Guild Wars 2

I would not be surprised if the amount of giant eyes needed for this recipe will be changed drastically, consider this while you have time to burn for the fix to go live. Its a very small investment, even if the Giant eye didnt change you’d be out 50 silver fx if you got 50 on hold.

Im not sure if I understand your last question, but asuming I do: Whenever you place a bid, you are not charged any tax. If you placed 75g up for the item, and changed your mind later for whatever reason, as long as you didnt actually get the item yet, your money is in the pick up tab without any tax taken.
It is only a listing tax and a sales tax currently. Placing a bid, doesnt equal a listing, and since youre not the seller, you also arent deducted a sales tax.

I am curious about this as well. Currently the Giant Eyes dont seem to serve any purpose. The recipe that uses them is reportedly bugged (thank you for reporting this btw) – I would very much appreciate some kind of response from the dev responsible for the forge recipes. Some kind of timeline for when this goes into the patch list would be great.

lodestones drop in dungeons. You were killing in the right area for the cores btw, but it is a rare drop unfortunately.

Inside the room at Fort Trinity, which you only access during certain personal story quests, while on the ramp leading up to the little stage area, the character hovers above the ramp flooring atleast half a foot worth off the ground. I only noticed this because it isnt something I’d noticed much before with Gw2.

The exotic BP gotten from zonecompletions lvl 60+ light armor, Acolyte – clips with the lvl 80 exotic crafted light armor pants. Both from the front and from the back in the waist area.

Yes Im sure, compare my previous pic to this one:

fixed as shown here:

When wearing t3 female BP, Pants and gloves there is nolonger any gfx glitch on the stomach.
Just posting to confirm that it is fixed on some armors that were previously showing the same bugs as those posted above.

100% agree OP. Especially for Orr, the zone is supposed to be completely event driven, but its such a massive spell effect fest due to the reasons you just described so eloquently. – I wish they would absolutely make it challenging again.

no it doesnt get better. In Orr’s Penitent/meddler camps, the mobs wont even be rendered/visible by the time they are dead, due to the spell effect spam going on from both people and bots, needing the tag for contribution and loot.
Its a fantastic zerg fest of fail :/

haha that was an awesome read. Yes that sounds fun. And what the heck? They blocked grub farming? – Geez. So what if you solo the champion? I dont kill him fast at all, but I use the grubs to heal, and I do dmg to them over time. Will they not drop loot then? That sucks donkeys.

This isnt so much about bugged events in particular, but about the state of them especially in Orr.
(as for bugged events, there are so many I know Arenanet are aware or they’d have to be completely blind to their own product so I wont talk about those)

I stopped doing events in Orr alltogether, excepting the cathedral event if it happens while Im there scrounging for ori. Can you blame me?
When I am near penitent or meddler camp fx. all I see is spam of AE at the entrance, wether they be bots or real people, they are killing the event mobs so fast the mobs are not even RENDERED, before they are dead. – If they dont spam, they dont get a tag on the mob, so no loot and no contribution. Yet it is so laughable this zerg, this devolution of the core intent to this fest of karma grind. Noone cares about the game deteriorating into a seizure inducing spam fest of spell effect spam. We only care about getting a hit in on the wave we may or may not see before the mobs are dead. The only indication being something sparkling on the ground to loot afterwards. This is 24/7 in these areas.

What a joke. Its so sad that this is what Orr is about. – When I came there during pre- it was still functioning. We didnt rush out to meet waves of mobs because we worried we wouldnt get a tag on the kill, we didnt have to. – The mobs even made it inside the perimeters sometimes. – Now its lost all meaning. – Im not blaming the players. Im blaming the event design. Its not apropriately scaled at all for the amount of players exposed to any given event. It needs to be much more tailored to the population of the zone total. – So if there are hundreds of players in any given Orr zone, let that show in the preassure on the camps. So if we lose the camp players need to attend to that area, and so on so forth. /sigh.

