Guild Wars 2

if u use search u can find my similar topic few days ago
still no answer from AN

but interestig quote that this feature is OFF now for fixing and etc

this option is temporary OFF because of hackig wave. When all will be ok they will turn it on with confirmation feture (i hope)

Shure. But here we can se what? They provide ability to change it without proper autentification and authorization.

Clear install from my W7U box version. And ofcourse the second step was installig and configuring antiviral software and firewall, then plugin ethernet cable to update antiviral data bases. So yes. I pretty paranoical for such questions and its very interesting for me how and when. Btw I know what virus you are talking about. I’m not just simple user.

Masterpyro.4310:

KOS.1057:

Yep and they know that my password was not qwerty then (it was smthing like cB’gO=KGfzH7kJQ`2=78U#@o)
But ofcourse they answered that this is not their fault, this is my fault. I’ve used to simple passw. Or passwd used somwhere else.
And of course this is not their fault when criminal can change email without any confirmation.

---

Forwarded message —-———-
From: ArenaNet <noreply@guildwars2.com>
Date: 2012/9/17
Subject: The e-mail address for your Guild Wars account has been changed
To: zerort@gmail.com

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

-The ArenaNet Team

this was THE ONLY ONE email i’ve received from AN. So yep. Thx.
Your acc was stolen. Have Fun. Messege should look like this.
(email acc have sms confirmation so… and keyloggers etc is silly. I was building new system and so have clean OS install for rhat time with antivirus and etc.) If you think AN is not involved or this is not their fault. Than for example, it will be normal that someone changes sms report number for your CC and than stole all your money. And bank will do nothing. Enjoy…

BTW I still have no answer for my tiket about message above. For first tiket respons wath within 5 minets. Refund has no answer too.

No its not ANets fault at all. You probably used this password on an old account on some other forum/website/game or on a compromised computer.(If you make passwords like that I highly highly doubt you make more than 1-2 of them that you have to remember at a time) And also, kudos for a password like that but check this out: http://i56.tinypic.com/2gweyd1.png

Youd be better off with a password like ‘mountainsapplesaucerocketcake’ that takes 550 years to crack than something hard to remember like your example that can be guessed in 3 days.

There are over 2 million players, give the support team some time to get through stuff. They aren’t ignoring your ticket on purpose.

You not reading at all?
It was random gen pawwd exatly for GW2. It was generated special for it.
Thats it!

And yep I don’t kep them in head. I use flasdrive.
(And yes its keep in safe place and OS was installed from 0. no keyloggers or troyans)

READ IT CAREFYLLY
The hacker changed email account name, i.e. login email! WITHOUT any confirmation on my current email!
Its like i call in your bank and chage phone number for secret sms verification on my number. And you even know. Do you like it?

About your password. Its not 50000000 years
I can use bruteforce dictionary to combine words not symbols like in my passwd

And yep. They are ignoring.
Still no answer. Why there were no confirmation request when this hacher changed my email?

So what about my case?
I’m paranoiac because I live in Russia bro.
Tell me about your $200 deadbolt…
We all here have 10cm thick ssteel doors and etc.
So what? I have cB’gO=KGfzH7kJQ`2=78U#@o or smth like this passw.
It doesnt help. And know what. AN dont send me confirmation request when somebody was changin my account name email. So? My fault?

Forwarded message —-———-
From: ArenaNet <noreply@guildwars2.com>
Date: 2012/9/17
Subject: The e-mail address for your Guild Wars account has been changed
To: …………………..

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

-The ArenaNet Team

This is original (without my email ofcourse) message.
This message was the first and only one after purchasing confirmation with my “serial”
and my account name confirmation email.
My email acc. have sms login confirmation (as 2nd factor) so…

Explain me somebody, how is it possible to hackers to change account name without any confirmation request?
Is this my fault or AN fault?
Edited by moderator: demanding language

i think 2 factor authorization is simplier
sms or something like token or app for iOS/Android
like it done on battle.net

Yep and they know that my password was not qwerty then (it was smthing like cB’gO=KGfzH7kJQ`2=78U#@o)
But ofcourse they answered that this is not their fault, this is my fault. I’ve used to simple passw. Or passwd used somwhere else.
And of course this is not their fault when criminal can change email without any confirmation.

