Data Leak and Stolen Accounts
|
Has there ever been a reaction from GGG because of the big wave of hackers that eliminated thousands of players even though most of them even had 2 factor authentication via Steam? There must be a gap somewhere that got them into the players' accounts. Especially so specifically that they hacked people who had previously traded expensive items via Poe Trade. Do they care? Will anything be reset for those affected? How will this be prevented in the future?
Last bumped on Jan 16, 2025, 5:04:11 AM
|
|
" There was a post on reddit with a posted support response, to summarize: “they haven't found any problems, all security is working fine”. But while I was studying this issue, found a lot of strange things, the clients were all different, who had steam, who had no-steam, and hacked often those who had a lot of currency (intruder checked most likely on the exhibited lots on the trade), so they somehow knowing only the profile of the victim could get the login data, how much I play in poe 1 first time I see such a thing, especially in such a mass way, I think all the same something is not telling us something. " If you have all your stuff stolen, no one will give it back to you, this has been answered many times before. ✨ Beta tester Path of Nerf 👀 Last edited by spokipo#1869 on Jan 3, 2025, 2:09:08 PM
|
|
|
I find the whole thing very disturbing. I don't think it's just a coincidence and security works. I am one of those affected, I have Steam 2 level authentication and have not used anything except the game via Steam and POE Trades. I had a very rare item dropped that was worth 100 Divines. And after I sold it through POE Trades, the next day I was completely empty. Support hasn't responded yet and I haven't read any other statements etc from GGG
If nothing is said about it, I will assume that the data leak still exists and I won't just start from 0 again, which isn't that easy since I used my entire vacation to achieve this. I'm left with a naked character through no fault of my own. I've already written to Steam support and there are no problems on their site, my 2 level authentication is active and there was no unauthorized access I will start at maximum again at 0 when I know that they have closed this gap and that something like this cannot happen again. Otherwise, in the upcoming league when everyone starts at 0 again. |
|
|
From what ive been seeing people say its not a hack or secruity breach, its some weird thing where they can get onto your account via session ids they pull from being in your hideout whenever you trade them, probably how they find accounts with valuable items.
|
|
" Hahahahaha....: "thousands of players...." 5 players on reddit.... |
|
" just out of curiosity, was your password either simple or a password that might be on a password list? getting hacked sucks but (a) anyones hackable and (b) they targeted specific people with currency, so it looks a lot like a spearfishing attack than a security leak. |
|
|
Dude, I have a strong password and a Steam 2 level authentication. Even if it were 1234, you have to confirm on the Steam app on your smartphone if someone logs in from another PC/location. It's impossible to just hack it like that. And no there are not 5 people on Reddit. Take a closer look, there are really a lot of people who are affected. That's a pretty big deal. All YouTubers and streamers have also reported about it. I drop an expensive item, sell it on Poe Trades and a few hours I'm empty? And all those affected were people who had valuable accounts? This isn't just any coincidence. Seriously, don't downplay the problem just because you don't seem to be affected
People who talk it down like it's nothing, I wish they could experience it themselves... To be honest. I wouldn't wish that on anyone, but someone who laughs at others because of it and belittles them should feel the pain themselves when they lose everything in a game that they've put a lot of heart and soul into and that they love. |
|
|
This makes me very wary about people who I trade with staying in my hideout after trading. Is there a way to boot players from your hideout? I tried googling it, and the only answer I found was to choose a different hideout option, which resets your hideout. If that's the only option, fine, whatever. But is there a different, better way of doing so?
|
|
" https://www.pathofexile.com/trade2/search/poe2/Standard/gpGDnqgIQ This is how they find who has an account worth taking over. I just used your forum name, but if they find you are selling something worth a bit, they can do the same thing, and take a look and estimate your wealth. They also probably get your session ID instantly. Also this is just rumors and hearsay, so im not saying this is 100% what is happening, but it might be likely. Last edited by BossOfThisGym#2062 on Jan 3, 2025, 3:25:19 PM
|
|
" I also often had people standing in my hideout and walking around for an hour. Yes, it surprised me too, but I didn't think much of it because how are they supposed to hack someone? I wouldn't know how now. But it's certainly strange! I'm now looking forward to an answer from support. I talked to steam and the gap can only be with GGG. On steam, no external access from another IP or anything else was proven... I don't wish that on anyone, I can only recommend perhaps not trading anything extremely valuable on Poe Trade because that seems to be the case One of the factors is making yourself a target. But it's not a final solution, the gap has to be closed... |
|