It isnt challenging. Orr is easy, there is no risk at all, there is nothing to stop me from feeling the grind, seeing the karma farm, and feeling the ease of it. Well except perhaps a seizure due to all the dazzling spell spam. Is that really what you envisioned for Orr?

how can you see if 1 seller is selling thousands of items? – Doesnt it just cram everyone selling at the same price into 1 listing?

Anyway, The OP is right in that the karma events in Orr is completely overrun, wether it be bots or actual players, they are a complete zerg fest. I cant even see the waves of mobs in some cases before they are dead. People run out to meet the waves of mobs just to get a hit in, which just makes you so aware of the game mechanics, any kind of immersion is completely lost.

It makes me sad, because my frame of reference is being in Orr 3 days after pre- and not enough people were there to turn the events into the joke they are now.

As for rares going up in price. I allways asumed they would increase slightly if they were in the category suited for crafting the exotics needed for the legendary precursor. As more and more people discover how to use the forge, Im sure those items increase in price.

This might sound dumb, close the game and try pulling up temp and deleting the content, except stuff it wont let you delete, then log in.

I had error attempting to sell, and a mail error: processing previous mail. Both of these were fixed when I deleted the temporary files GW2 creates. I dont know if it works for everyone, as Im sure the bugs arent allways the same ones, but you could try.

It has been fixed for t3 female cultural armor, sometime yesterday fyi. Thanks for that Arenanet!

This bug was fixed sometime during yesterdays downtime. Im nolonger missing a chunk out of my toons abdomen during idle animations > t3 cultural human bp. Thanks for that.

I seriously doubt the devs who designed these dungeons want the players to skip much of it to speed farm tokens. – I dont know if they will ban people who are doing the jump workaround to speed farm in Arah, except as more people start doing it, more focus will be put on it, and perhaps a rollback will occur. I dount it though. – Then again they did ban people for the karma weapons. Its a risk, and I completely understand OP not wanting to do this. The jumping isnt hard, but its completely fair if someone doesnt want to do this, for fear of Arenanet deeming it an exploit, but the mentality of the groups is that the dungeon farms are boring and they just want to do it quick and efficiently, so these people are either preassured by their groups to do it anyway, or outright kicked from the group. – Its on Arenanet to make incentives for people to not do this.

a duplicate recipe in the forge that gives you the same item as the normal mystic creation recipe is a bug. Hold on to the staff, make a ticket to keep track of the date you did this, and once these things get sorted out, you might be lucky and have your item turned into what it was meant to be all along.

Was purchasing dyes last night. I didnt notice /map where people were talking about how the BLT was acting up. I finally notice as I run to pick up my dyes that none of them are in the pick up tab, and no money is yet deducted from my wallet. – This morning I log in and had a lot of dyes in the pickup tab. Luckily the only ones I clicked a few times on, were very cheap. Still, I believe it would be prudent to change the message when there is a delay, to signify that the order went through, and not Sorry, please refresh and try again.

Bugged on Desolation EU.

I think intentionally avoiding the content inside a dungeon is something people only do if it is boring/repetitive/nonrewarding. If that is the motivating factor then I dont think it should be an exploit. I do however hope with all my heart, that the devs will take notice and either change the content in those avoided areas, perhaps a chest or something that people will actually want to loot, or maybe a rich ori vein or something. Would you jump the gate if past the bend and past a few mobs were a rich ori vein? And once you got to it, you might as well keep going?

But if players are making an effort to avoid some part of the dungeon its a sure sign to the devs that something needs to be done. Thats my opinion. – Im pretty sure however, that before a dev will admit to a design flaw, he will make you out as an exploiter, in almost all cases.

so this is why /map is often asking for “people who know the jumps”?
I was wondering about that.

