PDA

View Full Version : It's good that Cory doesn't tolerate any form of security breaches, but what if..



verozo
06-02-2013, 05:26 PM
.. it's someone else who hacked into your account and botted/hacked/spammed or did anything ban-worthy? Would you be able to recover your account? One of the most effective customer support service I'd experienced was from Blizzard, the couple of times I've been hacked and that one time I've been banned for something the hacker did, I still managed to recover my account. I hope Hex would be as effective.

Mr.Funsocks
06-02-2013, 05:28 PM
I assume they would. On the other hand... don't let your account get hacked, jebus people. Been playing MMOs and hanging out on forums for upwards of 15 years, and STILL never had a single password stolen. Stop doing things!

Simokon
06-02-2013, 05:33 PM
I assume they would. On the other hand... don't let your account get hacked, jebus people. Been playing MMOs and hanging out on forums for upwards of 15 years, and STILL never had a single password stolen. Stop doing things!

What this guy said

LashtonBryth
06-02-2013, 05:51 PM
Use the authenticator. In one of his interviews, Cory said that he put the authenticator as the #1 stretch goal because of the importance he puts on account safety. I loved the WoW one that required a text message from a particular phone to access.

Stok3d
06-02-2013, 05:57 PM
The idiots who download the new "OMG Hex Bot", turn off their authenticator, and later realize that it was just a keylogger are out of luck. Your cards are gone and Cryto will just terminate your account.

These are the ppl who are going to flood the boards with the "Help I was Hacked" and just fell victim to the most classic scam. Don't waste CZE's time with the lies as they will get no sympathy from customer service and are simply S.O.L.

grey0one
06-02-2013, 06:04 PM
Also, http://xkcd.com/936/

Madican
06-02-2013, 06:34 PM
Also don't use the most common passwords. There's a list of them put out every year, just Google away.

Mr.Funsocks
06-02-2013, 06:43 PM
Most people don't actually brute force passwords. It's too time consuming unless there's a specific account they want, and most half-decent companies have a limited number of login attempts and other such things to prevent it. Really, the way you get hacked is someone knows your password, probably because you told them or got a keylogger. Unless there's a genuine crack of the system, which is pretty major, and I would hope their security is at least that good.

Madican
06-02-2013, 06:47 PM
There's another way they can get the password: they bypass it. Or rather, they try their luck with your SUPER SECRET security question. Which is...kind of plastered all over the average person's Facebook. Date of birth, first pet, town born in, and a whole lot more.

Mr.Funsocks
06-02-2013, 06:50 PM
There's another way they can get the password: they bypass it. Or rather, they try their luck with your SUPER SECRET security question. Which is...kind of plastered all over the average person's Facebook. Date of birth, first pet, town born in, and a whole lot more.

Well, they'd need your full name to find your Facebook account, which is doable. I hate the secret questions they choose though, they're often a major security hole because of Facebook, or they're something that's not immutable ("What's your favorite movie?" is so not a good security question... locked me out of a number of things).

QuantumZeruul
06-02-2013, 08:00 PM
For security questions, I would recommend to answer them in a way that has nothing to do with the question being asked.

Mr.Funsocks
06-02-2013, 08:03 PM
For security questions, I would recommend to answer them in a way that has nothing to do with the question being asked.

And then try to remember what the HELL you were thinking when you answered them 8 years ago and need to get back into your account.

Dallas
06-02-2013, 08:06 PM
They just need your email, you can search for people on Facebook with one.

Madican
06-02-2013, 08:31 PM
And then try to remember what the HELL you were thinking when you answered them 8 years ago and need to get back into your account.

http://www.penny-arcade.com/comic/2006/07/12

Mr.Funsocks
06-02-2013, 08:35 PM
They just need your email, you can search for people on Facebook with one.

Oh, can you?

<--- doesn't use Facebook

All the more reason then!

baggymacaw
06-18-2013, 02:12 PM
Been using the blizzard authenticator key since it first came out and still have it. I would watch fellow guilders get their account hacked because of stupid checking out of gold farming sites, etc. Don't have a smart phone, so would love to see a Vasco authenticator product specifically for Hex.

nearlysober
06-18-2013, 02:58 PM
My main WoW acct uses the authenticator... of course. I'm pretty tech savvy, I work in a technical field, eCommerce specifically. I know my way around computers. I started a 2nd WoW account (to refer-a-friend myself to powerlevel a character & get the mount). Didn't bother signing up for a 2nd authenticator... and that account got hacked.

