Major Security Threat - Authenticator useless

STAR WARS: The Old Republic
Major Security Threat - Authenticator useless

Page 12 of 14 « First < 2 10 11 12 13 14 >

Templeman

01.29.2012 , 07:16 AM \| #111	Quote
Quote: Originally Posted by Pastorfrog OP makes a really valid point, though. If there's a backdoor around the authenticators, that's a -major- issue. this+1

Urko

01.29.2012 , 07:19 AM \| #112	Quote
Apparantly theres players who ive heard of even having WoWs authenticator hacked, if its hackable there will be someone trying to hack it. Make sure your PC is secure with a GOOD antivirus/firewall/malware and you should be ok (nothings ever 100% i guess) Ive never had faith in free ones or windows own , Kaspersky here for 4 years and it rocks.
Well done Patch 1.2, lots of additions that i was looking for.

HELhikari

01.29.2012 , 07:44 AM \| #113	Quote
That's quite a **** up on someone's part. Although in theory they still shouldn't be able to gain access to SWTOR via your account; you still need the authenticator to get in to the SWTOR site itself and in to the the game. (Also, rule one of a compromised system is to treat everything as compromised - the only way to fix it is to reformat and reinstall)
[HEL]hikari Peace is a lie. There is only passion. Through passion, I gain strength. Through strength, I gain power. Through power, I gain victory. Through victory, my chains are broken. The Force shall set me free.

corbanite

01.29.2012 , 07:49 AM \| #114	Quote
Quote: Originally Posted by Heliotic Ok, so they use a man in the middle attack and they have login information which is usable for about 20 seconds. What then? what they did in wow was to log in and remove the authenticator on there and add there own to lock the owner out of it then they would strip toons for gold and valuables and send to others. I mean how sweet is that.. sell 20k gold for real money then hack someones account and send them the gold from the hacked account.. Nothing wrong with making a profit eh? Once account stripped clean make lvl 1 toons and send them to major cities to spam trade until they get banned to generate more sales of gold.
Say no to double-dip.. NO SUB+MT http://massively.joystiq.com/2011/08...e-a/#continued

ebenezar

01.29.2012 , 07:58 AM \| #115	Quote
The idea that you can log into your EA/Origin account and somehow affect your SWTOR is a huge security RED FLAG. What needs to be done is to verify if this really is the case and if so, it needs to be fixed immediately. For those of you lecturing on Antivirus use and not going to unsafe websites are missing the point; unsecure accounts are a huge liability. This goes way beyond simply having your game account hacked. If a keylogger can steal your EA/Origin account and bypass your SWTOR security, then it is UNSECURE. No amount of Antivirus or G rated websurfing with fix this. Bioware, you need to at least look at this to see. As of right now, I am logged into my EA/Origin account and DID NOT NEED TO USE MY AUTHENTICATOR TO MAKE THIS POST!!! The last time I used my authenticator to log into my SWTOR account online was friday. What does that tell you?

Heliotic

01.29.2012 , 11:00 AM \| #116	Quote
Quote: Originally Posted by corbanite what they did in wow was to log in and remove the authenticator on there and add there own to lock the owner out of it then they would strip toons for gold and valuables and send to others. You can't remove the authenticator without calling on the phone here. And who says Bioware haven't learned anything from Blizzard.

Racquerr

01.29.2012 , 11:10 AM \| #117	Quote
SWTOR logins and EA/Origin logins really really need to be separated. It's apparently a disaster that's already happened. Mind as well spare anyone else a potential problem...

Ituhata

01.29.2012 , 11:16 AM \| #118	Quote
Ah yes. I too, thought I won a million euros in the Spanish lottery. Of course, when that didn't pan out as expected, I had that prince of Nigeria who needed my help to hide his massive fortune and after I gave him my banking info, I should be seeing a modest increase in my balance. I'm patient.

Kharzon

01.29.2012 , 11:24 AM \| #119	Quote
Quote: Originally Posted by Runtinator You realize the auth keys changes every 15s or so? So EVEN if they got key logged an auth key, It would only be active for a very short period of time. You missed the point. I have written down the #'s that pop up, after all, it's battery operated. Yes, it's not like Rift's phone auth app where if it's not on the screen (changes every 15s or so) it won't take it. So, again, you can use the numbers that you write down, AT ANY TIME. I will, however, point out, this works for me.

scurrymacleod

01.29.2012 , 11:58 AM \| #120	Quote
i just timed it and the iphone gives you 1:20 until it cuts out.

Page 12 of 14 « First < 2 10 11 12 13 14 >

STAR WARS: The Old Republic

LucasArts, the LucasArts logo, STAR WARS and related properties are trademarks in the United States and/or in other countries of Lucasfilm Ltd. and/or its affiliates. © 2011-2012 Lucasfilm Entertainment Company Ltd. or Lucasfilm Ltd. All rights reserved. BioWare and the BioWare logo are trademarks of EA International (Studio and Publishing) Ltd. EA and the EA logo are trademarks of Electronic Arts Inc. All other trademarks are the property of their respective owners.

You are about to leave this website...

This page is not meant to keep you from following the link you've clicked on. It is just a warning that you are about to leave this website. To go to this page, click the link below.

If you do not wish to follow this link, simply
close this message.

The statements and opinions expressed on these websites are solely those of their respective authors and do not necessarily reflect the views, nor are they endorsed by Bioware, LucasArts, and its licensors do not guarantee the accuracy of, and are in no way responsible for any content on these websites.

Close Continue