No game that requires an artificial slower pace, than the gamer can set himself, should be rewarded or encouraged to keep that up. Games are good when they allow the player to play as much or as little as he wants, without content going stale. – Ive only played one game that accomplished that: Everquest 1

It did that by making your character progression two fold:
1) through gear, grouping, raiding and unique epic quests.
2) through your AA (nothing like how rift implemented them though)

Whenever players outpace an mmo people are quick to do as you do OP. But I’ve seen a game that managed to avoid it, and every game since has built artificial blocks instead to keep players on some vision they have of a track they want us to play on, at a pace they set. – Its just a cop out.

miya.5160 > great post. A little long to copy reply, but I agree with the way you assess the situation. I think it is reasonable to expect players to do a dungeon twice or three times for curiosity’s sake, indeed if it has explorative modes that makes each try a little unique then all the better. But when the game has a whole mechanic surrounding dungeons and token gear, then it is obviously set up to be a grind/farm, whatever you want to call it.

The OP has a naive but I think sympathetic take on dungeon crawling. I wish it was those things alone that motivated players. What the OP should realise is that Arenanet has set up the armor skin mechanic in such a way as to encourage turning dungeons into a farm fest, for players to access that gear on those vendors.

Since this is what Arenanet encourages by making those carrots, they ought to also be responsible enough for their own mechanics, as to ensure those who take after the carrots, also are rewarded for playing their game as they clearly intend for it to be played. That means, no player in exploratory mode should end up with less silver than a few repairs and his WP to the dungeon cost him. – He should be encouraged to stick it out for his armor sets when the game requires him to run the same stuff multiple times, something which honestly, noone at Arenanet can possible spin as interesting and exciting. – So since we should be able to agree that the token farm is infact a farm and the amount needed also makes it a grind, something else needs to be thrown in for good meassure. Either the dungeons are relatively hazzle free, bug free and rewarding in some monetary way, or not. – If not, then Arenanet has created a grind farm, that is unfun while it lasts, unrewarding, and aggravating, for those who chose to try and play the dungeon game the way the carrot shows Arenanet designed it.
Thats poorly done.
I can honestly say as an oldschool wizard who farmed Seb for weeks and weeks, for AA purposes, that I found it fun, but I am not doing dungeons in gw2, because I dont like the armor sets. I kinda liked the set from CoF but it was so farmed that everyone runs around in it. And so without a carrot, Im only looking at what makes the dungeons rewarding outside of the tokens. – And frankly, not much by the looks of it.
To me that afirms that the dungeons are there for the skin grind, and the people who use them that way, should be heard, and their issues should be given consideration. – To me that conclusion is very simple, and I dont think Arenanet is doing themselves any favors by alienating that crowd.

Honestly I dont even get why you dont only get tokens for full completion. That way we wouldnt have had farm teams who only did boss 1 and 2 in Arah now run around in full sets of Arah skins.

wow, that looks like swg pet levelling LOL. Great catch btw, even the names are dead giveaways.

I was just made aware of the changes going live today the 13th, enabling us to remove cc details if we chose.

I sincerely wish whoever replied to my ticket on the 12th had actually read the ticket and simply relayed this information to me, instead of the response I got.

To mouse above: I wouldnt close my card either, except I was one of the unlucky ones who had their cc info stolen when SoE’s database was hacked, and so I guess Im too jaded to just trust the game company to hold my details without me having any control over when to remove them.

I am happy this is done with. Not sure exactly how I feel about the time it took, and the fact nothing was done to remove stored cc details in the midst of this storm of stolen accounts. I also firmly believe that removing those stored cc details should have had higher priority than returning hacked accounts to their proper owners, simply because anyone who had their account stolen, would have been doubly traumatised if their account had cc details on it as well.

Anyway, that is certainly a matter of opinion and I admit to being biased. – I will make sure my bank is also informed of the changes today.

Tomorrow Im calling my bank. I will have them close my card, eventhough my account is currently safely in my possession.

I will also cc the support mail history to my bank manager with Nordea, and I will ask if there is anything they can do to persue this beyond my personal case. – If my cc details are removed within the next 2 hours (that is when my bank opens) I will ofcourse ensure that this is also included in the support history I hand over to my bank.
At the very least I will ask about how to bring this to the scrutiny of VISA which is the card I have.

