Compromised PoE Accounts: Stolen Items and Hacked Accounts - Discussion and Leads

I got hacked too

and I found the guys who stolen my item and all of you

https://www.pathofexile.com/trade2/search/poe2/Standard/qVL00mlHg

we all know the hackers, doesnt help, they wont get banned

So people are hacked because they cant secure their shit and they complain that GGG doesnt babysit them by securing their internet life or something?

"

Krz3mien#0868 wrote:

So people are hacked because they cant secure their shit and they complain that GGG doesnt babysit them by securing their internet life or something?

Can you prove that it's on our end? If yes, show me. If no, you're doing a wild guess. Since GGG did NOT say it's not on their end. If they would just add that information ANYWHERE. We could come back to this claim.

Bump

"

Krz3mien#0868 wrote:

So people are hacked because they cant secure their shit and they complain that GGG doesnt babysit them by securing their internet life or something?

So, dozens of people are hacked, the same account is trading stolen items, and you think these are *player security issues*, yeah, use your head.

"

britnibrown1984#3108 wrote:

"

Krz3mien#0868 wrote:

So people are hacked because they cant secure their shit and they complain that GGG doesnt babysit them by securing their internet life or something?

So, dozens of people are hacked, the same account is trading stolen items, and you think these are *player security issues*, yeah, use your head.

While it's true that many players have been hacked, not everyone has been affected. Some players with valuable items like multiple mirror items remain unaffected, although this could change. The process of stealing gear seems mostly automated, as the hacker left behind valuable items like exalts or took only a specific amount, which doesn't make sense if it were a manual process.

I believe many users have a Path of Exile account active, which allows them to log in to the client, but the password might be old or compromised from another site. The hacker could be using the new Path of Exile 2 client to check if these passwords are still valid. If the login process isn't secure enough or if the hacker has found a way to bypass certain security measures(header or cookie), they could gain access to these accounts.

Although I haven't read through all the threads, I haven't seen anyone claim that they didn't have a Path of Exile account at all. Some players mentioned using only Steam to play the game, but I wonder if they ever checked if they also activated a Path of Exile account. As far as I know, activating a Path of Exile account is necessary to play the Path of Exile 2 early access but I might be wrong on that. Additionally, I saw couple reddit user who made a post about being hacked, mentioned in the comments that they had an active Path of Exile account with an old password.

If this is indeed the case, then yes, the responsibility for the location check bypass or making the login secure lies with GGG. However, users who use old or reused passwords, or are unaware that they have an active Path of Exile login, also share some of the blame.
I have also multiple divine worth and gear and nothing happened yet. There is no reason to "exclude" me from the victim list.

It think its because of time. If hacker log into someone else's account, and the account owner crashed to desktop cuz this (not sure whats happing in such case) - hacker must quickly evaluate the items and take only the valuable ones. Dozens and hundreds of exalts are harder to take if you have only 30 second to grab n' run

"

Atikiro#5371 wrote:

The process of stealing gear seems mostly automated, as the hacker left behind valuable items like exalts or took only a specific amount, which doesn't make sense if it were a manual process.

Pretty sure it is not automated. I had two chars in maps, they only stole the amulet, shield and one ring from my titan, while completely stripping my expensive (1+mirror) gemling (only leaving some of the jewels). They even took the 6L (5 socket) skills out and left the support gems in my inventory.

My Hacker doesnt list any item below 5 divines (by the way, he has currently 662 items listed and the list keeps growing, hope GGG has a nice vacation =) ), so I believe thats the threshold that they care about. I dont think exalts are worth stealing, they cost time, trading space and are worth almost nothing if you can just hop to the next account to get another big item.

"

Krz3mien#0868 wrote:

So people are hacked because they cant secure their shit and they complain that GGG doesnt babysit them by securing their internet life or something?

No. I have played multiple online games, frequented quite a few forums and subreddits, and I have never seen anything of this magnitude. This is far beyong the scope of "not being able to secure your shit". It's understandable that you think you're very smart, but in reality no one on the internet is safe from scams, frauds and data theft. Since this is a very serious and widespread issue, people are trying to draw attention to it.