this is the first hack i’ve experienced since i started gaming in 1999. i have a unique password for gw2, no spyware. i’m very careful about using my emails publicly ie i never post on forums etc. only on this one, ironically. i don’t share account/game information w/friends, family etc ie account names/passwords. and in viewing my recent email activity during this whole week-during the hack phase- i am the only isp accessing my email account information. i never authorized the requests for a password that i received for this account, And i have been resetting my passwords thru the ncsoft master account.
this is the first hack i’ve experienced since i started gaming in 1999. i have a unique password for gw2, no spyware. i’m very careful about using my emails publicly ie i never post on forums etc. only on this one, ironically. i don’t share account/game information w/friends, family etc ie account names/passwords. and in viewing my recent email activity during this whole week-during the hack phase- i am the only isp accessing my email account information. i never authorized the requests for a password that i received for this account, And i have been resetting my passwords thru the ncsoft master account.
Hmm, as far as I know….
Guild Wars 2 has no connection with the NCSoft Master Account. I am unclear how you can change your password through that account.
Important Note: You cannot link your Guild Wars 2 account to the NCSOFT Account Management (NCMA) system or link the two games through your NCMA. In addition, you do not need access to your existing NCMA to purchase Guild Wars 2 or to link it to your existing Guild Wars account.
It is concerning about where, exactly, you are ‘changing’ your password for Guild Wars 2.
I see. I was unaware you could change your linked GW1 password through the Master Account. Maybe speak to NCSoft Master Account support to investigate if anyone else has been accessing/trying to access your account there.
i will do that, but does it really make sense to you, to go to the trouble of changing the gw2 password through the ncsoft master account, but not taking the time to change the master account password? i know in most hacking scenarios, the user is at fault. but i am sorry, this screams a security breach somewhere, somehow, elsewhere.
I’m not sure what you are doing, but I have my GW1 linked and it’s automatically taking my GW2 password when I set up my GW2 account. And if I want to change my GW1 account password, it means I have to change my GW2 account password. No other location was needed for me to change the password.
since i am not sure how the hackers know exactly when my account was restored, the browser bugs, and changing of passwords etc. i prefer to reset my passwords from the ncsoft master account. in other words, i’m not comfortable resetting my passwords from this website atm.
I have used this site to change my password every time.
I’ve had this account since GW2 was in beta and had never had an issue up until about 2 weeks ago. Someone hacked in to my account and got me banned.
I got the account restored and since then I’ve been constantly having to change my password because hackers are somehow still getting in to my account.
I’ve got a support ticket in to change my email address right now in hoping that fixes the problem.
I have used this site to change my password every time.
I’ve had this account since GW2 was in beta and had never had an issue up until about 2 weeks ago. Someone hacked in to my account and got me banned.
I got the account restored and since then I’ve been constantly having to change my password because hackers are somehow still getting in to my account.
I’ve got a support ticket in to change my email address right now in hoping that fixes the problem.
It seems as if my wife is heading down this road also. We got the account back and restored but then very shortly after we got an email simply stating the email on the account had been changed. Our secure email was never compromised because it requires mobile authentication, the hackers were just able to send a request in to have email address changed and somehow it resulted in being locked out of the account once again.
Be who you are and say what you feel for those who mind dont matter and those who matter dont mind
~Dr. Seuss
My GW2 account has been getting hacked constantly for the past 2 weeks. My son’s account also.
There is some kind of a security breach, whether they want to admit it or not.
Do you and you son still live together?
Do you use the same PC?
Do you use the same WiFi connection and is it secure?
Do you play at WiFi hotspots?
There can be lots of reasons why you are getting hacked. An Anet database compromise is probably not one of them or there would be waves of reports.
A mobile authenticator will keep them from getting into your account even if they have your login info.
And if it was an ANet database compromise, the forums would be flooded with MANY more threads about accounts getting hacked than we are currently seeing.
Does anyone else find it an odd coincidence that all this is happening around the time the Asian servers were added?
