Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Fuzzy Avatars Solved! Please re-upload your avatar if it was fuzzy!

World of Tanks: Security Breach Announced

SBFordSBFord Associate Editor - News ManagerThe Land of AZPosts: 16,643MMORPG.COM Staff Uncommon

Wargaming has announced that personal information may have been revealed for World of Tanks players due to a recent security breach. The team investigated the incident and has determined that no financial data was compromised but that passwords may have been revealed. As a result, Wargaming is requesting players  change passwords.

The security of your account is very important to us at Wargaming. As a precaution, we are launching a global campaign to increase the security of your account.  To start, sign into your account on the World of Tanks portal to access the security tools. Please reset your Wargaming ID account password using the Account Management page.

Head to the link above to change your password.

image

Associate Editor: MMORPG.com
Follow me on Twitter: @MMORPGMom

image
«1

Comments

  • m240gulfm240gulf San Diego, CAPosts: 460Member Uncommon
    BTW you get 300g for changing your password!

    I Reject your Reality and Substitute it with My Own!
    image

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by m240gulf
    BTW you get 300g for changing your password!

    Wish it had an extra 0 :(

    image
  • sassoonsssassoonss Monroe Town Patricia Palace, NYPosts: 1,112Member
    was not aware of the breach changed pw for 300 gold greed :)
  • ZepliniZeplini LeedsPosts: 274Member Uncommon
    idiots is all i can say, all the trouble and hoops i had to jump through just to change my email with them and they have weak security and let some script kiddy get it for free

    Playing: WoW, GW2, TSW, Wildstar
    Future: EQ3 maybe, loosing faith in this game fast.
    Played: Most current and extinct MMO's - 14 Years in....

  • waynejr2waynejr2 West Toluca Lake, CAPosts: 4,479Member Uncommon
    Originally posted by Zeplini
    idiots is all i can say, all the trouble and hoops i had to jump through just to change my email with them and they have weak security and let some script kiddy get it for free

     You were able to get your email  changed?  I never heard back from them.

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by Zeplini
    idiots is all i can say, all the trouble and hoops i had to jump through just to change my email with them and they have weak security and let some script kiddy get it for free

    Idiot be the person who believes that in today's world anything is secure, even the Pentagon gets hacked once in a while and they have several orders of magnitude more money invested in their security than Wargaming has per total. Just food for thought.

    image
  • waynejr2waynejr2 West Toluca Lake, CAPosts: 4,479Member Uncommon
  • birdycephonbirdycephon Salt Lake City, UTPosts: 1,314Member
    Originally posted by Dihoru

    Originally posted by Zeplini
    idiots is all i can say, all the trouble and hoops i had to jump through just to change my email with them and they have weak security and let some script kiddy get it for free

    Idiot be the person who believes that in today's world anything is secure, even the Pentagon gets hacked once in a while and they have several orders of magnitude more money invested in their security than Wargaming has per total. Just food for thought.

     

    Almost all hacks rely on human error.
  • ReizlaReizla AlkmaarPosts: 3,301Member Uncommon
    Originally posted by waynejr2
    Here is a password generator for those who need one:   http://www.thebitmill.com/tools/password.html

    Problem with random password generators like this is that you need to keep a list of these randomly generated passwords somewhere. Most ppl using this tool will make a plain ASCII file on their PC with all data (ID, pass, site) where they have used them. I wonder how save that is with all the botnets out there harvesting these kind of files ;-)

    IMO it's best to keep a couple of passwords as default and start exchanging letters for numbers. Like E for 3, A for 4 or @ and such. This way you know your password and you only have to remember which 'version' you have used where.

