AnimeSuki Forums

Register Forum Rules FAQ Members List Social Groups Search Today's Posts Mark Forums Read

Go Back   AnimeSuki Forum > General > Video Games

Notices

Reply
 
Thread Tools
Old 2012-05-28, 00:16   Link #2081
Duo Maxwell
A Proud Lolicon
 
 
Join Date: Dec 2006
Location: In front of my computer
Age: 36
Quote:
Originally Posted by Jazzrat View Post
And FYI, Blizzard password is not case sensitive which is really stupid. They should have adopted better password security cause people can just brute force the account.
huh?
I'm pretty sure my password is case sensitive.
__________________
Duo Maxwell is offline   Reply With Quote
Old 2012-05-28, 00:19   Link #2082
Archon_Wing
On a mission
*Author
 
 
Join Date: Jul 2008
Location: Not here
Age: 40
Send a message via MSN to Archon_Wing
Well, at this point, pointing fingers at anyone isn't going to help. Note that I never have and never will expect Blizzard to be hack proof, because that's impossible. But hopefully they'll restore people's shit and make it so you can't log in 10k miles away without triggering something.

However, regardless of user error or server error, I have decided to not use the auction house for a while. It's likely the hackers will have put their ill gotten gains up on it for now, and I'd rather not purchase stolen goods.
__________________
It doesn't sound like my love is getting to you.
I will not lose anymore; I will not give up.
More passion than hope, much deeper than despair.... Love!

Avatar/Sig courtesy of TheEroKing
Guild Wars 2 SN: ArchonWing.9480
MyAnimeList || Reviews
Archon_Wing is offline   Reply With Quote
Old 2012-05-28, 00:21   Link #2083
Demi.
Ass connoisseur
 
 
Join Date: Feb 2007
Location: Florida
Age: 37
Quote:
Originally Posted by Jazzrat View Post
In regards to all the compromised accounts, this post sums it up nicely on the situation.

Anyone who works in end user support before will know it all too well when it comes to malware and the ongoing trend of targeting online game account information that has transferable values (steam doesn't cause you can't transfer or sell your games to others).

This isn't just a Blizzard problem however, it's looks exacerbated in comparison to other games because of the volume of users. There's 10 million + users on WoW alone not to mention another 6.5 million Diablo3 players, what's is the chance of having someone in those 16.5 million + user who had their account and pc compromised?

Why is Blizzard pushing users to get an authenticator?
Because it's a waste of manpower and bad for the PR when people have their account compromised. There's many ways to get into someone's computer, I had malware infection before just plugging in a usb drive. I got myself an authenticator because I know there's no 100% chance of me ever being fully secured with my laptop barring total isolation and Diablo 3 is the kind of popular games these malware will target.

And FYI, Blizzard password is not case sensitive which is really stupid. They should have adopted better password security cause people can just brute force the account.
I stopped reading after he tried to make the problem this (Twice!): "Well, the cause is people desiring a shortcut in their games by buying gold."

I've seen hundreds if not thousands of posts saying they've been compromised from posts made today alone. And he's trying to claim the large majority of compromises are from them buying gold from sketchy places? I don't buy that for a minute. Especially considering I'm not part of that large majority, and unless the other people I've seen posting are all liars, then neither are they.

Quote:
Originally Posted by Duo Maxwell View Post
huh?
I'm pretty sure my password is case sensitive.
Nope, D3 passwords are not case sensitive.
__________________
Demi. is offline   Reply With Quote
Old 2012-05-28, 00:31   Link #2084
Dr. Casey
Senior Member
 
 
Join Date: Nov 2007
Location: Tennessee
Age: 36
Quote:
Originally Posted by Squarecrow View Post
I don't know. Let someone else use your computer? Got hit by malware on a trusted site that's usually safe? Used public Wi-Fi?

Are you saying that Blizzard's server was compromised at this time? Any news articles at the time of your compromise?
lol, I've heard of blaming the victim but this is taking things to a whole new level. "It's always the victim's fault, if you claim that you're innocent in the matter you're lying!" Why, exactly, are you so determined to white knight Blizzard and paint them as blameless, and so reluctant to believe anyone who says that they were hacked through no real fault of their own? It seems as though you won't believe that anyone had their account compromised without doing anything moronic and irresponsible unless they write a 5,000 word essay describing in detail the precautions they took to protect their account.
Dr. Casey is offline   Reply With Quote
Old 2012-05-28, 00:32   Link #2085
Duo Maxwell
A Proud Lolicon
 
 
Join Date: Dec 2006
Location: In front of my computer
Age: 36
Quote:
Originally Posted by Demi. View Post

Nope, D3 passwords are not case sensitive.
Then what the heck have I been typing in my password box all the time...?

In any case, I'll believe anything that I can see rather than anything people are telling each other on the internet, and so far none of my friends have problem regarding security.
__________________
Duo Maxwell is offline   Reply With Quote
Old 2012-05-28, 00:35   Link #2086
Mow Yun
Senior Member
 
 
Join Date: Apr 2007
Age: 34
Send a message via AIM to Mow Yun
I don't have Diablo 3 myself, but out of the 6 people I know who have, and talked to, three have had their accounts compromised. Two work in high level IT and I'd trust to keep their computers very secure. While it is a very small sample size, even a 10% rate of "my account's been hacked!" sounds like it should be outside the realm of probability.

Also regarding the authenticator issue - I've been told that the smartphone-based authenticators don't work against this "Diablo 3 hacking" issue. It's only the physical kinds you can buy that work.

About rollbacks as well - my friend has reported that a user is only allowed two rollbacks in an account's lifetime. Basically, if it happened to you once, pray it doesn't happen twice again.

EDIT: Duo - Apparently passwords are valid whether you use capitals or not. Perhaps battle.net has a cipher which converts all characters to either upper or lower case.
Mow Yun is offline   Reply With Quote
Old 2012-05-28, 00:35   Link #2087
Dr. Casey
Senior Member
 
 
Join Date: Nov 2007
Location: Tennessee
Age: 36
I dunno, unless you're the most popular guy on the planet I would imagine that your friends make up a pretty small sample of Diablo III's 1,000,000+ userbase. I'm sure the people that have been hacked are a minority of all the Diablo III players around, but there's still a higher number of compromised accounts than there should be.
Dr. Casey is offline   Reply With Quote
Old 2012-05-28, 00:38   Link #2088
Mow Yun
Senior Member
 
 
Join Date: Apr 2007
Age: 34
Send a message via AIM to Mow Yun
Quote:
Originally Posted by Dr. Casey View Post
I dunno, unless you're the most popular guy on the planet I would imagine that your friends make up a pretty small sample of Diablo III's 1,000,000+ userbase. I'm sure the people that have been hacked are a minority of all the Diablo III players around, but there's still a higher number of compromised accounts than there should be.
Assuming my friends aren't related to each other, I would say there is a case as you never test the entire population as you can generally extrapolate from a relatively small sample size. Even if it were such a small sample, as I referred to it as, it "should" be 0 or 1 out of 6 instead of 3 out of 6. Naturally, its not very reliable, but I think it leads to the notion that this kind of stuff isn't all hot air.

EDIT: Accusing someone of "Its your fault, your computer security sucks!" is an accusation which cannot be disproven, so its a handy one to sling around.
Mow Yun is offline   Reply With Quote
Old 2012-05-28, 00:40   Link #2089
Dr. Casey
Senior Member
 
 
Join Date: Nov 2007
Location: Tennessee
Age: 36
Ah, that was actually a reply to Duo's assertation that the reports of Diablo III having weak security are overblown because his friends haven't encountered any such problems.
Dr. Casey is offline   Reply With Quote
Old 2012-05-28, 00:40   Link #2090
Mow Yun
Senior Member
 
 
Join Date: Apr 2007
Age: 34
Send a message via AIM to Mow Yun
Ah, it sounded like it could go either way.
Mow Yun is offline   Reply With Quote
Old 2012-05-28, 01:16   Link #2091
Jazzrat
Bearly Legal
 
 
Join Date: Jun 2004
Quote:
Originally Posted by Demi. View Post
I stopped reading after he tried to make the problem this (Twice!): "Well, the cause is people desiring a shortcut in their games by buying gold."

I've seen hundreds if not thousands of posts saying they've been compromised from posts made today alone. And he's trying to claim the large majority of compromises are from them buying gold from sketchy places? I don't buy that for a minute. Especially considering I'm not part of that large majority, and unless the other people I've seen posting are all liars, then neither are they.
No, you didn't read the whole post. Compromised accounts are buyers and non-buyers.

In fact, it's more important to target non-buyers because these are usually the works of 3rd party gold seller. Doesn't make any business sense to target your own customers.

And it's the internet, who knows who is lying and who is telling the truth? But internet crime/scam can be more devious and malicious than we attribute it for.

Quote:
Originally Posted by Mow Yun View Post
I don't have Diablo 3 myself, but out of the 6 people I know who have, and talked to, three have had their accounts compromised. Two work in high level IT and I'd trust to keep their computers very secure. While it is a very small sample size, even a 10% rate of "my account's been hacked!" sounds like it should be outside the realm of probability.
Oh no, we don't. There's no program to keep your pc safe 100% not even symantec or any big AV companies (which i wonder why my company still pays em).

We can keep our risk low but the chance is always there. Security flaws in external program to cleverly nested code in ads. While we know Blizzard hacking is popular, but i m certain that there's way more malware written to target Asian MMORPG which typically is cashshop driven and carry far more monetary value than your Diablo 3 account ever will.
__________________
Jazzrat is offline   Reply With Quote
Old 2012-05-28, 01:43   Link #2092
Mow Yun
Senior Member
 
 
Join Date: Apr 2007
Age: 34
Send a message via AIM to Mow Yun
While there is almost no sure way to ensure that one's computer is 100% hack proof, I find it bordering on absurd that if the compromise was on the user end, that it was only the Diablo 3 account, and not Starcraft 2, World of Warcraft, or any other account, even financial details such as Paypal or saved credit card info which was claimed to accessed.

Because hacking to gain control of a video game account is far more monetarily advantageous than compromising a bank account...

I'm not saying its not possible, but for this kind of scale it seems like kind of flimsy that every single one of these people have poor personal security which has not resulted in any financial loss but only video game inventory loss.
Mow Yun is offline   Reply With Quote
Old 2012-05-28, 01:54   Link #2093
Jazzrat
Bearly Legal
 
 
Join Date: Jun 2004
Quote:
Originally Posted by Mow Yun View Post
While there is almost no sure way to ensure that one's computer is 100% hack proof, I find it bordering on absurd that if the compromise was on the user end, that it was only the Diablo 3 account, and not Starcraft 2, World of Warcraft, or any other account, even financial details such as Paypal or saved credit card info which was claimed to accessed.

Because hacking to gain control of a video game account is far more monetarily advantageous than compromising a bank account...

I'm not saying its not possible, but for this kind of scale it seems like kind of flimsy that every single one of these people have poor personal security which has not resulted in any financial loss but only video game inventory loss.
Hacking into major institutes system is more likely to get the FBI on your ass than into your regular joe/sally computer. It does happen though as we have seen in Sony case but this is usually done by a different group of people and more often than not, without monetary motivation.

WoW and recently Diablo 3 is targeted for the monetary value inherent in it. Actually there have been cases where people who had their Diablo 3 account compromised and the culprit reactivated their WoW account to strip their assets.

As for paypal and credit cards, i ll have to research it up. My initial guess is that such intrusion are more prolific than game accounts and more likely to draw the enforcement agencies attention.
__________________
Jazzrat is offline   Reply With Quote
Old 2012-05-28, 02:15   Link #2094
Blaat
Senior Member
 
 
Join Date: Apr 2004
Quote:
Originally Posted by aohige View Post
My Monk just solo downed both Infeno Skeleton King & Butcher, both WITH full stack of valor.

AWWWWWW yeah.

Spoiler:
Blind > Sanctuary and another tip wear a shield.

I'm this close to soloing Belial (already killed him with friends) I keep dying in the third phase which is stupid because the third phase is the easiest (the only tactic is don't stand in the green stuff)
__________________
Blaat is offline   Reply With Quote
Old 2012-05-28, 02:21   Link #2095
Mow Yun
Senior Member
 
 
Join Date: Apr 2007
Age: 34
Send a message via AIM to Mow Yun
Quote:
Originally Posted by Jazzrat View Post
Hacking into major institutes system is more likely to get the FBI on your ass than into your regular joe/sally computer. It does happen though as we have seen in Sony case but this is usually done by a different group of people and more often than not, without monetary motivation.

WoW and recently Diablo 3 is targeted for the monetary value inherent in it. Actually there have been cases where people who had their Diablo 3 account compromised and the culprit reactivated their WoW account to strip their assets.

As for paypal and credit cards, i ll have to research it up. My initial guess is that such intrusion are more prolific than game accounts and more likely to draw the enforcement agencies attention.
I'm not buying into the "people have their Diablo 3 account compromised and WoW account stripped" story very much. If that were the case, we should have seen a similar outrage with Starcraft 2's launch, as WoW is also linked with SC2. I haven't heard any Starcraft 2 hacking stories, at least, not to the extent of this Diablo 3. It could be coincidence, but at the same time, it may not be.

