Jump to content
Suzerain

Explanation For 2017/01/17 Downtime

By Suzerain, in Other

Recommended Posts

Suzerain    91

Suzerain
Posted

Dear Community,

Let us discuss what has caused this downtime in complete disclosure.

Two days ago a player on our server received a gift of an unusually large amount of gold. We were instantly made aware of this, began our investigation and quickly discovered that the gold was not genuine. Last night, we found an issue with the hardware and decided shut down for unscheduled maintenance. A little while after, our investigation on the gold showed us that an individual gained access to an account with modification privileges on the Anathema character database. As a result, we decided to immediately shut down all of our services to evaluate the damages, their extent and if this individual had more access.

Our System Admin and devs have isolating the breach, revamped our security, and reverted alterations. There was a lot of data to sift through and Anathema PvP is still under some investigation. Preferring to remain safer than sorry, we have kept the servers down until this afternoon to ensure beyond a shadow of a doubt that all is well. Anathema will return as soon as we are comfortable.

Before anyone starts to panic: We have secured the breach. Your data is safe (use the .account password command in-game to change your password, just in case), and any damage done has been discovered and reverted with no need for a rollback.

We have made contact with the individuals whom gained access, and they did not have the intention of harming us. Rather, they were more interested in testing our security measures. In fact, they have agreed to help us to find any remaining security breaches. As a result, we welcome Auya to the Elysium team who is tasked with making sure we are never in this position, ever again!

All in all, it has been a crazy 24 hours, but everything seems to be in hand. We will take further steps to secure our system as best as possible. While we very much doubt there will be any further issues from this event, we will let you know immediately if any should arise. The community is our primary concern, and we will not let pride prevent us from telling you the truth. Should we get ANY hint of a database leak, we will let you know immediately. However, as of now, we have no reason to be concerned this is the case. We will, though, take this opportunity to once again stress the importance of enabling your two-factor authentication. No matter what kind of attacks we may suffer now or in the future, 2FA will secure your account.

We thank you for your patience with us during the downtime, and hope today’s adventures in the world of Azeroth will make up for the time lost!

Elysium Staff


 

10

Share this post

Link to post
Share on other sites

Madz    0

Madz
Posted

Thanks for the information and I'm glad that it worked out well, Gz for Auya and big thanks for the Admin that took the day of from work, big up everyone in the team

0

Share this post

Link to post
Share on other sites

Rhesa    0

Rhesa
Posted

Welcome to the team Auya, great work as always team! Looking forward to future improvements and the new core being put to work.

0

Share this post

Link to post
Share on other sites

finkbrau    1

finkbrau
Posted (edited)

Will there be rollbacks?

Ok reading it a second time it's stated there will be none.

Edited by finkbrau
0

Share this post

Link to post
Share on other sites

Quest    0

Quest
Posted
Just now, finkbrau said:

Will there be rolbacks?

Read the post again. Smack yourself on the head, then read it again. No.

0

Share this post

Link to post
Share on other sites

skydron    0

skydron
Posted (edited)

So a hacker got access to the char DB, gave his char gold. You had a unscheduled maintenance, found the hack and closed the weakness. Now the guy who hacked you works for you and helps finding more weakness of security?

 

edit: and why is Anathema longer down then the others?^^

Edited by skydron
0

Share this post

Link to post
Share on other sites

Angryfrog    4

Angryfrog
Posted

so hey, since his admin got hacked is it safe to say they are perma banned like any other victim that has been hacked in the general public?

0

Share this post

Link to post
Share on other sites

Shaqal    0

Shaqal
Posted

When will I be able to create an account on the official site? Since yesterday, I've been trying to access the site but then realized all this maintenance. 

Is there a way I can create an account right now?

 

-Elysium newbie

0

Share this post

Link to post
Share on other sites

Uglyaf    9

Uglyaf
Posted (edited)
8 минут назад, skydron сказал:

So a hacker got access to the char DB, gave his char gold. You had a unscheduled maintenance, found the hack and closed the weakness. Now the guy who hacked you works for you and helps finding more weakness of security?

 

edit: and why is Anathema longer down then the others?^^

"Last night, we found an issue with the hardware and decided shut down for unscheduled maintenance. A little while after, our investigation on the gold showed us that an individual gained access to an account with modification privileges on the Anathema character database."

thinking-face (1).png

Edited by Uglyaf
0

Share this post

Link to post
Share on other sites

Phailpoet    0

Phailpoet
Posted
2 minutes ago, Shaqal said:

When will I be able to create an account on the official site? Since yesterday, I've been trying to access the site but then realized all this maintenance. 

Is there a way I can create an account right now?

 

-Elysium newbie

Unfortunately the website is the last thing on their minds right now. It probably be until tomorrow when all functionality is completely restored.

0

Share this post

Link to post
Share on other sites

Phailpoet    0

Phailpoet
Posted
8 minutes ago, skydron said:

So a hacker got access to the char DB, gave his char gold. You had a unscheduled maintenance, found the hack and closed the weakness. Now the guy who hacked you works for you and helps finding more weakness of security?

 

edit: and why is Anathema longer down then the others?^^

Did you not read the post?

The Anathema DB is where it happened.

0

Share this post

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
Go To Topic Listing Other
×