    AsRock 990FX Extreme3
    AMD Phenom II 1090T ~3.2Ghz
    GEiL 16Gb DDR3 1600Mhz
    ASUS GTX970 3x HD monitor 1920x1080

  • waynejr2waynejr2 West Toluca Lake, CAPosts: 4,479Member Uncommon
    Originally posted by Reizla
    Originally posted by waynejr2
    Here is a password generator for those who need one:   http://www.thebitmill.com/tools/password.html

    Problem with random password generators like this is that you need to keep a list of these randomly generated passwords somewhere. Most ppl using this tool will make a plain ASCII file on their PC with all data (ID, pass, site) where they have used them. I wonder how save that is with all the botnets out there harvesting these kind of files ;-)

    IMO it's best to keep a couple of passwords as default and start exchanging letters for numbers. Like E for 3, A for 4 or @ and such. This way you know your password and you only have to remember which 'version' you have used where.

     So a person could tell a dozen people the password.  They could use the same password over and over again on different sites. Always problems.

    You know the world isn't f-ing perfect.  It's just a f-ing suggestion. 

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by birdycephon
    Originally posted by Dihoru
    Originally posted by Zeplini
    idiots is all i can say, all the trouble and hoops i had to jump through just to change my email with them and they have weak security and let some script kiddy get it for free

    Idiot be the person who believes that in today's world anything is secure, even the Pentagon gets hacked once in a while and they have several orders of magnitude more money invested in their security than Wargaming has per total. Just food for thought.

     

    Almost all hacks rely on human error.

    In as far as there is no such thing as a perfect defense against anything, yes, but direct human error (IE someone went surfing for porn at work, or opened a e-mail before checking, or did something else stupid) is a rare aid to hackers, it does happen when someone drops the ball but not that often.

     

    Also fun little example: A guy from the US a few years back got on the bad side of the FBI, now this guy wasn't a terorist of any kind, didn't break any laws, just managed to piss the wrong people off, and this guy being a little bit savy when it came to PCs decided that he'd troll the innevitable FBI raid on his house by encrypting his hard drive with a 1024 bit encryption key and when the FBI did raid his house and found the hard drive they proceeded to try and crack it... after about a week they took the guy into custody and demanded that he give them the key or that he'd face serious charges, now the issue is they had nothing on him, not even probable cause to believe he had anything on the disk, so he said quietly: Have fun cracking it. To this day the FBI hasn't managed to break the encryption on that disk. How is that possible? 1024 encryption methods are impossible to brute force within sane timeframes (at top speed a current gen computer would require several million years to crack a 1024 bit connection by randomly guessing number combinations).

    image
  • tiddytiddy londonPosts: 23Member

    There isn't a single MMO developer out there that hasn't had their customer information hacked. Blizzard, Trion, Funcom, Sony, EA and the list goes on and on. Passwords, emails, financial and personal information stolen etc.

     

    The scary thing about all this is that with all the hacking that's going on there's, like, hardly any Police work/media attention. I mean these companies hold financial and personal information on like tens of thousands of people and it's obvious that cyber criminals are now focusiong on these companies. doesn't that, like, warrant more attention from the media and the police?

  • DamonVileDamonVile Vancouver, BCPosts: 4,818Member
    Originally posted by Reizla
    Originally posted by waynejr2
    Here is a password generator for those who need one:   http://www.thebitmill.com/tools/password.html

    Problem with random password generators like this is that you need to keep a list of these randomly generated passwords somewhere. Most ppl using this tool will make a plain ASCII file on their PC with all data (ID, pass, site) where they have used them. I wonder how save that is with all the botnets out there harvesting these kind of files ;-)

    IMO it's best to keep a couple of passwords as default and start exchanging letters for numbers. Like E for 3, A for 4 or @ and such. This way you know your password and you only have to remember which 'version' you have used where.

    You can also use something like lastpass It keeps all your passwords on your computer and they're encripted. It's not 100% of course but it does let you use much more complex pass words in games and if you forget them months later they're easy to retreave.

    You are kind of screwed if your hard drive crashes though.

