Hacked? What now...

[Ladeuche 0]

Hey y'all. I'm new to the game, only level 21 at the moment. logged in a couple of days ago to see my gold taken.

now only my gold was gone, none of my gear or my silver was. And my mailbox still had things in it, which had a number of silver in it as well.

It was a whole whopping 2g! Now I know that's like nothing, but at level 21 that hurt lol. I submitted an in game ticket, but haven't heard anything.

where do I go now? Is there ANY chance at them recovering/reimbursing that? Or am i just SoL.

I've since gotten the authenticator and stuff. But I"m surprised I got hacked in the first place, as I play online mmo's fairly frequently and haven't been hacked in probably 10 years. And it happened within 2 weeks of starting on elysium...whatsup with that? is there an inside leak where people are data mining accounts? Or what?

Thanks!

[Denoglan 0]

They don't restore gold. Sorry buddy. Don't worry 2g may seem like a lot, but in a few levels it will be nothing.

[Erjh8765 19]

So, you got capwned. Grats.

Change your password and enable 2FA. Look in my profile's "about me" section for instructions and video on how to do that.

None of your lost items and none of your gold will be restored.

[Chess 3]

2 hours ago, Erjh8765 said:

So, you got capwned. Grats.

Change your password and enable 2FA. Look in my profile's "about me" section for instructions and video on how to do that.

None of your lost items and none of your gold will be restored.

Seriously dude, unsubscribe from this forum, retard.

[monmon 1]

1 hour ago, Chess said:

Seriously dude, unsubscribe from this forum, retard.

Trolls don't go away just because you feed them.  But the "repport post" button might be handy.

[Xerox 4]

Greetings!

Check out this Link, and our Two-Factor-Authenticator option to secure your account.

According to our ToU:

The account owner is responsible for the security of the account and that it's sufficiently protected. Note that Elysium staff does not recover hacked accounts.

Elysium staff will not recover any lost or deleted characters, regardless of circumstances.

Game items such as experience, gold or equipment that you have lost through accident, very rare failure of the server, or otherwise, cannot be restored.

Regards
GM Team

[void_echo 10]

26 minutes ago, Xerox said:

 

The account owner is responsible for the security of the account and that it's sufficiently protected.

Do we get complete 24/7 access to your server, database, and all the security tools you employ, so we can check them and make sure everything's ok on that side? Because without that, we obviously can't be responsible for the security of the account, we can only be responsible for our side of it.

[Rumpelstiltskin 5]

2 minutes ago, void_echo said:

Do we get complete 24/7 access to your server, database, and all the security tools you employ, so we can check them and make sure everything's ok on that side? Because without that, we obviously can't be responsible for the security of the account, we can only be responsible for our side of it.

What is the problem with you people? Have you even read the Terms of Use Agreement ? https://forum.elysium-project.org/topic/21966-terms-of-use-rules-regulations/

When you started playing on the Elysium servers you agreed to those terms and it clearly states that you are responsible for account security. It doesn't matter if you are able to have full control over the security or not, you AGREED that you are responsible. End of story.

[void_echo 10]

Just now, Rumpelstiltskin said:

you are responsible for account security.

It could state that I'm the Pumpkin King of All Aeternia, doesn't make it possible, does it.

[Rumpelstiltskin 5]

1 minute ago, void_echo said:

It could state that I'm the Pumpkin King of All Aeternia, doesn't make it possible, does it.

Correct. But still, if you don't like to have the responsibilities of Pumpkin King of All Aeternia, don't use any services where you have to agree to such conditions.

[monmon 1]

Just now, Rumpelstiltskin said:

Correct. But still, if you don't like to have the responsibilities of Pumpkin King of All Aeternia, don't use any services where you have to agree to such conditions.

Don't even bother.. these special snowflake self entitled retail kids can't comprehend logic.

[void_echo 10]

9 minutes ago, Rumpelstiltskin said:

Correct. But still, if you don't like to have the responsibilities of Pumpkin King of All Aeternia, don't use any services where you have to agree to such conditions.

Thankfully, both the hierarchically higher rules and regulations of actual real world organizations, as well as Aristotelian logic, make the imaginary responsibilities levied onto the player by the Aeternian Pumpkin Kingdom Council null and void in material reality.

[Xile 0]

We're responsible for our accounts.. fair.

 

Who the hells responsible for ALL of the leaked accounts out there?.. Tell me.

[monmon 1]

1 minute ago, Xile said:

We're responsible for our accounts.. fair.

 

Who the hells responsible for ALL of the leaked accounts out there?.. Tell me.

What leaked accounts? 

As far as i or anyone else knows, the Elysium database have never been leaked anywhere.  So what evidence can you provide to support, what is at best a logigall fallacy, at worst just another asinine claim.

[Erjh8765 19]

44 minutes ago, void_echo said:

Thankfully, both the hierarchically higher rules and regulations of actual real world organizations, as well as Aristotelian logic, make the imaginary responsibilities levied onto the player by the Aeternian Pumpkin Kingdom Council null and void in material reality.

What do you know of Aristotelian logic? You can't even speak Greek.

Και μιας που το ανέφερα, τρέχα στον Τιμαίο να δείς αν έρχεται ο κριτίας, μαλάκα.

[monmon 1]

32 minutes ago, Erjh8765 said:

What do you know of Aristotelian logic? You can't even speak Greek.

Και μιας που το ανέφερα, τρέχα στον Τιμαίο να δείς αν έρχεται ο κριτίας, μαλάκα.

Logical fallacy......

[Xile 0]

Because "hackers" don't just go about successfully taking hundreds of accounts.. and the staff would not be so adamant about everyone changing their passwords so often. If that was the case. this same thing would be happening on ALL servers. most "hacking" on other servers are just idiots that share accounts.

