cRPG security situation: change your passwords

[[ptx]]

buy passwords 4 cheap
grow inventory 10 looms in 2 weeks, GUARANTEED!
CHEAP GOLD NOW!!!

[Trikipum]

Source? Somehow I think I would've heard of a massive Valve exploit alongside the mass of Lulzsec propaganda news, but as the poster above me says, even if you gain access to a Steam users account, you need further verification (Email codes, gibberish) to gain access to the account.

Yes, those new security checks really help, and im sure they added them coz they were aware of their uber exploit that was there for like 1 year and no one from valve said a single word. Believe me if i tell you it existed is coz I know it did. I actually saw a guy doing it at a lan party, and it worked very well, actually that guy stole a BfBC2 cd key as the owner of the account was downloading his new bought game, then he used it to register it to his email and played the game using the non steam version. Maybe they had the cdkeys long before valve fixed their stuff. Or they just hacked the database for passwords, who knows.

[Tears of Destiny]

if you access a Steam Account and try and log in, even if you have the right username and password, if you are using a computer that it does not remember (yes, steam has and still does keep track of every computer used for every account) then it flaggs it as unfamiliar, and sends you a special e-mail with a unique password in that e-mail.

So basically, in order to hack a steam account you need the username (that they keep), the password (that they keep), the e-mail (that they keep) and the password for the e-mail (that they do not keep)...

[Murmillus_Prime]

Hmm, couple of days ago I visited my character webpage and it said no password had been made for my account... Which is clearly bullshit, so I made a new password for my account. Maybe this has happened to other players too but the ones with missing stuff were too late to notice.

[Classical]

Yes, those new security checks really help, and im sure they added them coz they were aware of their uber exploit that was there for like 1 year and no one from valve said a single word. Believe me if i tell you it existed is coz I know it did. I actually saw a guy doing it at a lan party, and it worked very well, actually that guy stole a BfBC2 cd key as the owner of the account was downloading his new bought game, then he used it to register it to his email and played the game using the non steam version. Maybe they had the cdkeys long before valve fixed their stuff. Or they just hacked the database for passwords, who knows.

Uh huh, let's not get into arguments about who did what in the past though, the point is.

Check your cRPG accounts security:
1) Make sure it has a password set.
2) Make sure your password isn't "password"
3) Don't give out your password
4) Don't make extra accounts on the same serial, without adding a password that abides by rule number two and three.

General, common sense guidelines, add to the list as you see fit.

Also, in discussion with some other members of the cRPG community, we've learned that if you have a created character that you use for other modifications (Say PW mod? Mount and Musket?) on M&B, cRPG somehow, eventually logs them as characters on your serial without a password. When it does this is beyond me, but apparently it has happened to some people, so watch the alt. accounts you create.

[Ufthak]

It may be best just to log those characters from other games in to let them be created, and then change their passwords. There's also a change all passwords option, for anyone that's been too lazy to check.

[Delro]

Hmm, couple of days ago I visited my character webpage and it said no password had been made for my account... Which is clearly bullshit, so I made a new password for my account. Maybe this has happened to other players too but the ones with missing stuff were too late to notice.

Good tip

[Gorath]

Went to log in tonight and every single character of mine says that the password is wrong.  WTF

Created a new character so I could switch to my real characters and change the pw's AGAIN (I had just changed them when this thread was made) and the characters themselves are missing from the list!  Gorath, Amgine, Braxxus, Vyrus.  Gone.  Not in the list and it says I have to set a new main.  DOUBLE WTF!  So while I'm at work some fucktard gets into my account and deletes all my characters?  Yeah, awesome.


Just heard from the guys in vent that apparently POOPHAMMER saw "me" selling all of my gear for 1g each today while I was at work.  w00t w00t.  Guess that's the end of my time in cRPG.

*Mostly posting this so the Dev's know that even after changing pw's apparently someone still has a way to access accounts*


LOL, only one they didn't delete was my SWAT_ character alt who had no gear, gold or heirlooms.  That's just kind of a slap in the face.   

[Classical]

Welp, lets just hope the devs are investigating the issue as a whole.

[downer]

Went to log in tonight and every single character of mine says that the password is wrong.  WTF

Created a new character so I could switch to my real characters and change the pw's AGAIN (I had just changed them when this thread was made) and the characters themselves are missing from the list!  Gorath, Amgine, Braxxus, Vyrus.  Gone.  Not in the list and it says I have to set a new main.  DOUBLE WTF!  So while I'm at work some fucktard gets into my account and deletes all my characters?  Yeah, awesome.


Just heard from the guys in vent that apparently POOPHAMMER saw "me" selling all of my gear for 1g each today while I was at work.  w00t w00t.  Guess that's the end of my time in cRPG.

*Mostly posting this so the Dev's know that even after changing pw's apparently someone still has a way to access accounts*


LOL, only one they didn't delete was my SWAT_ character alt who had no gear, gold or heirlooms.  That's just kind of a slap in the face.   

As much disdain as I have for you and the way you act in general, this sucks. Hopefully the Dev's can get something figured out for you and acknowledge this as an issue.

[7000bc]

Went to log in tonight and every single character of mine says that the password is wrong.  WTF

Created a new character so I could switch to my real characters and change the pw's AGAIN (I had just changed them when this thread was made) and the characters themselves are missing from the list!  Gorath, Amgine, Braxxus, Vyrus.  Gone.  Not in the list and it says I have to set a new main.  DOUBLE WTF!  So while I'm at work some fucktard gets into my account and deletes all my characters?  Yeah, awesome.


Just heard from the guys in vent that apparently POOPHAMMER saw "me" selling all of my gear for 1g each today while I was at work.  w00t w00t.  Guess that's the end of my time in cRPG.

*Mostly posting this so the Dev's know that even after changing pw's apparently someone still has a way to access accounts*


LOL, only one they didn't delete was my SWAT_ character alt who had no gear, gold or heirlooms.  That's just kind of a slap in the face.   

Don't leave gorath, we Chaos guys are organizing a replacement fund for you if you can't get the devs to give you your items back

[Socrates]

Oh come on Gorath SWAT is a prize to behold. But other than that damn that sucks, I wonder who is doing all of this and I hope the devs are on to work on it right now.

[Beans]

The biggest thing people need to make sure is that if you make a new alt, you set it a password. MAKE SURE EVERY CHARACTER HAS A PASSWORD.

If have a bunch of alts its worth your time to double check.

[Xol!]

Wiegraf_BRD, Grey_of_Chaos, and Misan_of_Chaos all just got their shit stolen a few minutes ago.  Some of us in IRC picked their stuff up and will be returning it, but please everyone make sure all your accounts are passworded securely.

[polkafranzi]

damned grey order

although the gorath one might be balton getting some revenge is a dish best served cold n all that