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by DamonVile
    Originally posted by Reizla
    Originally posted by waynejr2
    Here is a password generator for those who need one:   http://www.thebitmill.com/tools/password.html

    Problem with random password generators like this is that you need to keep a list of these randomly generated passwords somewhere. Most ppl using this tool will make a plain ASCII file on their PC with all data (ID, pass, site) where they have used them. I wonder how save that is with all the botnets out there harvesting these kind of files ;-)

    IMO it's best to keep a couple of passwords as default and start exchanging letters for numbers. Like E for 3, A for 4 or @ and such. This way you know your password and you only have to remember which 'version' you have used where.

    You can also use something like lastpass It keeps all your passwords on your computer and they're encripted. It's not 100% of course but it does let you use much more complex pass words in games and if you forget them months later they're easy to retreave.

    You are kind of screwed if your hard drive crashes though.

    Off-hard backups (a flash drive you keep on your person at all times as like a key chain or something).

    image
  • mistafistmistafist Warren, OHPosts: 119Member Uncommon
    Use Keepass + Passifox or  CromeIPass plugins and keep the encrypted DB synced with SkyDrive/Dropbox or something.  Or use LastPass.  Both have password generators.  I prefer Keepass because you can autofill application logins such as games etc.  Lastpass has this also but you need a premium membership and the autofill kinda sucks compared to keepass's way of doing it.
  • erictlewiserictlewis Cottondale, ALPosts: 3,026Member Uncommon

    I have to wonder why I read the news hear, and those idiots from wot did not send me an email saying hey you you need to reset your password. 

    Just saying that is wrong. Glad at least I seen this here. 

     

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by erictlewis

    I have to wonder why I read the news hear, and those idiots from wot did not send me an email saying hey you you need to reset your password. 

    Just saying that is wrong. Glad at least I seen this here. 

     

    It's plastered on their game launcher and their site, just saying if you played the game you would've noticed by now on your own ;).

    image
  • erictlewiserictlewis Cottondale, ALPosts: 3,026Member Uncommon
    Originally posted by Dihoru
    Originally posted by erictlewis

    I have to wonder why I read the news hear, and those idiots from wot did not send me an email saying hey you you need to reset your password. 

    Just saying that is wrong. Glad at least I seen this here. 

     

    It's plastered on their game launcher and their site, just saying if you played the game you would've noticed by now on your own ;).

    I not played the game in over 6 months, I am sure there are many more like me who simply do not play it any more.  They need to know as well, not everybody plays a game 24/7/365

     

  • waynejr2waynejr2 West Toluca Lake, CAPosts: 4,479Member Uncommon
    After changing my password I discovered 300 gold has been added to my account.  Nice.
  • DamonVileDamonVile Vancouver, BCPosts: 4,818Member
    Originally posted by mistafist
    Use Keepass + Passifox or  CromeIPass plugins and keep the encrypted DB synced with SkyDrive/Dropbox or something.  Or use LastPass.  Both have password generators.  I prefer Keepass because you can autofill application logins such as games etc.  Lastpass has this also but you need a premium membership and the autofill kinda sucks compared to keepass's way of doing it.

    keepass fills in the game log in screen as well ? I know you said it but just wanted to make sure I read it right :P if so that's a great feature.

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by erictlewis
    Originally posted by Dihoru
    Originally posted by erictlewis

    I have to wonder why I read the news hear, and those idiots from wot did not send me an email saying hey you you need to reset your password. 

    Just saying that is wrong. Glad at least I seen this here. 

     

    It's plastered on their game launcher and their site, just saying if you played the game you would've noticed by now on your own ;).

    I not played the game in over 6 months, I am sure there are many more like me who simply do not play it any more.  They need to know as well, not everybody plays a game 24/7/365

     

    Yes because I don't sleep at all, Christ I barely play the game nowadays myself and I found out here, on MMORPG first, but the site put it up within 1-2 hours after Wargaming announced it themselves so your logic is non-existent as while indeed you did not get an e-mail Wargaming has gone to the effort of even announcing (or at least confirming) to major MMO news outlets of their hack. