|
|
Post by tarbomb on Sept 6, 2013 11:29:57 GMT -5
RotMG was apparently compromised to some extent last night. Nobody (except the hacker himself) knows whether or not he managed to get access to the passwords in the hack, but just to be safe, it's probably a good idea change your Grid12 and Proboards passwords (and on any other sites) if they're the same as your Realm forum or game pass. PS: This is a Grid12 forum, not a Realm one. Please keep the RotMG discussion somewhere else (e.g. the RotMG subreddit). |
|
|
|
Post by quicklite on Sept 6, 2013 12:24:28 GMT -5
Why would the hacker bother to target grid? Grid and realm are different games with different devs and different companies, with the only thing linking them being the grid community being (probably) all realm folks. As well as this, grid is a much smaller, much less populated, much less developed game. The hacker targeting realm would have no reason to target grid, unless he stated some random intention to do so.
I'm pretty sure we're safe.
|
|
|
|
Post by gingerbear on Sept 6, 2013 16:33:57 GMT -5
RotMG was apparently compromised to some extent last night. Nobody (except the hacker himself) knows whether or not he managed to get access to the passwords in the hack, but just to be safe, it's probably a good idea change your Grid12 and Proboards passwords (and on any other sites) if they're the same as your Realm forum or game pass. @ql: underlined the important part. The problem is not the "grid" part, but what if the hacker tries gmail, hotmail, facebook, twitter, paypal, etc. with the same account name and password? People are generally forgetful so they tend to use the same account data around the world, or changing them only lightly, moreso if they are young and just do not care about security as much. Since most of the players here are "from" rotmg, it is quite probable that their data might have been compromised too, and it's a nice and good warning for everyone to still change what they can. Better safe than sorry. |
|
|
|
Post by Guest on Sept 6, 2013 17:24:06 GMT -5
This is why reused passwords are a much bigger problem than insecure, unique ones.
|
|
|
|
Post by trollaux on Sept 6, 2013 22:27:43 GMT -5
Yes the hacker does have your encrypted passwords. So he can log into your accounts on realm. But he doesn't have the unencrypted versions.
|
|
|
|
Post by amitp on Sept 7, 2013 15:20:56 GMT -5
Yes the hacker does have your encrypted passwords. So he can log into your accounts on realm. But he doesn't have the unencrypted versions. Sadly it's not always true. If the hacker has the hashed passwords, you should assume they have your password too. See arstechnica.com/security/2013/05/how-crackers-make-minced-meat-out-of-your-passwords/ for example. Don't use the same password on more than one site. It's impractical to memorize all of them. You can use tools like 1Password or Lastpass to generate random passwords per site, and remember them for you. |
|
