Compromised PoE Accounts: Stolen Items and Hacked Accounts - Discussion and Leads
|
i can garantee i havent used any rmt or any weird link ... only possible thing for me was loggin in on Overwolf PoE2 Overlay, but still many of my friends and other ppl did too and werent hacked, been playing this game for 11 years now and this is the only time it happened
|
|
" so far only one other guy reported having email / password changed through the PoE website, could you please check if thats the case ? if i do recall its in the account management section |
|
|
After reading the whole topic I think people are actually getting targeted , people with high value stuff , mirrors, high value gear etc. . It actually seems to be a problem and I`d wish GGG would clarify or have a statement about this.
|
|
|
have to wait until the higher people (Jonathan) return from their holidays. Can't get any proper explanation otherwise it seems.
|
|
" @Dkodr#6088 sure, my e-mail was "there" but my password was not there, not any of my "old" passwords were there. (updated em all once i was hacked here). looking more and more like GGG leak or cookie grab |
|
|
So far looks like people with high value items or with alot of currency getting targeted. Also looks like it doesnt matter if you have extensions or not. Doesnt matter if you log through steam or standalone. Doesnt matter if you get new location mail or not. Am 99% sure its on ggg part.
Am back!
|
|
|
Bump, as a cybersecurity specialist i fear RCE in all of this if the launcher is involved (or the antichat the kernel level, lovely) i did not look into it as i cannot without authorization. (proprietary closed source) but ill just go straight to valve, feelslike you can just do anything with this vulnerability.
|
|
" I dont know much about cybersecurity but RCE probably explains why a lot of ppl got random friend requests/invites and random ppl visited their HO before they got hacked, one of the randoms was the guy whose name ends on ood_, who was reported for selling stolen stuff. Am back! Last edited by rngaddicted#7405 on Dec 29, 2024, 12:47:21 PM
|
|
" You don't need RCE for that. Just looking at the trade website will give you an account name (directly shown) and a character name ("copy whisper" then ctrl+v in game). That charname is all you need to send a friend request, and if you click and accept the request (for example if you're inside a map and wanna get rid of the popup quickly, or they send you the whisper for buying one of your items and send a friend invite, which you mistake as a party invite, there's many ways to dupe people...) then by default they can join your hideout. Personally I'm thinking more along the line of we got a big change in the way account works a few weeks back and things didn't go smoothly during the transition, so maybe someone decided to poke in there and found something. But that's just my 2 cents and one of the many ways this could have happened. |
|
" I lost like 12 exhalts some vals a chance nothing big so I dont know about that one sadly |
|
