"Path of Exile 2 Issues Apology for Data Breach"
Grinding Gear Games, the developers behind Path of Exile (PoE), have issued a heartfelt apology following a significant security breach that affected their community. The incident, which was detailed in a post on the official PoE forums titled "Data Breach Notification," sheds light on the vulnerability and the subsequent actions taken to bolster security.
Over 66 Accounts Compromised
Developers Promise Better Security Measures
The breach stemmed from a compromised Steam account with administrative privileges, originally created for testing purposes. This account, lacking any linked purchases, phone numbers, or addresses, was exploited by a hacker who managed to deceive Steam's customer support into granting access using minimal information such as the email address, account name, and a VPN to mimic the account's country of origin.
The hacker utilized the compromised account to alter passwords on 66 different PoE 1 and PoE 2 accounts, employing tools typically used by customer support. They further obscured their actions by deleting password change notifications, preventing account owners from being alerted. This breach allowed access to sensitive personal data including email addresses, Steam IDs, IP addresses, shipping addresses, and unlock codes. Additionally, the hacker viewed transaction histories and private messages, potentially setting the stage for further malicious activities.
"We have taken steps to ensure that there are more security measures around admin accounts so that this can not happen again. No 3rd party accounts are allowed to be linked to any staff accounts and we have added significantly more stringent IP restrictions. We are incredibly sorry for this lapse in security. The measures taken to secure the admin website really should have already been in place and in the future we will be taking even more steps to make sure that this kind of issue never occurs again," the developers stated in their apology.
The community's response on the forum was mixed, with some players appreciating the transparency of Grinding Gear Games, while others called for the implementation of two-factor authentication (2FA) to enhance account security. As the developers work on reinforcing their security protocols, PoE players are advised to change their passwords and remain vigilant about their account information. The addition of 2FA could be a crucial step in preventing future breaches, and it is hoped that Grinding Gear Games will prioritize this enhancement.
-
Jan 22,25Kingdom Hearts 4 Will Reboot the Series Kingdom Hearts creator Tetsuya Nomura recently hinted at a pivotal shift for the series with the upcoming fourth mainline installment. This article delves into his revelations about this crucial new chapter. Nomura Hints at a Series Conclusion with Kingdom Hearts 4 Kingdom Hearts 4: A Story Reset, -
Jan 20,25‘Dungeons of Dreadrock 2’ Announced, Launching on Nintendo Switch in November with Mobile and PC Versions to Follow Approximately two and a half years ago, we were captivated by the delightful dungeon crawler, Dungeons of Dreadrock, developed by Christoph Minnameier. This top-down perspective game, reminiscent of classics like Dungeon Master and Eye of the Beholder, offered a unique puzzle-solving experience acr -
Dec 10,24Cosplay Marvel Emerges: Elden Ring's Mohg Impresses A stunning Mohg cosplay, strikingly similar to the Elden Ring boss, has been shared online, captivating the gaming community. Mohg, Lord of Blood, a Demigod boss crucial to accessing the recent Shadow of the Erdtree DLC, has enjoyed renewed prominence. Elden Ring, a FromSoftware triumph released in -
Jan 30,25Hunters Rejoice! Monster Hunter Wilds Showcases New Content In February Open Beta Monster Hunter Wilds: February Open Beta Extends Hunting Opportunities Get ready for another chance to dive into the world of Monster Hunter Wilds! A second Open Beta Test is scheduled for the first two weeks of February, offering both newcomers and returning players a taste of the action before th