China was not recently added, the version of the game there has nothing to do with NA/EU and it was always possible to play on our servers from anywhere. There have been players from China in GW2 since launch that are not hackers.
You’re talking about a separate version of the game with separate servers maintained by a different company. It’s like blaming Pizza Hut because McDonald’s gave you a Big Mac instead of chicken nuggets.
You’re talking about a separate version of the game with separate servers maintained by a different company. It’s like blaming Pizza Hut because McDonald’s gave you a Big Mac instead of chicken nuggets.
More accurately it’s like blaming a McDonald’s in the US because a McDonald’s in Asia gave you an incorrect order. But in this case one corporate entity maintains the integrity of the customers information for both locations.
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
Be who you are and say what you feel for those who mind dont matter and those who matter dont mind
~Dr. Seuss
You’re talking about a separate version of the game with separate servers maintained by a different company. It’s like blaming Pizza Hut because McDonald’s gave you a Big Mac instead of chicken nuggets.
More accurately it’s like blaming a McDonald’s in the US because a McDonald’s in Asia gave you an incorrect order. But in this case one corporate entity maintains the integrity of the customers information for both locations.
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
And what argument for the previous increases in compromised accounts? It is nothing but coincidence. More likely to do with some other email or game site’s data breach. Or just the fact that accounts were banned in a large wave recently. Not to mention the fact that people can use a proxy or something to hide their IP address.
It just isn’t fair to blame the China release without solid facts.
You’re talking about a separate version of the game with separate servers maintained by a different company. It’s like blaming Pizza Hut because McDonald’s gave you a Big Mac instead of chicken nuggets.
More accurately it’s like blaming a McDonald’s in the US because a McDonald’s in Asia gave you an incorrect order. But in this case one corporate entity maintains the integrity of the customers information for both locations.
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
And what argument for the previous increases in compromised accounts? It is nothing but coincidence. More likely to do with some other email or game site’s data breach. Or just the fact that accounts were banned in a large wave recently. Not to mention the fact that people can use a proxy or something to hide their IP address.
It just isn’t fair to blame the China release without solid facts.
Well I do have proof that mine came from China and Korea. When I was setting up my Authenticator I saw the allowed IPs list (I was recently hacked) and 3 were from China and 1 was from Korea. That’s proof enough for me.
FC [KI] Killer Instincts
LV80 ELE Brutanitus
LV80 Ranger ScaryHydra
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
No one has even attempted to demonstrate a non-racist connection between the two. OMG! The hackers must be Chinese! No one in America can hack a computer!
The increase in compromised accounts is due to two things:
First, Anet has been actively banning goldsellers. They ban in waves, remember, and when the stolen accounts they are using get taken away, they need new ones to use.
Second, a lot of players came back last month because of the changes to the game in the last update. Some of those returning players found out they have been hacked while they were not playing.
It has nothing to do with legitimate players in China.
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
No one has even attempted to demonstrate a non-racist connection between the two. OMG! The hackers must be Chinese! No one in America can hack a computer!
The increase in compromised accounts is due to two things:
First, Anet has been actively banning goldsellers. They ban in waves, remember, and when the stolen accounts they are using get taken away, they need new ones to use.
Second, a lot of players came back last month because of the changes to the game in the last update. Some of those returning players found out they have been hacked while they were not playing.
It has nothing to do with legitimate players in China.
Since you quoted me i’ll reply. In no way can anything I posted be construed as racist.
I pointed out the fact that there is a valid argument for the timing of the Asian release and what seems to be a rise in compromised accounts. This includes a hypothetical scenario where the contractor for the China release had access to US and EU account info and did not secure it properly (I.E. Sony 2011)
A recent compromise of a family members account originated in China however the final unauthorized access was made from California so it’s safe to assume that the hackers are not confined to a geographical location. And i’m not the one who is assuming the race of a person based solely on where they log in from.
Attachments:
Be who you are and say what you feel for those who mind dont matter and those who matter dont mind
~Dr. Seuss
While I truly believe there has not been any compromise of data at Anet, there is a valid argument for the timing of the Asian release with what appears to be an increase in compromised accounts.
No one has even attempted to demonstrate a non-racist connection between the two. OMG! The hackers must be Chinese! No one in America can hack a computer!
The increase in compromised accounts is due to two things:
First, Anet has been actively banning goldsellers. They ban in waves, remember, and when the stolen accounts they are using get taken away, they need new ones to use.
Second, a lot of players came back last month because of the changes to the game in the last update. Some of those returning players found out they have been hacked while they were not playing.
It has nothing to do with legitimate players in China.
Since you quoted me i’ll reply. In no way can anything I posted be construed as racist.
I pointed out the fact that there is a valid argument for the timing of the Asian release and what seems to be a rise in compromised accounts. This includes a hypothetical scenario where the contractor for the China release had access to US and EU account info and did not secure it properly (I.E. Sony 2011)
A recent compromise of a family members account originated in China however the final unauthorized access was made from California so it’s safe to assume that the hackers are not confined to a geographical location. And i’m not the one who is assuming the race of a person based solely on where they log in from.
Except your logs show that they have been trying to access your account since before 4/16/2014. That’s just from your pic of that one page. Who knows how far back it really goes.
I pointed out the fact that there is a valid argument for the timing of the Asian release and what seems to be a rise in compromised accounts. This includes a hypothetical scenario where the contractor for the China release had access to US and EU account info and did not secure it properly (I.E. Sony 2011)
I cannot imagine a scenario where Anet would give another company access to their account records. They are not transferring the servers to China, it is an entirely new and separate entity that is being created.
You can keep calling it “valid” if you want, but don’t expect me to agree.
@ Tolunart: The nice thing about debate is no one is ever expected to agree, accusing someone else of racism is a totally separate issue.
I take great offense to the comments about the game’s expansion into China being the source of the problems. A player living in China is no more or less likely to be a hacker than someone in Italy, Brazil, or the USA.
Hackers gave those who got the game for Christmas some time to earn gold and items that can converted to gold as well as some of them to stop playing the game and be less likely to notice if they slip in and hack their account.
The problem is with our case when they originally hacked the email account they got a copy of the serial key. Whenever we get the account back the hackers just snatch it right back by somehow changing the associated email account (Im assuming using the serial key they stole).
We told them when the account was restored the first time this was an issue and asked for a new key but that request has never been addressed by Anet. They just keep asking us to secure our email and now we’ve been wiped clean again and are back to “escalated ticket” status for restoration.
Kinda frustrating that they assume our email is still insecure and won’t even address the real issue of the stolen key. Until that gets fixed the account will never be secure.
Be who you are and say what you feel for those who mind dont matter and those who matter dont mind
~Dr. Seuss
I have proof my email account was accessed by someone other than me and yet the providers records showed no access but mine. I have no idea how that’s possible, but either the provider (and their site security) is totally incompetent or they are flat out doctoring the records to cover up security breaches. It’s an old (no longer in use) AT&T account (but run by a larger provider that starts with a Y and ends in OO).
Your ‘perceived’ increase in account hacks is just that…perceived, not factual. If an actual DB breach had occurred, these forums would have 1000 times more “account hacked!”, threads.
Use a NEW proxy email address and enable 2 step authentication on both the email account and your GW2 account.
I’m curious if all these hacks are having passwords changed via a Support Ticket or are hey logging in here and changing the password (or is the password NOT being changed)?
We go out in the world and take our chances
Fate is just the weight of circumstances
That’s the way that lady luck dances
Scenario: an account is hacked, restored, and then hacked again because the user’s e-mail address is compromised, meaning all discussions with CS are read by the hacker. In some cases, the messages are intercepted, responded to, deleted, marked as read, etc., by the hacker.
Scenario: A re-hacked account may come about because the computer was not truly secured, and a keylogger still remains on the computer.
Scenario: The re-hacked account may be coming from an internal source, such as a friend or family member who accesses credentials because they’re written down at the home.
Your ‘perceived’ increase in account hacks is just that…perceived, not factual. If an actual DB breach had occurred, these forums would have 1000 times more “account hacked!”, threads.
