Guild Wars 2

I believe these details were from an internal source and Anet are just trying to cover it up.

I use a different password for every account for websites and games I use, there is zero interchangeability. Further more I was never registered with any fansites or any sites relating to guild wars 2! Which kinda narrows down where they could have gotten login details from…

I have a “Clean” computer which I only use for gaming and work, so no key logging or any other malicious activities can occur. I have a laptop I use for everything else which I can access next to my computer, so even if something were to happen there would be no byplay between them (and yes my home network is set as public for other really unlikely issues that can still be possible).

I was also online when I was hacked, I spent 30 minutes in a “mini game” of logout the other person wars. While trying to change my password in the my account settings page which would not work until I was finally defeated and cleaned out – amusingly probably the most intense and challanging thing ive done in GW2 so far … other than pressing button 2 for 5 minutes while fighting zhaitan

All evidence from my perspective is pointing to it clearly being an internal breach – be it hack or someone selling the details on, which Anet are covering up. Moral is you are never safe, Anet cant guarantee your account security and they wont replace lost items, so just bare that in mind.

Anyone else find their situation similar? Fansites … yeah right.

It’s all about the email. If you use the same email account for Guild Wars and anything else, your chances of getting hacked greatly improve.

In all mmo releases I’ve been present at, this has happened. Every time there were always those people who pointed the finger at the mmo’s respective company, and they were always wrong.

The only exception being Rift, in which there was a legitimate exploit and a member of the community was able to successfully reproduce it multiple times (within the confines of his friends/family’s accounts) and report it to Trion. Trion were quick to fix the issue, and gave the person a lifetime sub to Rift. They also announced it on their forums, letting all members of the community know exactly what happened.

Because it’s 100% impossible to be compromised otherwise. They could have brute forced your password. You could have a virus. Your email may have been compromised. They could have just found an exploit. There’s many other scenarios other than you entering your password on a fansite.

It’s not impossible to be compromised from the inside, but it’s highly unlikely that happened. They would be required to inform their customers if personal information was compromised. If they have direct access to your credentials, why would they even tamper with your character? They could likely do far more than take someones stuff. They’re usually gold farmers. Did you get an IP address? Report them or take matters into your own hands.

Regardless if it were or not, I blame these newer gaming standards that have just started as of the past couple years of using your email address as your account name. This leads to many many problems, and chances are people use the same email for everything, or majority of important things. So this cuts hacker workload by 50% if they already have the account name to go by. And they then often get access to many of your other accounts.

Most of security should be on their side. From what I’ve seen in other games, it takes awhile for a new game to learn how to manage it.

Something that’s peculiar is the gold-seller spammers aren’t even in game while they’re doing it. Not even using the actual client to access the game…

Gareth Porlest.7209:

It’s all about the email. If you use the same email account for Guild Wars and anything else, your chances of getting hacked greatly improve.

This is in relation to the news article about “11000” accounts being hacked from data taken from fansites. Please bare in mind I did not have my details registered anywhere apart from with anet.

Biggus Diccus.3129:

I believe these details were from an internal source and Anet are just trying to cover it up.

I use a different password for every account for websites and games I use, there is zero interchangeability. Further more I was never registered with any fansites or any sites relating to guild wars 2! Which kinda narrows down where they could have gotten login details from…

I have a “Clean” computer which I only use for gaming and work, so no key logging or any other malicious activities can occur. I have a laptop I use for everything else which I can access next to my computer, so even if something were to happen there would be no byplay between them (and yes my home network is set as public for other really unlikely issues that can still be possible).

I was also online when I was hacked, I spent 30 minutes in a “mini game” of logout the other person wars. While trying to change my password in the my account settings page which would not work until I was finally defeated and cleaned out – amusingly probably the most intense and challanging thing ive done in GW2 so far … other than pressing button 2 for 5 minutes while fighting zhaitan

All evidence from my perspective is pointing to it clearly being an internal breach – be it hack or someone selling the details on, which Anet are covering up. Moral is you are never safe, Anet cant guarantee your account security and they wont replace lost items, so just bare that in mind.

Anyone else find their situation similar? Fansites … yeah right.

It doesn’t have to be a specific GW2 fan site it could be any game site but besides that i have seen posts like this for years now on every game telling how they got their computer shielded from radioactive blasts connected to through secret NSA servers behind CIA firewalls running the best NSA protection software and never go to any sites that could compromise you and the conclude that the hacking is internal at the devs company of the game you currently play.

P.S Do not be surprised to receive your 72 hour ban with a nickname like that either and post how it was not your doing afterwards :&)

GW2 should have a lot of hacking reports. Think about it. How many people came from GW1 that didn’t update their password. Their accounts could have been compromised for years and the only thing saving them was the character name security question.

If ArenaNet was hacked, there’d be hundreds of posts per day about being hacked. You’d commonly hear about it in-game and a few of your guild members would be victims. As seen in Rift.

Biggus Diccus.3129:

Gareth Porlest.7209:

It’s all about the email. If you use the same email account for Guild Wars and anything else, your chances of getting hacked greatly improve.

This is in relation to the news article about “11000” accounts being hacked from data taken from fansites. Please bare in mind I did not have my details registered anywhere apart from with anet.

I am sure that you where invissible on the web until your registered a account with A-net >.>

IF this was an internal Anet hack (for what reason I could not possibly imagine) why would you be having a “log the other person out” battle.
Anet has your EVERYTHING and unless you play 24/7 hopped up on some amphetamines because of your constant paranoia, they can change your password at their leisure while you sleep.

You do know that there are people that hold companies responsible for wrong doings right? The sensationalized title makes me wonder if this thread will last long at all.

I haven’t been hacked and I use the same email with a password that i’ve used before. Baseless accusations are baseless.