Forwarded message —-———-
From: ArenaNet <noreply@guildwars2.com>
Date: 2012/9/17
Subject: The e-mail address for your Guild Wars account has been changed
To: zerort@gmail.com

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

-The ArenaNet Team

this was THE ONLY ONE email i’ve received from AN. So yep. Thx.
Your acc was stolen. Have Fun. Messege should look like this.
(email acc have sms confirmation so… and keyloggers etc is silly. I was building new system and so have clean OS install for rhat time with antivirus and etc.) If you think AN is not involved or this is not their fault. Than for example, it will be normal that someone changes sms report number for your CC and than stole all your money. And bank will do nothing. Enjoy…

BTW I still have no answer for my tiket about message above. For first tiket respons wath within 5 minets. Refund has no answer too.

I thought it was the idea of it. Like in UO autoattacking your foe =)
There is nothing about it in EULA and etc. Why they ban people for the thing they’ve implemented theyrself…

Renegadeimp.8439:

Wait, you got hacked 4 times in less than 2 weeks, and somehow its arenanets fault?

You didnt play wow as your last MMO by any chance?

I’ve got hacked on newly installed OS with strong passwords and others… say me what smart.

Forwarded message —-———-
From: ArenaNet <noreply@guildwars2.com>
Date: 2012/9/17
Subject: The e-mail address for your Guild Wars account has been changed
To: …………………………

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

This was THE FIRST email from arenanet after i confirmed my email just right after purchaising.
So (email have sms login verification, no one can delete messages) how does it happend, that some one changed my email WITHOUT ANY CONFIRMATION, is it normally possible anywhere? Just giime example where such security question can be solved without any user confirmation?

Same question…
And again. Almost all of hacked (me to) have their acc email changed.
Changed without confirmation email with link. How is that?

2×6970 + i7 3930k@4,2Ghz fps47-50 on “ultra”
2×6970 + Phenom II x6 1100T@4Ghz fps20-23 on “ultra”
scene is the same (lion arch, loking on lion-fontain)

Q: Is GW2 such CPU dependant?

Renegadeimp.8439:

There arent thousand and thousands of people that got hacked. And those who do get hacked, 99% of the compromises are caused by their own failings. Bad passwords, keyloggers, compromised email accounts etc.

Also note that when you get your account back, any items and currency that are missing cannot be restored.

If there were thousands the server then will be down by ArenaNet for fixing
For criminals its better to make their job smooth and slowly.
As you can see – the wave of those hacked is growing.

anonymouse.9053:

Then if you haven’t already done so, set the subject of your ticket to “refund” or something like that (not sure if they have defaults). If you set it to something like “account compromised” then it probably won’t go to the billing department.

no such default option. i’ve send email. =\

I’ve opened a tiket. They change email. I can login. But for what?
I dont want to farm again. Than beeing hacked again. And loose gold and regs. And so on.
What for? Just to make gold sellers happy?
In WoW you will be given all that you loose in few clicks and minets. Here you will left without any money to teleport somewhere =)

I want my refund at this point.

BeastBox.4108:

Now, I’m open to the possibility ArenaNet is flagging false positives for some reason … I mean 2 million subscribers to juggle after three weeks, probably at least a few mistakes being made …

But if you really are getting hacked that easily, that’s GG Saywaat, not GG ArenaNet.

How about my post above? is it normal to change acc email without confirmation?

I understand. But I think problem is in ArenaNet
I got the same result on clean OS install with 0 weak points in passw and etc.
I think weak passwd is coincidence.

Gliese.4317:

If you changed your password and email account multiple times yet still managed to get hacked you either fell prey to a phishing attempt or you have a keylogger running on your machine.

And what if i had my system reinstalled today, played 1 hour, afk 1hour for dinner… and then I’m haked? Key logger? Dont think so…

Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.

Need help or have questions about your Guild Wars account? Visit our support site: http://support.guildwars2.com/.

Thanks!

-The ArenaNet Team
—————

This is what I found in my email…
Where is my CONFIRMATION LINK?!!! How some one can change email without it?

Gatto.5168:

I am fairly certain they used information from Diablo 3 and our weak passwords.

not really. In my case there vere 0 weak points
(>24 symbols in e-mail passw+sms verification, long and stron random generated password on gw2 acc, different from other MMOs)

Interesting point is that i’ve received email, that mail was changed. No confirmation at all. Nice job security crew.

I’ve lose many stuff today.
Thx for your post dude.
I’ve made right decision – not to play until they fix all of this …

And yes. This is a bad joke. They send me a messege that “Someone -hope you!- changed your e-mail” and this messege was without any confirmation link. So…

GG ArenaNet

p.s. can I refund this game? i think there are many alternative things worth 59.99 for this moment=)