|
GGG did you send an email to every user that got breached if they didnt know?
|
Posted bysegecdario#0829on Jan 15, 2025, 10:56:16 AM
|
|
Don't bother asking questions because they apparently don`t answer them. 19 pages, with many legit arguments and questions and 0 responses from GGG support.
This issue is way more important than the 0.1.1 patch.
Last edited by bawaaji#1185 on Jan 15, 2025, 11:16:17 AM
|
Posted bybawaaji#1185on Jan 15, 2025, 11:14:03 AM
|
"
This needs to be pinned to the front page.
+1
|
Posted byJoyee5500#8186on Jan 15, 2025, 11:14:37 AM
|
|
Why is this not visible like other announcements? Why no social media postings, discord ping? Why are customers not being contacted individually, as mandated by GDPR?
|
Posted bywhat777#2651on Jan 15, 2025, 11:25:27 AM
|
|
So, is there any compensation?
|
Posted byxiechao8555#2704on Jan 15, 2025, 11:38:12 AM
|
|
Hello GGG, let me introduce you to our European friend called GDPR.
|
Posted byHikara#7894on Jan 15, 2025, 11:50:58 AM
|
"
"
GGG are legally obligated to disclose a data breach to authorities and their customers. In the US and Canada they must do so within 72 hours of knowing of the breach. The EU likely has similar requirements.
It gets worse because players were raising tickets weeks ago and yet there was no response from GGG, so they are way outside the 72 hour window.
It will be up to the authorities to determine what, if anything, they will require GGG to provide to customers in the form of things such as consumer protection services, fines against the company and other measures deemed appropriate, such as additional audits and reporting (their auditors should also be under the microscope) based on the scope of the breach.
By their own admission they did not have logging in place and certainly no alert notifications. They cannot tell exactly ow wide the breach is and if any other accounts have been compromised or there is an Trojan horse in place.
They've a long road ahead to regain trust and they better start communicating better to the player base.
Where does all this pressure come from?
Think about it.. the developers are working hard to make the game you play better. They have rework, tons of content to work on. And you're asking for some kind of compensation. Does the game work? Yes! Is there progress? Yes!
Moreover, the problem is old and, as you can see, not critical.
Do you want people to sit and dig through gigabytes of logs all day to help the victims? When the development itself is in full swing and deadlines are missed.
Nevertheless, people working on POE also need to rest. So, say words of support and gratitude instead.
Or do you want such minor problems to be responded to immediately? This never happens to anyone!
Personally, I don't know of any project where such problems could be rolled back.
Security breaches aren't minor issues - especially when the breach involves PII - personally identifiable information, so yes, I, and the government agencies that oversee such things, expect this to be a higher priority then game development.
|
Posted byBowWizard#1239on Jan 15, 2025, 12:15:00 PM
|
|
Anyone involved in refusing to implement 2FA needs to be fired or removed from leadership/decision making processes. Accidents are forgiven, but intentional disregard for you clients/customers/employees combined with utter negligence is actually considered criminal in some industries (healthcare, finance, etc.).
Your leadership should be ashamed and held accountable just like we would be at our jobs.
|
Posted byArrcanos#7987on Jan 15, 2025, 12:28:46 PM
|