Next time activate the e-mail authentication function.

They mail out your cash to other accounts you can see the last mailed person in your mail system in game, so I added them as a friend and reported them – they are still playing now.

As for some of the replies, brute forcing a minimum 11 digit password is unlikely.

I will repeat the pc that uses those usernames and passwords is only used for those applications, no web browsing nothing. I have a separate laptop(which I am on nowkittenderp!) which has NO connection with the computer and has and never will have those usernames on them.

It’s unlikely that someone with access to super computers specifically targeted me to get into my GW2 (and only my GW2 account). I dont mind the loss of the gold, but what I do mind is being bullkittened by anet.

Jelleh.1380:

In all mmo releases I’ve been present at, this has happened. Every time there were always those people who pointed the finger at the mmo’s respective company, and they were always wrong.

The only exception being Rift, in which there was a legitimate exploit and a member of the community was able to successfully reproduce it multiple times (within the confines of his friends/family’s accounts) and report it to Trion. Trion were quick to fix the issue, and gave the person a lifetime sub to Rift. They also announced it on their forums, letting all members of the community know exactly what happened.

There was also the Aion official site that was hacked and re-directed to a .cn site that harvested everyone’s login and pw’s for about a week straight before they figured it out.

That was awesome.

phishing has nothing to do with hacking a site.

It seems gaming news websites are also picking up on this now, glad it’s not just me:

http://gamingillustrated.com/guild-wars-2-hacked-players-dispute/

Having methods and systems in place to reduce remove this issue from my end, some people think im paranoid, it’s a simple safety measure which is also a by product of my work. It just doesnt add up:

Statement: Your account details were taken from a fansite.
Statement: You have a virus
Statement: Your keylogged
Statement: Your password was brute forced.

Inconsistencies:
The only 2 places that have my login details are ANET and the computer I login with.
I have a separate laptop I use in conjuction with a desktop for all activities that have any risk involved were system security can be comprimised – picking up a virus/looking at naughty pictures and videos etc etc
Everything that has an account for games, websites and importantly work etc has a unique long username/password.

Again I will repeat im not complaining about it happening, I am just whistle blowing as there are serious inconsistencies going on here. And im not gonna be spood fed kitten just because im being told it’s puppys. Im just making you aware of it.

hmm if the account hacking was “more likely internal” than fansites as you claim wouldnt there be more instances of hacking reports?

Not so much questioning your claim just the language used really.

The figure in that article says 11,000 accounts, which may sound like a lot, but for an international game that has sold over 2 million units, that is only 0.55% of the userbase (less than 1% if that confused you).

Strikes me as a very small population has problems with hackers (i.e. user error).

Biggus Diccus.3129:

It seems gaming news websites are also picking up on this now, glad it’s not just me:

http://gamingillustrated.com/guild-wars-2-hacked-players-dispute/

Having methods and systems in place to reduce remove this issue from my end, some people think im paranoid, it’s a simple safety measure which is also a by product of my work. It just doesnt add up:

Statement: Your account details were taken from a fansite.
Statement: You have a virus
Statement: Your keylogged
Statement: Your password was brute forced.

Inconsistencies:
The only 2 places that have my login details are ANET and the computer I login with.
I have a separate laptop I use in conjuction with a desktop for all activities that have any risk involved were system security can be comprimised – picking up a virus/looking at naughty pictures and videos etc etc
Everything that has an account for games, websites and importantly work etc has a unique long username/password.

Again I will repeat im not complaining about it happening, I am just whistle blowing as there are serious inconsistencies going on here. And im not gonna be spood fed kitten just because im being told it’s puppys. Im just making you aware of it.

You’d be surprised how hard it actually is to lose your account to a virus, keylogger, or even a bruteforcer. Most accounts are compromised via social engineering and using similar email and password combinations, also incorrectly referred to as ‘hacking’.

Conspiracy theories are useless, save for starting rumors, and serve nothing but chaos. With the theorist dwells the burden of proof; so where is it?

It doesn’t exist.

If ArenaNet suffered a security breach the damage would be widespread. They’ve nothing to gain and much to lose from covering up such a low number of a accounts compromised.

Biggus Diccus.3129:

I will repeat the pc that uses those usernames and passwords is only used for those applications, no web browsing nothing. I have a separate laptop(which I am on nowkittenderp!) which has NO connection with the computer and has and never will have those usernames on them.

Biggus Diccus.3129:

Inconsistencies:
The only 2 places that have my login details are ANET and the computer I login with.
I have a separate laptop I use in conjuction with a desktop for all activities that have any risk involved were system security can be comprimised – picking up a virus/looking at naughty pictures and videos etc etc

Going to point out that unless you have two completely separate ISPs run through different means of telecommunication (ie. DSL for one, Cable for the other)… you’re going to freak out here.. All of your communication is easily datamined from packets sent through any common hub.

Oh, and since you’re probably using the same internet connection for both machines, regardless of whether you have them technically “networked” — they can see each other and communicate with each other.. Most keyloggers and virus fragments nowadays are engineered for network contamination.

I have a “Clean” computer which I only use for gaming and work, so no key logging or any other malicious activities can occur. I have a laptop I use for everything else which I can access next to my computer, so even if something were to happen there would be no byplay between them (and yes my home network is set as public for other really unlikely issues that can still be possible).

/facepalm

I love people that cannot accept responsibility for their own failings. It always has to be the company itself. If that were true, then 2 million people would have been compromised, not just a few thousand which is the norm for MMO’s.

Don’t forget, Renegadeimp.. Biggus stated the computer he plays the games on has never been on the web, nor has it had any connection with any other computer out there.. it somehow just came preinstalled with all the games he’ll ever play. ^.^