Data breach and "account recovery" information.

Good day --

GGG recently posted that someone gained access to Support's admin panel. I would like to air some assumptions and a concern:

According to Jonathan, the bad actors would reset the accounts password and then delete the admin note. This means that if your account was hacked and your old accounts password worked, you weren't hacked using this "Admin Panel" method.

In PoE1, lots of old inactive accounts with Alt Arts were breached. I believe these were the targets of this method. Active players would notice that their account's password was no longer working. This would have raised alarm bells and caused GGG to investigate. It was a miracle alone that someone found the telegram and posted the admin panel on Reddit.

Assuming this method was only used on inactive accounts. What does this mean happened when the bad actors looked at an active account? I would suppose to you that it's possible that they would have screen shotted / saved the data so that they can recover high value accounts at a later date, when they go inactive.

If this is not the hackers first time dealing with PoE accounts, he likely knows all the information to gather that support uses to verify when someone attempts an account recovery. With a little bit of premeditation, he now has 100% accurate answers to all of Supports questions to recover accounts at a later date.


There are several assumptions laid out in this post. I do believe that the logic follows. Is the only option available to create a new account?

Jonathan said in the Tavern Talk, they are going to post a report about it "the next day or two". So that should give some information soon.