Some how account information must have been leaked.

[Ladeuche 0]

So no chance on the recovery.. well shit.

Ok that leads me into my 2nd question. I haven't been hacked in a game, or lost a password in MANY years. This happening in 2 weeks, makes me very suspect that there's something going on in the background where there's a hole, or someone leaking accounts or something. (not accusing, just saying that this is what it seems like). I'm not pissed about my gold, but to keep this from happening in the future...

I've signed up for the Authenticator and stuff, does this guarantee that someone can't get in now w/o that? Or is there some other work around?

Because you shouldn't HAVE to change your password every dang week in order to keep it safe... Some thing else is up, and i don't wanna put in hours of work to get to 60 and farm stuff up, only to have it lost because it's hacked due to someone elses fault. :\

[Ladeuche 0]

Bump, for the anwswer to my question about the 2fa safety.

[Xerox 4]

Greetings @Ladeuche!

The 2FA is a random code generator, there are 6 digits which means 999999 combinations.

This will make it extremely hard to crack, yes it is possible but as hard as cracking your bank account.

 

In regards to the "leaked passwords"

 

Another private server (we have suspicions as to which, but nothing concrete) has had their password database leaked or sold. What this means, is that if you used a password on that server and also use it on Elysium, your account WILL BE COMPROMISED. Today, several players had their accounts compromised because they used the same info on Elysium as they used on other servers. The only way to assure your safety is to change your password IMMEDIATELY. Please use a 100% unique password on our server.

 

Rest assured that our database has not been touched and is completely safe and encrypted. These attacks have only occurred because the victims used the same login/password on multiple servers. The individuals who got into the player's accounts have been found and everything he stole has been frozen. We will continue to combat such things in any way we can, but there is no way we can combat players leaving their accounts insecure!

[Quantz 0]

funny cause this is the ONLY private server I've played on maybe they came from the year 2020 when I start playing other server's and used that password? :O And yes it was a unique password I made IN GAME using the .account or what ever it was saying every 5 mins.

 

Least for me they only went after my lv. 18 mage on the new pvp sever left the pve alone hmm wonder why.

[Sahoso 1]

3 hours ago, Xerox said:

Greetings @Ladeuche!

The 2FA is a random code generator, there are 6 digits which means 999999 combinations.

This will make it extremely hard to crack, yes it is possible but as hard as cracking your bank account.

 

In regards to the "leaked passwords"

 

Another private server (we have suspicions as to which, but nothing concrete) has had their password database leaked or sold. What this means, is that if you used a password on that server and also use it on Elysium, your account WILL BE COMPROMISED. Today, several players had their accounts compromised because they used the same info on Elysium as they used on other servers. The only way to assure your safety is to change your password IMMEDIATELY. Please use a 100% unique password on our server.

 

Rest assured that our database has not been touched and is completely safe and encrypted. These attacks have only occurred because the victims used the same login/password on multiple servers. The individuals who got into the player's accounts have been found and everything he stole has been frozen. We will continue to combat such things in any way we can, but there is no way we can combat players leaving their accounts insecure!

Stop telling people you have suspicions another server was hacked. It is untrue. Your database was hacked, is being hacked and will continue to be hacked.

If you want to put the bullshit "account security is the account owners job" then thats fine. Tell us your servers are unsecured and the best way to protect them is to change passwords every day. 

 

I had a unique password, 2 factor auth and my account was still closed. I should "rest assured though that this is my own fault because I used the same login on another platform" The only other game I play is Battlefield on xbox. Did xbox live datbase get leaked and my sign in was tested on your server? 

[Xerox 4]

Greetings @sahoso!

I can only rely on the information provided by the Admins and Devs, we at the GM Team do not work with the database security.

Our database has not been compromised according to the Admins, and this is the only information we at this branch of support knows.

 

Please understand that there are multiple branches working on this server.

Administators (Leaders)

Developers (Programmers)

Testers (Bug and release testers)

Game Masters (Player support)

 

We at the GM Team take orders and get our information from the Admins.

[Sahoso 1]

2 hours ago, Xerox said:

Greetings @sahoso!

I can only rely on the information provided by the Admins and Devs, we at the GM Team do not work with the database security.

Our database has not been compromised according to the Admins, and this is the only information we at this branch of support knows.

 

Please understand that there are multiple branches working on this server.

Administators (Leaders)

Developers (Programmers)

Testers (Bug and release testers)

Game Masters (Player support)

 

We at the GM Team take orders and get our information from the Admins.

So then the admins should be providing you with true statements. 

The Nost database was leaked. That was the original Dec 28th hacking spree that went wild. It was clever wording by the admins to say "Our servers have never been hacked) because technically yours wasnt, but the files you imported for accounts was for sure put out on the net. Scummy way to relay to the public that the accounts were insecure instead of saying "Nost DB was leaked, if you had an account there please update password" If people had known that, they would have changed it instead of thinking another server like Kronos or one of the big ones was hacked.

If the server continued to be secure and were never in danger, then you wouldn't recommend updating your password daily like people are posting here. I've never had any kind of service/game recommend changing passwords so often. 

It is clearly shifting blame from your side to the other because it can't be contained 

 

[Cogfather 25]

Locking this topic.

Firstly, I'd like to make it clear that since we have launched our 2FA program, 99.99% of hacking occurs on non-2FA secured accounts. This is one of the main reasons we are pushing all accounts to be secured by it.

To OP; Xerox is correct. We do not restore gold to hacked accounts in most circumstances. With this in mind, please submit a ticket in-game so we can further investigate your compromised account. 

Regardless, I'd like to apologize for the inconvenience, and wish you luck.