Curse

FeroxC · May 16, 2008, 11:19 PM // 23:19

Quote:

Originally Posted by zamial

I am passing this along, this is what I was told. I am not implying this is the cause, or a solution but in my opinion 1 can never be "to safe". I can not confirm this info officially. I know I would be upset if I got hacked, so without further adieu,

The theory is that on the hacked account a character has a quest called Plan B active. (yes, I know there are several plan b quests). Then while in AB the player is booted by the hacker, during the reconnect the hacker intercepts the packets, has your account info and then logs in as you. Then does what he/she does.

Once again, I can not confirm this, but I do trust my source, I believe the info to be at the very least not fabricated by my source. This is a pass it along to help others post.

Sounds like bull, unless the hacker has compromised you'r PC, or the Guild Wars server or the LAN your connected to he can't intercept your packets.

and if he had compromised your PC he wouldn't need to intercept packets.

Giga_Gaia · May 17, 2008, 12:21 AM // 00:21

Didn't feel like reading through all the posts about accounts being hacked and all, but I do have a question:

When somebody's account was hacked, were the victims already logged on and then got booted like the OP, or did they log in one day to find that their stuff went missing?

Jetdoc · May 17, 2008, 05:42 AM // 05:42

Quote:

Originally Posted by Giga_Gaia

When somebody's account was hacked, were the victims already logged on and then got booted like the OP, or did they log in one day to find that their stuff went missing?

It's a mix of both, although the majority seems to have been offline when they got fleeced. I'm the only fortunate one (that's posted, at least) that was able to stop the hacker before he could take anything.

Konig Des Todes · May 17, 2008, 07:23 AM // 07:23

Quote:

Originally Posted by Rahja the Thief

I beg to differ. Good security, being internet savvy, and having the common sense not to play with fire (aka pirating etc) when you don't really know what you are doing is how to help avoid it, or for that matter, COMPLETELY prevent it. That is unless... a super hacker randomly targets you and your Guild Wars account in some government conspiracy, which I have a funny feeling, isn't going to happen.

What I meant was can't be helped that you got hacked, could have prevented the hacking.

Quote:

Originally Posted by Stockholm

LOL, very smart, get perma ban for moving your stuff to other account and the send in a support ticket.

THE LOG at NC-soft would show that (possibly even with a red flag beside it for the transaction)

Who said another account? I said character not account
Thanks for ridiculing a statement that you don't understand.

zamial · May 17, 2008, 04:48 PM // 16:48

Thank you all for the flames, including the Mod. But as I had stated, that was info I was told, that it was not confirmed. I under stand how packets interception works. I was posting it as UNRELIABLE information, come to your on conclusions, but there is really no need to flame someone for trying to help. As I see it That "theory" is just as sound as the rest of the other posts. If anyone was 100% sure of how it was working other than the hacker it would be fixed.

BodhiNightwind · May 18, 2008, 07:01 AM // 07:01

I had this happen yesterday, got those same error messages from AB that I've never gotten before.

Luckily I didn't get password invalid message though. I was able to get back in after a couple of tries.

Weird that they'd have the double AB faction points while this is a problem.

Ceylon Tea Cat · May 19, 2008, 04:39 AM // 04:39

It seems many stragne things occur during AB...
Is it safe to play AB recently? Especially Granz.
I thought my GW.exe crashed once threre. (not disconnection)

BuD · May 19, 2008, 12:38 PM // 12:38

I was not in AB when I got hacked, I dont ever do PvP...

Danax · May 19, 2008, 12:43 PM // 12:43

Sorry for your loss...those zaishen keys could have sold for 235k lol.

(43 X 5000 = 235000) Assuming they still sell for 5k each

Nodakim · May 19, 2008, 02:10 PM // 14:10

Quote:

Originally Posted by Jetdoc

/cut

i am not sure if i understande all of this but as much i know "your" account is actualy a account owned by anet(thats why you cant sell it legaly) and any when somebody hacks the account....well you get what i mean....it isnt your account it is from anet and why the hell would you have to report the crime?

Mac Sidewinder · May 19, 2008, 11:09 PM // 23:09

Quote:

Originally Posted by HuntMaster Avatar

If you log into the character select screen, then go down to edit account,then change password. you can change the password. Just thought I'd toss that out there.

I suggest making a password using the maximum digits available, long passwords are harder to crack than short ones. Unless ofcourse someone uses a program, in which case we are not safe, we need a comfirmation email.

Does the above work without having to confirm with an email from the email account that you originally registered the game with? I don't have the same email account and would like to be able to change my password. Anyone know if you can get anet - plaync to change the email address for you?

beregond · May 20, 2008, 12:06 AM // 00:06

Quote:

Originally Posted by Inde

I'm not sure anyone's account is protected at this time.

Woohoo, what a comfort!!

exstoges · May 20, 2008, 03:36 AM // 03:36

sorry way to many posts to read but r u sure u got hacked? or you have done something that made you forget what you have done? if i had the skills to hack, i would definetly have the smarts to just transfer over the keys. its stupid to open the chest with your account. this story doesnt make sense

Jetdoc · May 20, 2008, 03:39 AM // 03:39

Quote:

Originally Posted by exstoges

sorry way to many posts to read but r u sure u got hacked? this story doesnt make sense

I think you need to read a bit more to understand what happened...

Quote:

Originally Posted by Nodakim

"your" account is actualy a account owned by anet(thats why you cant sell it legaly)

why the hell would you have to report the crime?

I guess their argument is that the attempted theft of items from one account to another is not a crime...

...but the use of malicious programs to hack into an individual's computer is a crime.

Nodakim · May 21, 2008, 05:15 PM // 17:15

they hacked their account not your computer

Aka Devilince · Jun 07, 2008, 07:25 PM // 19:25

all this seems to me is that A-net is hiding from the fact of doing real work. The Police are'nt going to do shit about a game, I mean really. If I walked up to a police officier and told them I got hacked on my guildwars account all they would do is laugh in my face or put it to the side. I just find it silly that A-net won't take any action to a hacking and look into it instead of leading a person on. I would actually like to see a real representative from A-net post on this, I would really like to have a discussion with one, but it seems they are too busy banning gold sellers and not looking into things that are even more worse then they seem to be. But oh well this is my opinion and my view on the whole thing. I have seen other games take care of their players better then Guild wars has ever done. I still play GW yes, but my hope in A-net as a whole is lacking badly. And I would like to see a real reply from a A-net rep on this forum to clear things up.

Rico the Spirited · Jun 07, 2008, 08:01 PM // 20:01

Way to go, Jet!

This is concerning, though. I don't know how it would be a vulnerability in the Alliance Battle system.

....Actually, let's find out. Guild Wars was a well-secured program last time I checked, but why not? I'm curious now. Instead of just chewing the fat, let's actually look at the silly thing.

I'm going to run Wireshark, a TCP/IP protocol analyzer, on my local system through Administrative privileges. Wireshark can watch the actual data packets sent back and forth between my computer and the ArenaNet servers. (Take a look: wireshark_login.jpg)

There. Good and healthy. It uses an encryption standard I'm not familiar with (not something that happens every day...) but it's definitely encrypted. Unlike... say... most guild web sites. (Take another look: wireshark_guildsite.jpg)

If you take that as any measure, ArenaNet knows what they're doing. That suggests a problem with local security, not game security: that you need to lock down your own system, not worry about hackers from the outside. It's much more likely that the computer was attacked, and not the game itself.

I propose an infosec sticky. Everyone here should know basic information defense, along the lines of a post made earlier in this thread. (That was a great post.)

And Devilince: If ArenaNet wasn't doing real work, you'd see my Guild Wars login information in plaintext, not ciphertext. So don't think they're just running around giving themselves piggyback rides all day.

~Rico

(...Hey, I know stuff.)

fusa · Jun 07, 2008, 08:32 PM // 20:32

Quote:

Originally Posted by Rico the Spirited

Wireshark can watch the actual data packets sent back and forth between my computer and the ArenaNet servers. (Take a look: wireshark_login.jpg)

There. Good and healthy. It uses an encryption standard I'm not familiar with (not something that happens every day...) but it's definitely encrypted.

Members of a well known project to emulate Guild wars were able to decrypt that information. It wouldn't surprise me if thats how people's account information was stolen.

Rico the Spirited · Jun 07, 2008, 08:53 PM // 20:53

Quote:

Originally Posted by fusa

Members of a well known project to emulate Guild wars were able to decrypt that information. It wouldn't surprise me if thats how people's account information was stolen.

Really? Nice. I'll have to look it up.

My point wasn't that the encryption would be our Savior, though. What I meant was that ArenaNet isn't incompetent, as a good handful of players seem to think. I would still target the client machine first.

Aka Devilince · Jun 07, 2008, 10:23 PM // 22:23

To say the least that is what it seems they are doing. It isn ot only the players responsibility, but it is the companies responsibility to help better with hackings and stuff. What I reado n the first page of what Regina sent to the original poster stated quite well they don't want to handle it. I'am just stating my opinion like I said.