can you sustain the mana cost along with all the other supports you want to use? Then I would say GMP is probably better.
|
for FP, since you can shotgun, GMP>>>>LMP
I would say, for most skills it is up to personal preference, but FP is a huge exception, the singletarget and AoE-Dmg-increase is just so huge.
Oh, and you can still play it with LMP. FP is just too good.
|
On February 23 2013 01:19 Archers_bane wrote:
LMP vs GMP on freezing pulse? Kripp is using GMP on his FP Templar and most say GMP is better, but is it just a preference or is it basically a necessity that GMP > LMP
I remember watching kripp test the difference a week or so ago. It wasn't close, GMP was 10x better. Kripp said he was honestly pretty surprised how big a difference it made.
|
GMP is 5x50% damage, LMP is 3x70%. So 250% damage vs 210%, and you get 5 hits to proc stuff with GMP.
Also, using GMP + LMP is usually dumb. You go from 5x50% to 7x35%, so 250% to 245% damage for 1.5x the mana cost. Good luck with that.
ps. Good luck in the race.
|
|
|
|
|
|
EPT