For reference I initiated the request on the 9th, 4 days ago, and I believe there is sufficient evidence online on the forums to support that account theft has been happening enough to warrant hightened need for such requests to be met in a timely manner. And that Arenanet already acknowledged the problem (not that they caused it, but knowing the risk places some responsibility on them to accomodate requests such as mine, purely for the fact that they did not include the tools to remove the cc information in the gem shop for the customer to use)

Im not making a personal case out of it, but rather I am very concerned about the lack of appropriate response to the ticket I made, and the 4 days it has taken so far.

I wonder about this too. I sometimes report them for spam if they are using /map to broadcast their gold site.
I use scam if they send me an ingame mail.

“9/10 Received email at 1:55 p.m. None of the information was related in any way to the issue. Verified the issue still existed, and reopened the ticket at 2:15 p.m.”

This happened with my ticket as well. I wonder how much of supports time is taken up by these mails going back and forth between support and people who have to reply and “remind” support about what they really want help with, and not whatever it was the agent replied with.

Im also wondering just in the spur of the moment if this is some strategy that someone misguided deduced would make people happier: irrelevant reply, rather than a longer wait time – or instead of another automated headsup that the issue is still awaiting an agent.

If I was to make one change to how support works right now, it would be to have no automated messages at all except the first one acknowledging the recieved ticket. And that no agent was to respond to a ticket unless they had read and understod the question.

I think who ever runs support, outsourced or not, highly underestimates just how annoying and frustrating it is, to recieve these automated paste/copy responses that have nothing to do with the initial issue we ask for help with. Whenever that got introduced into support routine, the devil was smiling.

I asked for support to remove my CC details from the gemshop.
I specifically stated I did not feel my account was unsafe, but that I just didnt want my details stored there without having the option to remove them myself should something happen to my account later.

I waited 3 days for this response:

Thank you for contacting NCsoft Account Support.

Could you please provide the following information so that we may review your billing issue and transaction attempts?

- If the payment was attempted by credit/debit card, please provide the last 4 digits of the credit/debit card used
ONLY
- Country where card was issued: (if you are using a credit/debit card)
- Card Type: (if you are using a credit/debit card)
- If the payment was attempted using PayPal®, the order ID or transaction ID from your PayPal® payment history
for the transaction
- Country where you are currently residing:
- Your billing zip code or postal code

Thank you,
Brad (also known as ‘Pirate’)
NCsoft Account Support

Now I have obviously not had my issue resolved. Instead I waited 3 days for someone calling themselves the pirate to demonstrate how to make unessessary steps in an already clogged support line.

I have responded with the following:

Hello

Thank you for your reply. Unfortunately you did not understand or read my ticket properly. This is dissapointing after waiting this long for a response.

I simply asked support to remove my private CC information from the Gem shop. It is not legal for VISA merchant to retain this information without letting the customer have the option to remove it in a timely manner.

Please remove my credit card details from my GW2 gemshop account.

I am going to copy your reply to my initial request on the GW2 official account support forum as it highlights some issues with the quality of support and perhaps highlights why customers have to wait longer than normal for a solution, if this is the kind of unescessary steps we have to go through first.

Again I iterate; I wish my cc details removed from the Gemshop. I do not need to dispute any purchases at this point, I just want the information removed. Thank you in advance – I hope.

I hope that the moderators of this forum understands what these types of support responses makes us feel. The frustration of getting a response that doesnt deal with the support tickets request, add to that us knowing how many people need help, and then this extra step in the chain because the ticket wasnt read before the response went out.

I know I have another day to wait to up my ticket to the 5 day line, but I dont need another response that doesnt deal with my ticket. I dont want to hear from support if they dont read my ticket first and respond to the issue at hand instead of something they think is the most likely subject to the majority of people.

Also I dont want to be in a position where a theft is made before my cc details are removed. I want to avoid it happening, which is the whole point of the ticket. And because someone previously stated this was the correct way to go about removing CC details till Arenanet gets the tools in game.

If your account had your credit card details stored previously (something you clicked yes to) when you bought gems earlier yourself, and if your account is now stolen: YOU MUST IMMEDIATELY CALL YOUR BANK AND CLOSE YOUR CARD!

In another thread arenanet said they did reimburse gems purchased after your accounts were stolen. You have to put this in your ticket if that is the case. You can see that on your bank statements when you talk to your bank.

If Arenanet does not cooperate to refund your stolen money, you can ask your bank for a chargeback, based on the fact that the gemshop did not provide and option to remove stored cc details, thus making you vulnerable to this kind of fraud. Its important in that case to tell your bank that the gemshop either stored your 3 digit cvv number on that initial purchase or just did not add that security at all for subsequent purchase, which isnt in line with VISA nor Mastercard pci requirements for online merchants.

However, if you are calm and explain to Arenanet in your ticket what happened, how much was stolen from your account etc, it is in their best interest to reimburse you, rather than go into chargeback dealings with your bank. And Gaile (sp) has stated elsewhere that they definately prefer to reimburse people who had this happen to you.

Im sure it has to be obvious that your account was in fact stolen, that your cc details were stored and that you reported the account stolen in a timely manner.

Strange glitch repeated earlier post: edited post :

Im glad to hear you will refund us directly.
Although the temptation is there to do a chargeback in order for VISA to notice you guys arent living up to pci standards (which are required to qualify as VISA and MC merchants)
- I would just love to see a response to my 3 day old ticket asking for my details to be removed, rather than having to ask for a refund later if my account is stolen. That would surely also be better for you guys?
Incident: 120909-001610

Well I put my cvv2 code down on my first purchase, so they did require it. When the card details were down, I was give the option to store it. And I clicked yes. – When next I made a purchase all I needed was to click amount, stored visa ending in xxxx and OK.

If it didnt store part of the information and excluded the cvv2 – then its a very unfortunate oversight that it does not ask me for the 3 digits on my second purchase.

Your suggestion that they may have a special agreement has precedence but I dont see any way to confirming it.

In fact if they do store the cvv2 I wouldnt even care, if I just could remove the credit card details myself. Its so frustrating, and I do blame myself for being in this situation.

Thank you Chobiko, I did read that page it is one of the sources I linked earlier; They are the standards all major credit card issuers require merchants to live up to in order to even accept those credit cards in payment. It is not law, but if not followed it does become illegal to use those credit cards in transactions – probably for security reasons. This maybe is a more clear way of explaining it. I didnt mean a bank police was gonna swoop in and steal all arenents bases.

Those are rules and standards are part of what merchants must (!) live up to, in order to process payments through large credit card issuers, fx Visa. If they comply with them they get accredited and become VISA accredited merchants (meaning they may accept visa in their payment methods). If they dont comply, by FX storing the cvv2 data, they are prohibited by VISA from using visa in the payment transactions. (actually no selfrespecting company handling millions of transactions every year does not comply with those standards. Its totally unheard of)

Im saying what they are doing with VISA holders info atm, is not legal because it is in breach of the requirements made by that credit card issuer for any merchant to use them in transactions.

Just making sure I specifically stated I did not know if the other credit card issuers had this restriction with regards to csc, but VISA does, and VISA requires a compliance attestation of the very points you linked to in your post done every year.

What I do know is that it is not a good thing for NCsoft or Arenanet to not be in compliance with these standards.

Maybe you would like to see this from VISA? its on their website here:
http://www.visaeurope.com/en/businesses__retailers/retailers_and_merchants/security/payment_security.aspx
and in more detail as to what they must live up to here:
http://www.visaeurope.com/en/businesses__retailers/payment_security/merchants.aspx

You make a lot of good points but you are wrong about your csc data.

I feel I have already written enough so I found this for you http://en.wikipedia.org/wiki/Card_Security_Code#Security_benefits and encourage you to look at it. Specifically the parts about The Payment Card Industry Data Security Standard (PCI DSS) who prohibits the storage of CSC post transaction authorisation.

That bit is important because it is the nature of the one time purchase in a gemshop that distinguishes the gem shop from fx recurrent payment plans such as subscriptions where the authorisation is an ongoing contract. There are systems in place to allow these types of transactions which could otherwise not work as the merchant isnt allowed to store those 3 digits> hence the recurring payment options we have these days in many games.

Everything else you say I agree with, however the Eula does not override the laws concerning credit card security, and when those are not upheld by a merchant they are liable should any abuse occur, nomatter what the Eula says. They are changing the system, I am completely certain it was an overseight from the start, and I do not and have not once thought it was some malicious plot to stealz my datorz.

I would like to point out to anyone else, that it is ok for people to want to protect their credit card information, especially should they feel that circumstances have made them feel less secure aboutt their account safety. It is also ok for them to become upset and frustrated when they find themselves powerless to remove this sensitive data. It is even ok for them to question the process and push for it to be changed (which is will be at some point) – and it does not necessarily have ANYTHING to do with chargebacks – these issues are seperate.

People who have no access to their accounts may threaten with chargebacks of the full game for example but that has nothing to do with the underlaying issue of the csc being stored.

Others, would just like to see procedure changed for the benefit of EVERYONE, including Arenanet. – and because jezath is right in what she/he says in his opening line; it is our responsibility to protect our personal information, therefor it is certainly ok when we try to make sure that we are given the tools to do just that. It could easily read as though perhaps out of courtecy to a great developer of games you would rather we dont take control of our details and try as we might to rectify our mistakes when we identify them.

Ps. I do have a support ticket, mainly to see how long it would actually take for such an issue to be rectified without an automated system in place – and ofcourse because I would like to do what I can to rectify the mistake I made in storing the data in the first place. I will go stand in the corner now.

twice now in the dragon event up in the northern Norn zone (lvl 70-80) I have been dodging dragon specials and ended up inside – INSIDE – the little hills or rocks nearby. – I get stuck there and have to wp out – I am perfectly able to interact fx. rez up players in the vincinity, and even kill monsters (they can’t damage me back btw) – I have reported it before when it happened to me in Melchiors leap. I dont know what you can do to fix it, and I know its not ok to kill something that cant retaliate, but I need to get rid of the mobs to exit combat to use a wp out. – Please look at “firming” up the hilly landscapes up there near the event

I think I would be able to remove my cc information before my account was ever stolen I know I would do it right now if I could. – Then I wouldnt have to get my bank involved and a new card issued. See what I mean?

No its not illegal to store credit card information if you give your consent, and the company provides you with a way to delete that information in a timely manner.

Visa specifically prohibits that the cvv2 code is stored in any transaction where the card is not present. – The other card issuers, as far as I am aware do not.

Lets keep this straight. NCsoft is not breaking any laws in storing information you agree to let them store. – That we cant delete it again is most likely an oversight that has simply become agravated with the many account thefts recently, because the risk it allows for is multiplied when more accounts are abused.

What they cant do with VISA is save the 3 numbers on the back of the card as well. – That is supposed to be an extra security layer for you the card holder. In the gemshop currently they are storing these numbers, and so technically breaching the requirements VISA puts forward for allowing merchants to use visa in their transactions with customers in trades where the card is not present. ( It doesnt apply to transactions that are recurring such as a subscription cycle, because the authorisation is ongoing as it were. This is not the case with the gemshop, because you do not sign up to for a recurring monthly purchase)

I think you two are muddling up two different issues.

1 is the account thefts, which Branskins has a point in saying is probably in most cases to do with peoples poor use of re-use of login and password details.

the other is what people can do if their accounts are taken over, and they had already stored their credit card details in the shop. It is reasonable to argue that NCsoft should provide an option to unstore details, just as every other game does, and all other NCsoft titles do – and infact they are working on implementing these changes. Untill they do however, people have to ask support to do this for them.

In the time between your account theft, and your discovery of this theft, real money can be taken through the gemshop from your account. You are entitled to ask for chargebacks in this case if you are a visa card holder. Because Visa prohibits the storing of the cvv2 code in online purchases. Because NCsoft has stored these digits along with the rest of the information,(and because the user is unable to remove that information themselves) they have brought themselves into a situation where someone who wouldnt have a case for a full game refund chargeback, now has a case for chargeback of any purchases made while the account was stolen.
What I have been trying to get amended is this small but detrimental security risk their system adds, and which has become a major risk in light of the recent breach of the database of a popular GW2 website.
I hope this clears it up a bit.

I do not not if other credit cards prohibits the storing of the cvv codes that Visa does, so I cant speculate on those situations.

Chobiko.9182:

What I don’t get is that people don’t disable their credit card when they know the account’s been compromised…

Although, I also agree that they better implement the ability to remove card information, I have not registered my card, never will do. But it’s borderline to not have a remove card info on the account page (remember you can still do this through support and thus they are not doing anything illegal by not having it on the account page).

I think they do disable it the moment they realise they have been hacked. But, how long would you need if you stole an account with a CC stored to buy gems, sell for gold and move on. – Its just a hazzle once the chargeback is the only option left. When a little click option could unstore the information while all this drama about account theft is going on.

Branskins.9752:

wizgamer.7123:

Are you serious Branskins? You don’t think it’s serious when a company allow scammers to use your credit card information using a fraudulent system where they don’t even need to check your CVV on your Credit card to make a purchase. In what dimension is that not serious? A chargeback is perfectly justifiable.

Whom has this happened to? I want to know. Saying “my friend had money stolen” is not proof because as ANet showed with the bannings, everyone exaggerates or just plain lies about their circumstances.

They are not letting them use your credit card, that would make them an accomplice. If your account was hacked, that is your fault. Now a chargeback on gem store purchases seems to be where this is not abusive, but a chargeback on the game is ridiculous

Im afraid you’ll have to go reddit digging for first hand experiences of it, I have read a few. – But even if you can’t find them – trolling – this issue still doesnt change the fact that many many people have had their accounts abused by “hackers” (I refer to them as thieves) and that what we are warning about, is possible (and what selfrespecting thief wouldnt do this) if anyone of these unfortunate people, stored their cc information in the gemshop prior to losing access to their account.

Are you saying the thief who takes someone elses account over, would look at the gem shop bonanza and say: Nah not feeling like it today

SoE did not leak any information. Geez. They stored our details in plain text and had it stolen.
Agravating circumstances that made it reasonable (my bank thought so) that I would find the products purchased unusable because they required a running subscription and I did not want my information reattached to any money transactions after they compromised me the first time. SoE did not fight the chargebacks. And “ridiculous” isnt the word I’d use to describe what happened at the time.

With accounts compromised every day atm, I just dont get how NCsoft can keep risking it when people lose control of their accounts with cc details stored and no ccv codes required on purchases. Even when you are wary of whats going on and want to protect yourself and remove the information, the system wont let you. Its just crazy.

If you did not click yes to save your card details, then they were not saved. In my case it wouldnt let my purchase go through without clicking yes, but I see other people have been able to click, and then unclick and still make purchases just fine.

The issue is that not only did it store your usual long line of digits, it also stored the 3 digit code on the back of your card. Its called the CVV2 code for visa cards, and visa prohibits merchants in trades where the card is not present, from storing these numbers. To add a little security for you the card holder.

When trying to unclick the card nothing happens, so atm, should a person gain access to my account, they could rack up as much money in gems as they wished – This annoys me ofcourse.

But if you never saved your details to begin with, you dont have to worry about this issue. And the gempshop did present you with an option to tick – save card – So if you dont remember doing this, your card is not saved. Hope this makes you feel more secure.

I love the thief, because I can play him like a ninja. I almost never use stealth, I am a dodge rolling, whirl evading fiend of goodness and I love playing her that way. – It takes a little while to get used to, and you are punished if you fail a dodge and dead if you fail two, but you have more endurance regen, and more evades than anything else that moves. Its very much like a troll on speed infuriating for whoever youre fighting, especially if you are dagger/dagger x2 and not focused on heartseeker, the fotm spec.

