Massively

Cryptic Studios issues security warning in response to database breach

Brianna Royce — Wed, 25 Apr 2012 19:30:00 EST

Filed under: Sci-fi, Super-hero, Events, real-world, MMO industry, News items, Star Trek Online, Free-to-play, Champions Online, Miscellaneous

Cryptic Studios, purveyor of Champions Online, Star Trek Online, and the upcoming Neverwinter, has just posted an ominous security warning on its official site. Its new security procedures have recently detected that hackers gained unauthorized access to a user database back in December of 2010. According to the studio,

The unauthorized access included user account names, handles, and encrypted passwords for those accounts. Even though the passwords were encrypted, it is apparent that the intruder has been able to crack some portion of the passwords in this database. All accounts that we believe were present in the database have had the passwords reset, and customers registered to these accounts have been notified via e-mail of this incident.

While Cryptic does not believe additional information (like player names and credit card numbers) was taken, it advises vigilance all the same and warns against phishing scams. We'll keep you posted as we learn more.

(Thanks to Geoff for the tip!)

Cryptic Studios issues security warning in response to database breach originally appeared on Massively on Wed, 25 Apr 2012 19:30:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

SOE issues security alert for EQII and Station accounts

Jef Reahard — Thu, 15 Jul 2010 22:00:00 EST

Filed under: Fantasy, EverQuest II, MMO industry, News items

Ho hum, another week, another email phishing scam, not exactly news right? Well, this time around, Sony Online Entertainment thinks it is serious enough to issue a security alert via the official EverQuest II website, warning players to safeguard their login information and ensure that it is only used on the official SOE site.

While details on the new scam aren't clear, it's a safe bet that it has to do with exploiting a similar URL, as SOE explicitly states the legitimate login URL (http://auth.station.sony.com) in its press release.

With the explosion in online gaming popularity across diverse cross-sections of the general public in recent years, it's no surprise that account hacking is also on the rise, as gamers are no longer the tech-savvy demographic they once were. If you do suspect that your EQII or Station account has been compromised, you can email or chat live with SOE customer support.

SOE issues security alert for EQII and Station accounts originally appeared on Massively on Thu, 15 Jul 2010 22:00:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

AionSource.com compromised, e-mails possibly leaked to hackers

Seraphina Brennan — Fri, 29 Jan 2010 16:00:00 EST

Filed under: Fantasy, Aion, Events, real-world, Exploits, News items

Yesterday we reported that a wide number of e-mail password phishing scams were being sent out to Aion users. Today, AionSource.com has sent out an e-mail announcement to all of their users that this new wave of scams may have been due to a hacking attack on their website.

Knite Shadowbane, administrator of AionSource, has posted that AionSource.com had been under hacker attack five days ago on the 24th of January. The staff has since cleared the attack and has proceeded to beef up their security, but today's e-mail to all AionSource members warns that their database could have been used for these phishing scams. So, if you are a member of AionSource, keep an eye out for any unusual e-mails coming your way.

Even if you aren't a member, always remember to check the source of any e-mails coming to you that request for you to "access your account" or "confirm your password" or require you to log into an unverified source.

Knite has also posted a handy guide to securing your account, such as changing your password and installing anti-virus software.

AionSource.com compromised, e-mails possibly leaked to hackers originally appeared on Massively on Fri, 29 Jan 2010 16:00:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

Aion players: Watch your e-mails for scams

Seraphina Brennan — Thu, 28 Jan 2010 22:00:00 EST

Filed under: Fantasy, Aion, News items

Keeping your password for your favorite game safe is always a top priority. No one wants to have their accounts hacked or have their passwords lost to someone who's willing to sell all of their items for gold, kinah, or what have you.

So today, as a friendly public service announcement, we here at Massively would like to remind you to make sure you double and triple check any correspondence that looks like it comes from NCsoft or your favorite game company. Today we've received an e-mail telling us that our Aion account password had been changed, and if it wasn't us that we needed to go to the NCsoft master account site and change it back.

We can guarantee you that the link provided was not for NCsoft's account management, but a phishing scam. While the scam letter was pretty obvious, always be wary of e-mails you don't anticipate. If you think there's something wrong, don't click any links in the e-mail -- instead go to your account management website directly to check on your account.

Aion players: Watch your e-mails for scams originally appeared on Massively on Thu, 28 Jan 2010 22:00:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Second Life content creators warn about scam site

Tateru Nino — Wed, 07 Oct 2009 11:00:00 EST

Filed under: Economy, News items, Second Life, Virtual worlds

Numerous Second Life content creators are warning their clientele that the Web-site virtualget.net (which has been apparently been operating for a couple of months now) is a credit-card harvesting scam. Whether that's correct or not, the site appears to be using the product images and product descriptions and trademarks of numerous Second Life content creators without their permission. The original images and text appear on Linden Lab's Xstreet SL virtual goods shopping Web-site.

Numerous DMCA notices are reportedly being filed by content creators at present. We attempted to contact virtualget.net (anonymously registered in Singapore) for comment, but none of their email addresses appeared to be functional -- One email address was restored to function when the majority of the site was taken down a short time ago, but we received no response. Linden Lab, who has an intellectual property stake in the matter, was not available for comment either.

Users of Kaspersky protection software found the Web-site marked as a phishing site several hours ago, presumably based on user reports.

Update: The operation seems to have disabled access to much of the site in the wake of numerous DMCA notices filed by content-creators.

Are you a part of the most widely-known collaborative virtual environment or keeping a close eye on it? Massively's Second Life coverage keeps you in the loop.

Second Life content creators warn about scam site originally appeared on Massively on Wed, 07 Oct 2009 11:00:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

How scammers plunder your Tales of Pirates booty

James Egan — Sat, 04 Jul 2009 12:00:00 EST

Filed under: Fantasy, MMO industry, Tales of Pirates, Free-to-play, Kids

For the first time in a long while, we've come across a tale of digital wrong-doing that doesn't involve internet spaceships and is definitely not allowed by the developers. The game in question is Tales of Pirates published by IGG. Apparently a number of the game's players have fallen victim to a trick, and IGG wants to publicize this to make people aware of the scam. There's a brief warning on the official Tales of Pirates site about account security, but they just put out a press release that's far more detailed.

IGG writes: "As with any popular game, IGG's Tales of Pirates has attracted its share of scammers. Even the most careful pirate can sometimes be fooled by a well-executed scam. The best way to avoid becoming a victim is to learn the common tricks scammers use. To help players, the ToP would like to highlight one particularly popular method used recently." We can only hope they emailed the full info to their playerbase, but we'll keep our own take on it short and sweet here -- five steps to violating the Tales of Pirates EULA and getting banned (and of course, what to watch out for.):

Continue reading How scammers plunder your Tales of Pirates booty

How scammers plunder your Tales of Pirates booty originally appeared on Massively on Sat, 04 Jul 2009 12:00:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

Phishing attempt targets EVE Online subscribers

James Egan — Mon, 22 Dec 2008 17:00:00 EST

Filed under: Sci-fi, EVE Online, Exploits, News items

They're baaack. The phishing emails targeting EVE Online players, that is. While you're sound asleep dreaming of your next Machariel, or thrashing about in a nightmare about that last pod killing, there are legions of very bad men seeking to crack open your EVE Online account and liquidate your assets. Of course, they need your help to do so.

The phishing attempt has evolved to its next genius incarnation... no wait... it's exactly the same as last month. They haven't innovated at all! They're just plowing ahead with it, regardless. They pretend to be CCP Games and email you, stating that they're EVE Customer Support. Of course, they're emailing you to let you know about their latest database issue, and that they'd like you to log in and verify that everything's OK. They're even kind enough to provide you with a convenient link that brings you to "your account", where the phishers log your username and password, and proceed to rip you off as thoroughly as possible.

Continue reading Phishing attempt targets EVE Online subscribers

Phishing attempt targets EVE Online subscribers originally appeared on Massively on Mon, 22 Dec 2008 17:00:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

CCP Games issues heads up on phishing emails

James Egan — Fri, 14 Nov 2008 18:30:00 EST

Filed under: Sci-fi, EVE Online, Exploits, News items

CCP Games sent out a warning today about phishing emails related to EVE Online, which are apparently making the rounds right now. Despite the fact that the emails are riddled with spelling and grammar errors, the company felt they should make the situation known to their playerbase.

EVE's community manager CCP Wrangler writes: "There is currently a phishing email circulating that claims to be sent from EVE Customer Support. This email claims that we had a database issue and lost some customer information and it asks you to login to make sure your information is still there. They conveniently provide their very own login link. This is of course not true; we have not lost any account information." There's no other information given in the announcement, but as always, it's best to manage your MMO accounts by simply going to the site directly rather than clicking an email link which prompts for your username and password.

CCP Games issues heads up on phishing emails originally appeared on Massively on Fri, 14 Nov 2008 18:30:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

EVE Online calls RMT evil

Akela Talamasca — Wed, 09 Apr 2008 19:30:00 EST

Filed under: Sci-fi, EVE Online, Business models, Economy, Game mechanics, Making money, Legal

GM Grimmi of EVE Online comes out strong against RMT in an official post called 'Real money trading is bad, mkay?' In no uncertain terms, RMT activities are said to be linked to keyloggers, phishing sites, and hacking attempts, and lead to real-world illegal activities like fraud and theft. Grimmi then goes on to say that there is a service available to players who want more ISK that is not only legitimate, but also helps both the game economy and supports other players: the Secure ETC Trading system.

From the post: 'When you buy an ETC and then sell it for ISK via the Secure ETC Trading System you are directly contributing to the growth of EVE as the code will be applied to an account and someone will be using it to play. Some players do not have the means to pay for their subscriptions with credit cards or similar and the Secure ETC Trading System helps them pay and play. The economics are quite different as well since wealth is redistributed between active members of the community rather than injected into the game.' This is a much more creative approach to fighting RMT activity than simple banning of accounts (though that happens as well). Bravo, EVE, slam evil!

EVE Online calls RMT evil originally appeared on Massively on Wed, 09 Apr 2008 19:30:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments

Sony Station downtime for payment security upgrades

Tateru Nino — Tue, 04 Mar 2008 07:30:00 EST

Filed under: Patches, Server downtime, News items

Sony's Account management and Commerce systems, Station Store and CSG store are all shutting down later this-morning to add Mastercard/Visa Securecode support to payment and billing systems.All the game servers will remain up, but the outage window for account, billing and payment services is only approximate at about four hours from 9AM US Pacific time today, Tuesday 4 March.

The securecode system has come under some criticism for lending itself to phishing scams, and indeed there have been some attempts to target cardholders with such scams since the program's introduction. At the end of the day, we're not actually sure if Securecode will make your accounts and cards more secure, but a correct implementation of the system will leave Sony Online Entertainment less liable in the event of fraudulent transactions.

Sony Station downtime for payment security upgrades originally appeared on Massively on Tue, 04 Mar 2008 07:30:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments