Diablo 3 Forum Filling with Hacking Complaints; Stolen Items

Page 4 - Seeking answers? Join the Tom's Hardware community: where nearly two million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Status
Not open for further replies.
[citation][nom]slabbo[/nom]at least add lan, or private gaming between rl friends.[/citation]
This would directly compromise the server infrastructure, allowing for notorious online cheating such as duplicating items, bots(red vex), d2hackit, etc.

Being online for the game is 100% worth it if it means that duplicated items are a thing of the past.
 
Sounds like another excuss to delay the "real money action house"

These people were probably just stupid and went to a phishing site and entered there info, just like the 1000s of stupid WoW players that do it and get their account hacked.
 
I decided that based on the problems Diablo 3 has and considering how much I dislike WoW for no new content and so many assholes out there, I've canceled my subscription to WoW. There are so many other games of better quality that I enjoy a lot more. Blizzard just doesn't seem to give a damn about their customers, and frankly, I feel anytime I log in to check my characters in WoW and see who is all on I feel as though it is almost like a burden to sign in. Until Blizzard starts getting its act together, it won't be seeing me as a customer anymore.
 
[citation][nom]gerchokas[/nom]"now I have a level 57 worthless and not able to progress"57 levels in a week???? The hacker did you a favor man, now i sugest a game called "Outside" - awesome MMORPG with no sever downtimes and completely FREE**fees may apply[/citation]

Level 57 in a week would be super easy if you only played the one champion. People are beating the game in 7-10 hours... If you are playing with a group of friends, you can role through mobs like crazy and the XP bonuses would be huge.
 
[citation][nom]sinclaj1[/nom]Just another reason Torchlight 2 is going to clean up.[/citation]

I'm sure it will do well. And so will the next Diablo release, and the next one and the next one....

Just because they are having issues doesn't mean millions of people are not going to buy the next release. In fact, I would be willing to bet 95% of the people who act as if they will never purchase another blizzard product will be some of the first ones in line to get the next releases... they just enjoy raging. As soon as their friends start hyping the next releases, they will get anxious and buy just like they always have.

Everyone thinks that they are using their "consumer power" by posting on forums... the only power they have is in their wallets, and since they still buy the games, they have essentially told Blizzard everything is A-OK
 
[citation][nom]asusdude24[/nom]Until Blizzard starts getting its act together, it won't be seeing me as a customer anymore.[/citation]

Blizzard is a victim of its own popularity. If any other game generates any near as large of a user base, they too will have problems that Blizzard faces now.

All of these game companies should be thanking blizzard for being the guinea pigs for them in this realm of huge player bases.

Did you really think WoW would continue to be fun forever? Eventually, the game play will get old and story lines will become stale. That is true for every game. I don't know of any game as old as WoW that has something like 10+ million users and still generates content that makes everyone happy.

I honest don't think its possible. Gamer expectations are way to high.
 
[citation][nom]wildkitten[/nom]This one can't be swept under the rug. Joystiq just had an article that even employees of gaming magazines are suffering this and because WoW uses the same authenticator system, it's not happening to WoW accounts.Either someone is investing a lot of money into doing widespread MitM attacks or someone found a way to bypass the authentication system.[/citation]

Diablo 3 uses the same Authenticating system, It is account based and D3 does recognize it. Everyone with a smart phone should have an Authenticator installed.

WoW has been dealing with this for years and in the end, it is up to the consumer to protect themselves with the tools blizzard provides.

Just imagine if Blizzard would to make authenticators a requirement. The world would end.
 
Alrighty time for me to toss my hat in the ring, most of this is out of me being curious since I can't pick the game up since my gaming budget has gone out the window after my daughter was born but here goes.

The auction house Gold or Real Money, are those items available to only your multi player toon or single player toon or is there no restriction on where it'll go?

The reason I ask is as follows...
If your auctioned item can be obtained via a single player campaign and sold than used via a multiplayer toon, the always on drm/protection is in place not to protect you from getting your user account stolen but is in place so you can't hack your single player save file to get an overpowered endgame piece of gear that you've never seen and then sell it on the Auction house which would completely destroy the in game economy & player experience for everyone.

This would be the next logical step as no matter what type of protection they placed on the character files in Diablo 2, it was always getting hacked where as when you hit a private server players were well beyond any level one could obtain by any other means than hex editing your character's statistics.

For those of you demanding an offline version, start a petition of your own if you'd like, have them patch the installer to allow you to chose to install a "Lite" version that would strip away the ability to use the Auction Houses or connect online to a battlenet or private server with your player data saved locally.
 
[citation][nom]pyro411[/nom]For those of you demanding an offline version, start a petition of your own if you'd like, have them patch the installer to allow you to chose to install a "Lite" version that would strip away the ability to use the Auction Houses or connect online to a battlenet or private server with your player data saved locally.[/citation]

and prepare to be disappointed.

News flash: Blizzard cannot enable "offline play" without handing you their server code. An "offline client" in client-server architecture is simply a married client/server. This means that Joe Hacker now has everything he needs to build, test, and effectively deploy an online-compatible hack of the caliber of d2hackit/duping methods/packet sniffers/etc.

The moral of the story here is this: if you do not have proper security measures in place so that the integrity of your account and everything that is encapsulated inside your Blizzard account cannot be compromised, be prepared to wait on hold for Blizzard support for a few hours with everyone else who thought their $4 (is it even 4 dollars?) was better spent elsewhere. Let's not forget to mention that the mobile app is even cheaper (free?)
 
[citation][nom]bgaimur[/nom]and prepare to be disappointed. News flash: Blizzard cannot enable "offline play" without handing you their server code. An "offline client" in client-server architecture is simply a married client/server. This means that Joe Hacker now has everything he needs to build, test, and effectively deploy an online-compatible hack of the caliber of d2hackit/duping methods/packet sniffers/etc. The moral of the story here is this: if you do not have proper security measures in place so that the integrity of your account and everything that is encapsulated inside your Blizzard account cannot be compromised, be prepared to wait on hold for Blizzard support for a few hours with everyone else who thought their $4 (is it even 4 dollars?) was better spent elsewhere. Let's not forget to mention that the mobile app is even cheaper (free?)[/citation]

bgaimur, that is yet to be seen, all of the game data is local on the system for single player and most of it is local for online multi player with the exceptions of data on NPC/Monster Stats & Spawn points/frequencies.

As for the Server/Client married that's only true in online only games with a game that supports a single player campaign there is always the ability to offline it it just depends on how much work someone is willing to do, which so far from what I'm seeing is the following

Build an offline character save subsystem which removes the requirement for connections to the server to load character data
Remove or disable the API for the auction house for "Lite" installs
If all Spawns of monsters/NPCs are controlled by a server side triggered macro that's able to be ported easily enough
Patch the DRM to require a callback to the server at certain intervals instead of always on with the system making the call via packets protected by a 2048bit RSA key

The downfall is there will always be people who had the "Lite" client installed that now want to go to full with the AH enabled & any other online enabled features that would require Blizzard to have a way to upload the character data to the server for verification before it can be used in the live/online environment, or just tell the player they can't import the data and have to start from scratch.
 
[citation][nom]pyro411[/nom]bgaimur, that is yet to be seen, all of the game data is local on the system for single player and most of it is local for online multi player with the exceptions of data on NPC/Monster Stats & Spawn points/frequencies.As for the Server/Client married that's only true in online only games with a game that supports a single player campaign there is always the ability to offline it it just depends on how much work someone is willing to do, which so far from what I'm seeing is the followingBuild an offline character save subsystem which removes the requirement for connections to the server to load character dataRemove or disable the API for the auction house for "Lite" installsIf all Spawns of monsters/NPCs are controlled by a server side triggered macro that's able to be ported easily enoughPatch the DRM to require a callback to the server at certain intervals instead of always on with the system making the call via packets protected by a 2048bit RSA keyThe downfall is there will always be people who had the "Lite" client installed that now want to go to full with the AH enabled & any other online enabled features that would require Blizzard to have a way to upload the character data to the server for verification before it can be used in the live/online environment, or just tell the player they can't import the data and have to start from scratch.[/citation]

You make it sound so easy, why don't you work for Blizzard already?
 
[citation][nom]bgaimur[/nom]You make it sound so easy, why don't you work for Blizzard already?[/citation]

Several reasons.
My back round is in PC & Server Repair / Network security not programming
The above implementations would go against what upper management wants as the Auction House will generate revenue for Blizzard with every transaction and removing that functionality slows/stops the flow of extra income to the bank which with any luck will help fuel free content patches to the game at a later time.
They already have many employees far smarter & more experienced than me already working with/for them, who's to say what I've posted hasn't already been presented and shot down

If anything getting the ability to play offline isn't so much a technical stumbling block, it's a political/accounting stumbling block.
 
[citation][nom]bgaimur[/nom]Blizzard's community managers (read: Bashiok) have issued several statements (not that I would expect Tom's to thoroughly research) in their forums about how ALL of these account compromises have been through traditional methods. These methods include trojans/email phishing scams/friends with passwords/etc. At the moment, there is nothing but rumor and speculation that suggests a super hack, developed by the legion of doom, is out there to grab your account and steal your axe of murder or ebony dyes.[/citation]
Yes, Bashiok has stated that. He also stated that none of the compromised accounts had an authenticator. One problem though, even journalists who have authenticaotrs are getting hacked. One thing I have learned about the post merger Blizz, the blues most of the time don't have a clue what is going on.
 
[citation][nom]Jprobes[/nom]Diablo 3 uses the same Authenticating system, It is account based and D3 does recognize it. Everyone with a smart phone should have an Authenticator installed.WoW has been dealing with this for years and in the end, it is up to the consumer to protect themselves with the tools blizzard provides. Just imagine if Blizzard would to make authenticators a requirement. The world would end.[/citation]
Yes, and consumers are. Perhaps you missed the fact that even though Bashiok may have said that accounts that have been compromised haven't had authenticators, but even journalists have had their accounts hacked and they have had authenticators. This is widespread Blizz won't be able to sweep away trying to place the blame on lack of authenticators.

I was still on WoW when they stopped making it so you had to enter your authenticator every time. Most everyone who used one complained. The entire reason we got it was for the increase in security and we wanted the protection of using that authenticator every time. People even pointed out the proxy style spoof attacks to simulate being in the same area so that the system wouldn't ask for the authenticator. The result was the fan kiddies like you laughed and shouted us down saying that an attack such as what is going on now would never happen and that it was too much of a hassle to enter the authenticator number every time they logged in.

Before then, all you really had to worry about was MitM attacks and that was rare because of how difficult it was. But Blizzard themselves helped out the hackers by making their authentication system not ask for the authentication every time if the system believed it was from the same login location the account was normally logged in from.

You are right, it is up to the people to use the tools Blizzard provides to protect themselves. But it's not the peoples fault who got authenticators that Blizzard turned around and made the authentication system impotent. No way you can rationally defend Blizzard on that which has helped lead to this current mess.
 
[citation][nom]Non_turbo[/nom]Maybe yoou cheapbastiges will realize makig y games ONL playabloe only or with an active connection is your fault for putting out CRAP like Dynaamex did in the day..Suppoty your crap as playable " SINGLE PLAER " Only or go in the tank likke yu should hve with SC33Sorry rotten ppieces of crallike this deserve to fal and you should have gone under with your lack of foresight... you are a complete blight on the gaming community....[/citation]
Thanks, turbo. Now my brain hurts.
 
Laughable. Possible the worst launch in 2012, or recent years even. Since the start people have been getting countless amounts of errors for different reasons (dealing with DRM or servers or other), massive lag spiking (some people are STILL experiencing lags upwards of 1500ms-2000ms - no exaggeration!) and rampant hacking. Pathethic that a multi billion dollar company can't do a proper launch on a game that's been 12 years in the making.
 
Flawless experience for me. I am yet to receive one disconnection or error in game not related to maintenance. Fingers crossed blizzard security is almost airtight! I say this is more likely the work of Malware/Phishers preying on insecure systems & gullible people, no game is perfect, and one as massive as Diablo 3 is very likely to have the attention of organised crime and greedy hackers...

In short, dont complain if you bought on release and see the first issues, and don't gloat because you didnt purchase it.
 
Status
Not open for further replies.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom