Online-Abo
  • Login
  • Registrieren
Games World
      • Von Astra-Coupe Sysprofile-User(in)
        Gab gerade ne neue EMail von den Entwicklern an mich... sorry aber das übersetz ich jetzt nicht alles in die deutsche Sprache

        UPDATE:

        OP Productions LLC Issues Security Update for The War Z Game Players

        We?ve concluded our preliminary investigation of the attack by hackers on our forum and game. This Security Update is being issued to advise our players and forum participant on the preliminary results of our investigation. We will continue to work with security experts and our internal team to improve our game network and are cooperating with authorities in their investigation.

        What we have learned.

        1) Our Investigation. As soon as we learned that hackers had obtained access to our forums we began a thorough investigation, calling on our internal team as well as outside experts. For purposes of the investigation we assumed the worst, that the hackers gained access to the entire system, and reviewed the entire system for evidence of access, security vulnerability and other tampering. With the preliminary investigation completed, we have learned that the attack was concentrated on the forums. We did not find definitive evidence that our game account database was accessed.

        2) Our Forums were accessed by hackers. Hackers were able to access certain administrator accounts on our forums using previously installed backdoors. Using these accounts they were able to access and delete the forums database which contains all forum messages, as well as forum participant account information.

        3) Information that was accessed. The forums database contained unencrypted email addresses used to log-in to the forum, forum passwords which were encrypted, as well as IP addresses from which players log into the forum. The database did not contain player names (unless identified in their email address) and did not contain payment information, which we do not receive or retain. Forum passwords were encrypted, but our investigation indicated that many participants use weak passwords that could be guessed using brute force.

        4) Access to the game. Forums are hosted independently from the game. They are not connected to the game itself. By accessing the administrator accounts the hackers were able to obtain the administrators' passwords used for their game accounts. With these passwords the hackers were also able to access certain ?dev? level game accounts and play the game using those accounts. They were able to ban up to several dozens of players randomly. We disabled the hacked accounts, identified the wrongly banned players and reversed those bans within hours of the attack.

        5) No definitive proof of access to Game Accounts Database. We have not found definitive proof that hackers were able to access the game accounts database. Because we value the security of the game data and the privacy of our players we took an aggressive and comprehensive approach in our investigation. Better to be safe than sorry. Out of an abundance of caution we advised all players to change their passwords, and, if they used the same email and password for other accounts, to change those passwords as well. We suggested using longer and stronger passwords with a combination of numbers, upper and lower case letters and special characters. Although there was no evidence of access to player game accounts, we believe taking this cautious approach will help improve our game security. We are proud that our players have followed our recommendation and changed their passwords.


        What we doing ?

        1) As a result of our investigation, we have taken steps to improve security of the forums and the game. We took forums offline, completely wiped the forums servers and reinstalled new software. We have installed several layers of hardware and software security. Players may see some of these measures, but most are behind the scenes. In addition we have made changes for aesthetic purposes, such as switching to IPB. We are confident that the changes we have made will make our forums more secure as well as will increase usability.

        2) In order to enhance game security, we took the game offline on for half a day on April 1 and 2 to completely reinstall all software we?re using, install additional hardware protection against possible attacks, and install additional third party services to help us check and monitor security of the whole system. We are continuing to invest significant resources to make our system even more secure

        3) We continue actively working with several third party security experts and are giving our full cooperation to authorities in their ongoing investigations into the attack, it?s origin and methods used.

        We all know that the online world is never 100% secure against aggressive and sophisticated hackers. This experience has been a humbling one for your War Z Team. We have recommitted ourselves to providing a secure and enjoyable game for our players. We will keep working to improve our game and our security in keeping with that commitment. We are sincerely sorry that this incident occurred and greatly appreciate the loyalty of our players. We will keep the [Ins Forum, um diesen Inhalt zu sehen] email account open so that we can address any questions, concerns or suggestions you may have.


        ======================

        LG

        Markus
      • Von TRIPLE2012 Komplett-PC-Käufer(in)
        Zitat von Sickpuppy
        Wie die Hater immer noch auf dem Spiel rumhacken. Naja.
        Es geht überhaupt nicht um´s Spiel, obwohl mittlerweile hinlänglich bekannt sein sollte, dass es Mist ist, wenn man den vielen Tests Glauben schenken darf. Ich kann auch nur sagen, dass es Mist ist und ich bin von Anfang an dabei , ich Depp!
        Es geht um die Politik der Firma und da kann man nur von Betrügern sprechen, oder kann man da noch irgendwas schön reden?!
      • Von omega™ Freizeitschrauber(in)
        Das beste daran... eher nicht, ist ja:

        Das ein gewisser her Serg*y(der User hieß so) in einem Forum laut verkündete, dass er die Datenbank + Server Files veröffentlichen wird, was auch heute geschah.
        Tja, leider stellte sich das Ganze als ein Berg von .rar Paketen mit Viren heraus + einer Kal Online Datenbank(und als Super Mario getarnten Java.exe(n?) heraus)
        Aber die Daten gibt es wirklich, derjenige der diese im Forum veröffentlicht, wird am Ende von der ganzen Community vergöttert werden

        Zum Thema Passwort ändern, es wird ja sicherlich ein Paar geben, die War Z für Steam besitzen und ich kann nur jedem raten, wer so "schusselig" sein sollte und für Steam und War Z die gleichen Passwörter nutzt, dieses umgehend in Steam zu ändern.
        Ich würde ja gerne das Forum verlinken, aber das scheint mir ein wenig suspekt zu sein, wenn der Admin die IP, seinen echten Namen und dessen FB Page heraus gibt... also den Viren-Kiddys.

        //: 5 Leute haben die echten Server Files.
      • Von ryzen1 BIOS-Overclocker(in)
        Zitat von "pcfr3ak;5152318"
        Btw, die Passwörter wurden in Form von MD5 Hashes erbeutet.
        Nunja. Sofern sie nicht gesalzen waren, keine große Sicherheit.
      • Von Astra-Coupe Sysprofile-User(in)
        Zitat von pcfr3ak
        Btw, die Passwörter wurden in Form von MD5 Hashes erbeutet.

        Ist das jetzt gut oder schlecht pcfr3ak? ^^ ...kenn mich da nicht so gut aus aber heisst zumindest schonmal nicht in klarform dann vermute ich. Ist aber vermutlich knackbar und somit unabänderlich das alle ihre Passwörter ändern sollten richtig?
  • Print / Abo
    Apps
    PC Games Hardware 01/2017 PC Games 12/2016 PC Games MMore 01/2016 play³ 01/2017 Games Aktuell 12/2016 buffed 12/2016 XBG Games 11/2016
    PCGH Magazin 01/2017 PC Games 12/2016 PC Games MMORE Computec Kiosk On the Run! Birdies Run
article
1063410
The War Z
The War Z: Hacker erbeuten Nutzer-Daten der Zombie-MMO-Spieler
Die Negativ-Meldungen rund um The War Z reißen nicht ab. Zwar ist das Spiel bereits länger wieder über Steam erhältlich, doch jetzt haben anscheinend Hacker viele Anwender-Daten samt Passwörtern und E-Mails erbeutet. Daten rund um Bezahlvorgänge sollen angeblich nicht betroffen sein.
http://www.pcgameshardware.de/Infestation-Survivor-Stories-Spiel-7390/News/The-War-Z-Hacker-Daten-1063410/
03.04.2013
http://www.pcgameshardware.de/screenshots/medium/2012/10/War-Z_S01.jpg
news