Jump to content
Crysthal

Account Data Base leaked

By Crysthal, in General Discussion & Suggestions

Recommended Posts

Crysthal    3

Crysthal
Posted

According to several shady gaming sites (OwnedCore, EPvpers) lots of Account details are leaked.

 

Change your password immediately and set up the 2 step authenticator asap!

1

Share this post

Link to post
Share on other sites

JunkShop    1

JunkShop
Posted
9 minutes ago, Shoshanna said:

too late,already hacked QQ

If you mean you can't enter your password it's because the database is down which means you'll get the 'invalid password' message.

0

Share this post

Link to post
Share on other sites

arbet    9

arbet
Posted

Elysium has not tweeted that they've been hacked. They were doing some maintenance to things including the account database so logins were invalid for some time.

0

Share this post

Link to post
Share on other sites

toniplavna    20

toniplavna
Posted

Can someone enlighten me , if database leaks, how its possible for someone to decrypt any non-retarded password like 1234? All passwords are crypted as I know.... 

1

Share this post

Link to post
Share on other sites

Tjaz    11

Tjaz
Posted
15 minutes ago, Shoshanna said:

oh,r u sure?

my heart almost stopped :D

If you get the message that you entered invalid account info, it means the server is down. Dont worry.

0

Share this post

Link to post
Share on other sites

TheDruidCode    28

TheDruidCode
Posted
17 minutes ago, Bubblewrap said:

Is twitter the only way to see when they do this kind of maintenance or do they post somewhere?

They use Twitter a lot. There's a feed on the front page but that doesn't help much when the site is down. So if you want to be updated you better follow em on twitter.

0

Share this post

Link to post
Share on other sites

Overtime    6

Overtime
Posted (edited)

Leaks are usually from another project that sold it or got hacked. First one coming to my mind is probably Playtbc.

You should never use same password anywhere, there's password managers for that. If you use normal common words or something generic, they can be brute-forced.

 

 

Edited by Overtime
0

Share this post

Link to post
Share on other sites

Drain    19

Drain
Posted

The client often says the password is invalid when the login is overloaded or simply not running. If there were a real leak, they would have done posted about it and told everyone to change passwords while the realms are done. The shutdown must be for some other reason.

0

Share this post

Link to post
Share on other sites

Gehere    8

Gehere
Posted
Just now, Drain said:

The client often says the password is invalid when the login is overloaded or simply not running. If there were a real leak, they would have done posted about it and told everyone to change passwords while the realms are done. The shutdown must be for some other reason.

A qualified guess would be that the servers are moving.

It would seem the webserver is already moved.

Quote

Tracing route to elysium-project.org [91.230.121.155] over a maximum of 30 hops:

1 <1 ms <1 ms <1 ms router.asus.com [192.168.1.1]

2 15 ms 22 ms 13 ms 69.63.255.182

3 * * * Request timed out.

4 31 ms 11 ms 14 ms ppp-206-80-241-121.nas01.mtlcnds.ext.distributel.net [206.80.241.121]

5 13 ms 12 ms 14 ms 204.101.4.149

6 13 ms 15 ms 15 ms tcore4-torontoxn_bundle-ether7.net.bell.ca [64.230.97.168]

7 12 ms 15 ms 12 ms bx1-torontoxn_et4-0-0.net.bell.ca [64.230.97.159]

8 18 ms 12 ms 14 ms level3_bx1-torontoxn.net.bell.ca [67.69.246.158]

9 105 ms 107 ms 103 ms ae-3-80.edge6.Frankfurt1.Level3.net [4.69.154.138]

10 113 ms 106 ms 106 ms ae-3-80.edge6.Frankfurt1.Level3.net [4.69.154.138]

11 138 ms 136 ms 140 ms 195.16.161.70

12 139 ms 139 ms 138 ms xgrin2-ua.cosmonova.net.ua [95.67.1.18]

 

I don't know.

0

Share this post

Link to post
Share on other sites

Hoxie    1

Hoxie
Posted

On their twitter they said they will release an official statement of what happened.  Also they stated that as of yesterday any attempt at logins will return a bad password.  Nothing about data leaked or account details, if it was something like that the server wouldn't be shut down for 24 hours especially since the people probably affected would be the non 2 step authentication users and not everyone. Not to mention something like that they would of jumped on it and told everyone to change their passwords and to really use the 2 step.

0

Share this post

Link to post
Share on other sites

blooper    5

blooper
Posted

Any Idea as to how far the RollBack may be? I literally played for 12 hours straight and got to level 20 XD it'd be a shame if i got rolled back to level 10. I'd be very upset :( This was the only weekend I had and WILL have for a while to play WoW :(

 

1

Share this post

Link to post
Share on other sites

Jackyy    1

Jackyy
Posted
7 hours ago, toniplavna said:

Can someone enlighten me , if database leaks, how its possible for someone to decrypt any non-retarded password like 1234? All passwords are crypted as I know.... 

pretty much this. If the staff has ANY idea how to properly manage a Database, they encrypt the password with some solid algorythm in place (sha512 comes in mind).

In additon If any leak had accurded, it would be a really huge "scandal" right now

1

Share this post

Link to post
Share on other sites

Velgana    1

Velgana
Posted

Can you guys chill out? There is no need to make assumptions based on some random websites, just wait for an official statement. 

0

Share this post

Link to post
Share on other sites

KromKrush    0

KromKrush
Posted

anyone can post on those ownedcore epvp forums.  they are all guesses  and worst case scenario is rollback a day or so.   Long as u didn't use same account details on project 60  / tbc  or other honeypot servers that were up for a day or two then randomly dissapeared ur  most likely ok and password still safe.

0

Share this post

Link to post
Share on other sites

Mentathiel    5

Mentathiel
Posted

Technically, a hash is not encryption, but even a terrible password like Password1234 shouldn't be vulnerable to database leaks as long as they are salting the hash. Now brute-force might crack it, but that doesn't rely on a database leak.

1

Share this post

Link to post
Share on other sites

Mimma    10

Mimma
Posted
19 hours ago, Crysthal said:

According to several shady gaming sites (OwnedCore, EPvpers) lots of Account details are leaked.

Change your password immediately and set up the 2 step authenticator asap!

 

Come with a reliable source please - or stop spreading rumours if you can't.

0

Share this post

Link to post
Share on other sites

Looneytune    3

Looneytune
Posted
19 hours ago, Crysthal said:

According to several shady gaming sites (OwnedCore, EPvpers) lots of Account details are leaked.

 

Change your password immediately and set up the 2 step authenticator asap!

fake

0

Share this post

Link to post
Share on other sites

Phailpoet    0

Phailpoet
Posted

There was a serious dupe method with an Axe that allowed them to unlimited vendor it, giving them an unchecked amount of gold. I will not be going into any more detail than that.

0

Share this post

Link to post
Share on other sites

Looneytune    3

Looneytune
Posted
1 minute ago, Phailpoet said:

There was a serious dupe method with an Axe that allowed them to unlimited vendor it, giving them an unchecked amount of gold. I will not be going into any more detail than that.

Legit source? Please don't link to thread which also haven't a legit source. ;)

0

Share this post

Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Go To Topic Listing General Discussion & Suggestions
×