Account hacked and gear stolen - Account unlock code verification step not working?
|
I logged in to my POE2 account this morning to find all my divs and high-value items missing. Estimated value is probably 100+ divs liquidated.
I already had a bad feeling logging in because I was asked to re-type my password, indicating that I was logging in from a different location. Afterwards, I was not asked for the usual Account Unlock code that usually gets sent to my email address to verify my login. I think the account code unlock step is an EXTREMELY necessary security layer considering GGG accounts cannot be configured with 2FA or similar security verification systems. For the record, I've been playing POE since Sentinel league and this is the first time my account was compromised in this manner. Last edited by Kinslayer_PH#6457 on Dec 25, 2024, 11:15:38 PM Last bumped on Dec 26, 2024, 11:57:19 PM
|
|
|
Are you used Overwolf?
|
|
" No, but I am using Exiled Exchange 2. Other than that, my only other account integration is with the POE2 trade site. |
|
" Source - Kvan7 on GitHub? Key received from the official site or Steam, or marketplaces? Just interesting a pattern of hacked accounts, but here are not really much infos in such threads |
|
" Yes, Kvan7 on GitHub. EA key received via support pack directly purchased from Steam client, though I don't know why this would matter since there is no account information exchanged in this transaction. As for the info, please note what I mentioned that the Account unlock code when logging-in from a different location is NOT triggering, based on my personal experience. |
|
" Just curious about the pattern around such messages, but it seems like program doesn't matter, some people who use overwolf instead have also been hacked. |
|
|
Yeh im too thinking it was overwolf, but people even without any overlay still got hacked. People think it's someone from GGG office stole items, KEKW. While team chilling who stayed here stealing items, no clue how does it happened but everyone dont know how they got hacked. And today 1 russian streamer also got hacked, He was think he is the only one who get hacked and was upset. Alot people got hacked rn while ggg not here.
|
|
" As far as i know the IP lock has not been disabled for the standalone client. Retyping a password dose not indicate that you are logging in form elsewhere, just that the session for the login credentials expired (i know the battlenet launcher dose this and i've seen it a few times on PoE1 over the years) So there are a few things that are likely happening with this "rash" of "hacks" 1. too many people rely on third party addons like awakend PoE trade, and with PoE2 launching you have all charged in to grab the new versions from unknown sources (let me just add a key logger with that) 2. THE LIST. There is a list of compromised email accounts and game account details that regularly gets sold and updated, these details are compiled from all over the internet, every big hack where account details have been stolen will get added to that list. When a new game launches the RMT sellers get the list and try every account/password combo they have and worryingly there is a good amount of people that don't use unique passwords or have not changed them in years, giving easy access to people's stuff...that's why you usually see a spike in "hacked" posts when games become publicly accessible. Even more amusing to me is that the EA is a beta and none of the stuff you get will reach the core game at launch. Ancestral Bond. It's a thing that does stuff. -Vipermagi
He who controls the pants controls the galaxy. - Rick & Morty S3E1 |
|
|
Dont say anything to ggg they will jsut lock your account and let the hacker keep going and you need to wait for ever to get yur accoutn back.
|
|
" maybe you right, maybe not. Im not change my password because of 1 reason, 2FA working in PoE, but not working in PoE2 FOR UNKNOWN REASON FOR ME. |
|