Still, I'm unconvinced that stripping a video game account of items is the most valuable thing a malevolent party would do to a person's computer with the kind of access which was had. I just find it strange how Diablo 3 was the only game worth having people's accounts compromised lately, especially since the auction house doesn't accept real currency yet (from what I hear).

Too many questions for me. For example, be playing WoW for years without incident and suddenly when Diablo 3 comes out, your Diablo 3 account becomes compromised. If it were an account hack, the coincidence of these two events (diablo 3 release and account compromise) as well as this recent burst of "Diablo 3 account hacking" cases seems like it fits too nicely to be a simple "your password sucks/ your computer got hacked," case.
Mow Yun is offline   Reply With Quote
Old 2012-05-28, 03:46   Link #2096
aohige
( ಠ_ಠ)
 
 
Join Date: Jul 2006
Location: Somewhere, between the sacred silence and sleep
Quote:
Originally Posted by Blaat View Post
Blind > Sanctuary and another tip wear a shield.

I'm this close to soloing Belial (already killed him with friends) I keep dying in the third phase which is stupid because the third phase is the easiest (the only tactic is don't stand in the green stuff)
I like Sanctuary in Act 1, since there's oh so many doorways that I can block away with it.
Easy to halt packs of knockback elites by kiting them to a narrow chokepoint.

In act 2, there's much less areas like that, so I'll be switching of course.

Shield is great for upping Armor as well as giving block %, but I don't have a high enough DPS 1-hander to compensate.
Once I get one of those 800+ DPS weapon, I may switch to using a shield.
Or, I could compensate by stacking more armor and resist.
I'm aiming for 800 resist and 8000 armor or so for Act 2.

Act 3 is... another story. Most monks are struggling in Act 3, and I don't plan to advance in it anytime soon.
Once I beat Act 2, I'll probably set my monk aside for a while.
__________________
aohige is offline   Reply With Quote
Old 2012-05-28, 05:05   Link #2097
Keroko
Adeptus Animus
*Author
 
 
Join Date: Jan 2007
Age: 36
Quote:
Originally Posted by Squarecrow View Post
I don't know. Let someone else use your computer? Got hit by malware on a trusted site that's usually safe? Used public Wi-Fi?

Are you saying that Blizzard's server was compromised at this time? Any news articles at the time of your compromise?
Nobody else ever uses my computer, malware scans from three different scanners showed nothing and I didn't use public wifi. Were there any news articles? No, not as far as I'm aware, but that doesn't say much.

The point is, I did nothing that would make this hacking "my fault" yet I still got hacked. And the funny thing? I never got hacked on anything other than my blizzard account. Even my bank and paypal accounts were safe. Only my blizzard account has been hacked.

Let me put that in perspective: A hacker managed to get into my game account, but left my banking accounts alone. This leaves us two options:

1: If my computer was what was compromised, apparently my bank accounts have appropriate security measures in place to fend of the kind of attacks made. Which means blizzard's security is worse.

2: The account was compromised on blizzard's side, explaining why my bank accounts were untouched.

Either way, blizzard's security is flawed.
Keroko is offline   Reply With Quote
Old 2012-05-28, 05:30   Link #2098
risingstar3110
✘˵╹◡╹˶✘
 
 
Join Date: Nov 2006
Location: Australia
How's about if the compromise happens during the distribution phase? During some steps of that Diablo 3 grand "15th May launch"? Is it possible, because i heard the key was distributed separately from the physical game copy?

If that the case, then it explains why some knew no one getting accounts compromised, while others hit 50% rate (as all your friends tend to go for the same distributor)
__________________
risingstar3110 is offline   Reply With Quote
Old 2012-05-28, 06:15   Link #2099
Demi.
Ass connoisseur
 
 
Join Date: Feb 2007
Location: Florida
Age: 37
I know my key was within my physical game copy...Most people probably just bought a virtual copy of Diablo anyways.
__________________
Demi. is offline   Reply With Quote
Old 2012-05-28, 06:37   Link #2100
problemedchild
ô_ô
 
 
Join Date: Nov 2003
Act 3 Inferno is so very annoying... Very close to beating it, but some of these mobs with the base teleport and massive attack power is extremely annoying. Farming Siegebreaker for now, got some amazing 160Dex/80Vit/60Res/Mov Speed boots. Hoping that'll fetch a good penny.
problemedchild is offline   Reply With Quote
Reply

Tags
arpg, blizzard, dungeon crawler

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 20:41.


Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2024, vBulletin Solutions Inc.
We use Silk.