Compromised PoE Accounts: Stolen Items and Hacked Accounts - Discussion and Leads
|
Already uninstalled poe2. GGG can go fuck themselfs.
|
|
|
My case
• PoE1 • Standalone game client • “You’re trying to login at a different location, it’s required to re-type the saved password” warning message at login screen • access code security protocol didn't trigger • no email notification • no unknown device or location access in email security logs • no secondary login method • no overlay • no price check macro • no PoE related extension I did some research on the security issue while we all are waiting for the support team to investigate and unlock our account. Here are the Findings: Potential User Data Breach on Mar 29, 2017 https://www.pathofexile.com/forum/view-thread/1874476 Go change PoE account password immediately if your account was registered before that date. Database Bug on Nov 28, 2018 https://www.pathofexile.com/forum/view-thread/2253250 GGG did a good job with fast reaction to minimize the damage. Database and account system change for PoE2 on Nov 18, 2024 https://www.pathofexile.com/forum/view-thread/3587079 My account got hacked a week after this change which completely locked me out of PoE2 early access. The hacking situation has been getting worse since then, I highly doubt there's a chance the database and account system change introduced something new that is not intended.
The following imaginary scenario is not true and has no evidence support
Could it be a similar case to the 2018 Database incident?
• account_A login with correct password_A and correct ip_address_A • under some extreme condition, database mistakenly return information of account_B at character selection screen • since account_A already passed the authentication at the login page, no access code security protocol trigger, no security notification trigger • player_A now have full in-game control of account_B In this imaginary scenario, all the existing security protocols are working as intended. /The above imaginary scenario is not true and has no evidence support |
|
" Most likely they are using trade site to bypass login. I suggest to never use your main credentials on the site for the time being. I play poe1 and also had some sus trades with ppl asking me to whisper. Don't do that or you might be at risk. Last edited by Falcon_x#2576 on Jan 1, 2025, 10:19:10 PM
|
|
|
What is going on? I keep reading of peoples accounts being altered and due to this i went in on steam and your website to make sure my passwords were strong and have 2fa enabled. I dont think this is a "hack" but more so a POE2 expliot that can literally ruin the game completely
1) i dont have any overlays running, no overwolf no sidekick no trading apps 2) i didnt do any trading outside of your website 3) i didnt trade with anyone today 1/1/25 I had 3 divines in my currency stash tab, I was running maps today for about an hour and when I went back into my stash, they are gone. Luckily so far nothing else seems to be missing. I am more so concerned that there seems to be a huge issue with POE2 where this is happening very frequently your forums and reddit are filled with similar posts, that worries more than the 3 divines that were taken from my account. I don't want to have to uninstall but I also cant play a game that is openly getting hacked. There are hundreds of posts similar to this that cant be blamed on 3rd party apps, i dont have anything poe related installed on my pc other than steam and poe2. Makes me a bit nervous what vulnerability POE2 currently has? It's not my steam or Poe password the are different and not duplicated anywhere, created 30char from a password manager, 2fa on steam, no emails of access. Clearly this is happening on GGG end and I didn't even feel like farming knowing it's still vulnerable |
|
|
Another content creator hacked, 900 divines gone. Ashimar is his name. This sessions ID hijacking needs to be fixed ASAP.
|
|
|
I have a missing divine orb, wondering if it's related to the topic
|
|
"yes, I have a missing divine too, something is going on. |
|
" this is great info, in the Nov 28 one they did try to restore items which does give hope to many of us about this issue, and i do like your idea about what could be going on but we need to test it out. will be adding your info to the post tomorrow. Last edited by Crainus#7059 on Jan 2, 2025, 12:44:57 AM
|
|
|
I mean they have to give us something for us who lost basically a month of gameplay, I didnt get hacked for much and they got none of my gear, I made it all back in the 2 days I was playing before they locked my account, they have done 10x more damage then the hackers and they let the hackers roam free.
|
|
|
EDIT: 20 years of experience seeing account compromises and for the first time I'm wrong: GGG did have an internal breach via Steam social engineering.
But it was only 66 potential accounts. That doesn't equate to the "hundreds" of posts in this thread, which is being used as a criticism against what I said. If these posts are about being compromised (instead of just random shouting), then some are still undoubtedly getting compromised via methods well known to history. Eagerly awaiting GGG's full statement on it. OP:
Spoiler
Previously compromised accounts are getting broken into from a new popular game release that malicious people can make money from.
Nothing new here; been happening for years and years and only gets more profitable (aka bigger) as time goes on due to more and more people using computers and playing games. Not a single person who's security conscious will have an issue, unless they misstep. It's not GGG's systems, or else everyone would be getting compromised. TLDR: Secure your internet presence, people. I don't mean to sound rude, but I can't help the way people interpret my words. Last edited by DAOWAce#0876 on Jan 17, 2025, 10:27:16 AM
|
|
