Persistent Hackers

After receiving obvious phising e-mails with various excuses ("Aion/WoW/GW-account password changed", I only play GW) for 2-3 months, I got a genuine NCSoft Master Account password change e-mail today.

I haven't published any of the 3 different e-mails I've used for my Master Account over the years anywhere on the net. I don't do gold trading, my account has not been owned by anyone else, etc. Considering the safety measures I've taken since day 1 of playing GW, I'm quite surprised that the hackers have come to know two of my GW e-mails, and connected it with my Master Account.

I could tell the e-mail was genuine, but I didn't click on the links it gave nonetheless. I went the roundabout way of going to NCSoft and trying to log in, but finding the password changed. I then reset the password, changed my e-mail adress and reset the password again. My GW account is still fine.

Here's hoping that the e-mails will stop, and that I'll never have to get a genuine one ever again. I thought the hacker-wave was over and done with, but I suppose there are some out there still. :/

I appreciate people sharing news about hackers etc., thought maybe someone would find it useful. Maybe someone has related info, stories, whatnot. If not, just let the thread die.

Here's something awesome, NCSoft accidentally emailed me around roughly 250 email addresses a year or so ago. Oh and this next part is off topic but you'll notice on NCSoft Support all of the Guild War's GM's are named FruitAnimal as an example ApplyPython, CherryViper, but if you get your ticket pushed up 4 or 5 times you do eventually get to Galie.

What do you mean a 'genuine' e-mail? They don't actually e-mail you to tell you to change your password do they?

If the password on your ncsoft master account is changed, an email gets sent to the address they have on file for you letting you know the password was changed. It provides the ip address the change came from and if it wasn't you they advise you to contact support immediately.

LOL so I think there is a real question for that though... Who do you think that email of email addresses was really intended for and why exactly? Sounds fishy to me, but nonetheless now I feel that my email and god knows what else is now at the hands of truly unsafe company who can email that information to any Joe Schmo. I mean not only are email addresses in there right? I think your home address is also required to sign up for a nc or gw account too. Fantastic.

This may be related...

I recently changed the password for my ncsoft account. As soon as I hit submit, a window popped up asking if I would like to change the password for my master account, or my bro's master account, or my dad's master account etc. Pretty much anyone's account that had ever logged on this computer. Fortunately, they were all accounts that we owned. This only occurred once, and to be honest, I don't want to try to replicate it.

But what if that happened and a few accounts popped up that weren't ours?

Fortunately, as far as I know, you can't jack guild wars accounts unless you know the current password and a character name... so regardless of the amazing NCSoft website, your guild wars is safe.

Maybe someone got in through that security flaw that NCsoft denied existing.

Immediate solution: Uninstall Guild Wars and never play NCSoft products again.

Otherwise: Deal with it. The wicked will never rest until they've hacked your GW account, drained your bank account entirely, visited your address upon finding it, ripped your arms off, have s _ _ with your wife right in front of you, and set your place on fire. [in a nut shell: the wicked have no limits to their malice, and they will not rest until they've completely destroyed you].

Sad [but true] story, bro.

You know what's even funnier. I've gotten WOW official emails that I've violated the TOS agreements about gold selling etc. etc. and I don't even own a WOW account lmao. It was most hilarious because they were going to suspend my account. hahahah

How do you know they were official QoD?

The same way you know this site isn't malicious. ) Mainly the link to the official Blizzard official website for one.

Same here, cept' my account was just a trial launched sometime in 2007 that wasn't played more than 2 days. I got an email earlier this year (several actually) that stated I had been involved in RMT like crazy and that they would also close my account, they looked 100% genuine, people here told me I was stupid and they weren't..they were made to look real but I'm pretty positive worldofwarcraft.com which is where I was told to go isn't a phishing site, unless that email contained a super malicious ultra hidden script to poison my browser cache and redirect the information..which I highly, HIGHLY doubt. I told you people, I'm one step ahead of the hackers every time. The internet is such a wonderful place.

I believe when you change password the email contains the ip address of where it was changed from. I'm not asking to post that ip address but have you tried looking up anything on this address? Maybe we can find out the location of these people.

http://cqcounter.com/whois/

I call bs. Proof?

Did you check the message source to validate that adress? There are ways to spoof adresses to the status bar, at least, I've seen code that I think would attempt to do just that (I always read such messages in as source).

What do you suggest, posting email adresses isn't an option.

There is nothing constructive to be discussed here. Read the sticky about avoiding phishing emails, and move along.