Originally Posted by
sn0wXz
If they had a packet logger, knew how to decrypt the packets, build and then re-encrypt the packets with a time-stamp and such, then it would be possible to exploit trade functions, and shops yes. Its not likely at all though, but then again neither is a database breach but its looking somewhat sketchy at the moment. If a person could send packets to the server and have them accepted I highly doubt they would be taking other peoples stuff, as you can imagine what they could do with...Taking others gears for alz would be pointless if you could do all the aforementioned tasks of having the server accept a packet thats constructed via a user and not the games assembly algorithm/encryption process.
Packet editing, and accessing the database via sql injection into the server are completely different. If they were accessing the DB I would expect to see a few things happening now, that are currently not happening; for example "mass hackings" with random/indiscriminate stripping of gear. The 30-35 current known cases doesn't give much credence to a db leak. It doesn't make much sense at the moment because the numbers are pretty low when scaled to the size of the db/number of active accounts.
It does raise a question about the possibility of a ingame exploit through a design flaw to obtain access to accounts that have possibly interacted in certain ways with the "hacker", or met certain conditions. It doesn't sound reasonable that they would go through a ingame exploit, then find your full email from the website (which is partly censored), and then on-top of that "hack" a email provider for that password? I'm willing to bet not everyone whos been stripped shared the same password with cabal as they did their main email, so no its not very probable at all. Just one instance of the 3 wouldn't be plausible at all, but it is possible; I don't think all of these players being stripped had anything to do with compromising their own account. There is too many for a random keylogger, but too few for a database leak at the moment... Falling in the middle there would suggest there is some exploit for sure we all know that, but I doubt anyone is breaching email providers and the cabal server, Lol. They do seem to be getting passed authorization though, regardless if they are actually using the real passwords/subpass's or just bypassing it somehow.
Pointless to speculate because unless we get official word, we are all just beating a dead horse. GMs could input their opinions on the matter but given they are representing EST's position, you'll probably get the policy walk-around, dealing with each case as isolated incidents that may or may not be related; with no official statement about the on-going stripping of gear. I realize there is a certain point of carelessness and lack of account management on the users' part, but I don't believe the 30 + listed on the main page actually compromised their own accounts within the same short time-span.
Bookmarks