I havent cancelled my card. But my bank was very helpfull. There was a 3 day gap between my purchase registration and the transfer from my account to NCsoft – They flagged them to make sure I would be contacted by the bank before any other purchases are authorised. I love Nordea. They completely stepped up to the plate.

I know they are working on implementing a feature that allows you to remove your information – however why they havent unstored all CC information at present to avoid any more are abused when accounts are stolen is really neglegent.

My bank told me it would not hurt my standings with them or interfere with me being a visa card holder in the future if it came to chargebacks. – I think this should be something people talk to their own bank managers about. I also had chargebacks done when SoE lost my information to hackers last year. It infuriated me so much I decided not to stay a customer with them, and my bank fully supported complete chargebacks of 2 games I had purchased within the last 2 months when it happened. – They also reissued a visa to me free of charge. – Just saying, dont be afraid to make chargebacks once you are informed about your own banks methods and aproach to that type of issue.

I had an interesting conversation with my personal bank assistant. I wanted to flag NCsoft EU and PlayNC EU, because Im unable to unstore my CC details in the gem shop. With whats happening with accounts being stolen, I wanted to make sure I wouldnt get locked out of my account with the cc details still stored. I cant get in contact with Arenanet, because my support account isnt resetting my password, and the wait time would not be tolerable anyway. – When I spoke to him he told me Nordea had already been contacted by other customers, most regarding chargebacks from arenanet for the actual game.

I had to explain the difference between NCsoft and the gemshop and Arenanet, but he put both on watchlist, told me he would flag them to ensure no payment transactions would go through without contacting me first – which is possible because the sale date, and the charge dates are often 2-3 days apart – but if there is not a feature in the gem shop VERY VERY soon that enables me to remove the CC details, Im going to have to get my visa re-issued. Oh and also, we spoke about the fact that the gemshop also stores the CVV2 code, which isnt legal, and Visa actually straight out prohibits it. – He is looking into forwarding the information to higher ups. (because he also happens to be an mmo gamer and was getting more and more annoyed as I told him about the gemshop and how it was holding on to my information LOL)

If for any reason my account was stolen, and someone was able to purchase gems, then NCsoft wont able to get the money from my account, Im sure my account would never be returned to me. I would then make chargeback arrangements with my bank. It would not hurt my standings with them or make it harder for me to be reissued a visa in the future. Im a premium customer in my bank and I read elsewhere that an arenanet employee had discouraged people from doing chargebacks because it might hurt them in that fashion. – Well talk to your bank and see if thats has any bearing. Banks operate very differently in different countries.

No there is no way to unsave it.

However if you are a Visa card user, you can call your bank and inform them that NCsoft has illegally retained your CVV2 code and that you wish to ensure that
no further transactions take place between (the recipient of your previous game purchase) NCsoft and your accounts.

Because Visa demands the following:
Mechants who require the CVV2 for “card not present” transactions are forbidden by Visa from storing the CVV2 once the individual transaction is authorized and completed.

You can effectively request your bank to secure your CC details from any other gemshop purchases. – This is ofcourse an issue if you do want to purchase gems in the future. But with all the accounts that have been compromised and no way for us to remove our credit card information once it has been stored I highly advice against leaving it there without taking action against abuse.

Remember that once the card details are stored, the next purchase will not even prompt your 3 digit CVV2 code, which is highly irregular, and at the very minimum when the customer isnt able to remove the information himself, also questionable behaviour.

I have written Exploits@arena.net because I think this is a security risk.

Untill they can add an option to “unsave” the CC information they should not let people store it to begin with, especially since people who had their accounts abused, had on several occasions already stored their credit card information, and when no CVV2 code is requested on the next purchase, and when you cant remove the cc details even if you fear your account is compromised, you’re completely fubared.

So call your bank and secure it yourself. And boggle your mind at this unessecary security risk on NCsofts end.

PS.

You can also clog up support to have them remove your information I am sure. But that means you probably have a long time to wait for them to respond as they are really busy at present.