Strong password, safe habits, AVG scanning... still shit happens. I blame free porn sites.

Anyway, I'm sure they'll be able to trace the activity, pinpoint where the takeover happened and that the behavior was not attributed to you, and restore the account and unban it.

But seriously, use protection (aka the Authenticator). Especially if you like free porn sites.

ericsche21
06-18-2013, 03:03 PM
My main WoW acct uses the authenticator... of course. I'm pretty tech savvy, I work in a technical field, eCommerce specifically. I know my way around computers. I started a 2nd WoW account (to refer-a-friend myself to powerlevel a character & get the mount). Didn't bother signing up for a 2nd authenticator... and that account got hacked.

Strong password, safe habits, AVG scanning... still shit happens. I blame free porn sites.

Anyway, I'm sure they'll be able to trace the activity, pinpoint where the takeover happened and that the behavior was not attributed to you, and restore the account and unban it.

But seriously, use protection (aka the Authenticator). Especially if you like free porn sites.

Second this. Get an authenticator. There is almost 0 reason not to

ZeroCool
06-18-2013, 03:04 PM
I hope not. If someone gets into your account, a friend, and enemy...whoever the account should be closed. There should be a zero tolerance policy or else you'll have hundreds of people crying wolf. Just look at WarZ....

nearlysober
06-18-2013, 03:08 PM
There should be a zero tolerance policy or else you'll have hundreds of people crying wolf. It should be pretty easy to find out if people are faking it.

If you live in California and 99% of your usage comes from an IP address from your neighborhood... then activity registers from China for 24 hours.

You either took a very short vacation to China and decided to spend your time playing Hex, or you got hacked.

ZeroCool
06-18-2013, 03:13 PM
It should be pretty easy to find out if people are faking it.

If you live in California and 99% of your usage comes from an IP address from your neighborhood... then activity registers from China for 24 hours.

You either took a very short vacation to China and decided to spend your time playing Hex, or you got hacked.

I've NEVER used an authenticator of any type, on any game/website. I've never once been hacked. If you have a strong password, decent antivirus and aren't going to absurd websites then you'll be fine.

Rydavim
06-18-2013, 03:28 PM
If you have a half-way decent password and an authenticator there is more or less zero chance of you getting hacked by a stranger. If you are foolish enough to give your passwords away to people you know, as well as give them access to your authenticator, you probably deserve it.

Basically, if you use common sense and are even marginally security conscious there is very little chance of being hacked.

ramseytheory
06-18-2013, 03:36 PM
I run Linux, I use strong passwords, and I don't fall for phishing schemes, but I'm still definitely going to use an authenticator. Why? Because no matter how much care CZE takes, there's still a non-zero chance of the account database being hacked at some point over the life of the game. (Remember, it happened to Sony...) Having an authenticator will give me an extra layer of protection if that ever happens.

Aradon
06-18-2013, 03:59 PM
I had my Bliz account hacked once. No keyloggers, or using sketchy websites, semi-strong password. It kind of surprised me, but it can definitely happen, even if you practice good security. In my case, it was probably partial password reuse from another website I had an account on, but you never know. Authenticator's a good way to increase your security, even if you think you're secure.

Just as anecdotal evidence against those saying, "strong password + responsible internet = completely safe."

BohemianStalker
06-18-2013, 04:00 PM
Just like in DIablo 3 there is no hacking going on, oh wait, they announced their whole database has been hacked but they have been denying it strong haha. OFC there is hacking but having a good strong password almost make you safe ,-)

keroko
06-18-2013, 04:07 PM
don't be all like wow and let you're buddies play your account whenever they feel like it. the concept of 'shared ownership' creeps.

2 factor auth essential for collections costing 10s of thousands of dollars - im looking at you MTGO

nearlysober
06-18-2013, 04:12 PM
aren't going to absurd websites then you'll be fine. but that's where all the good smut is :(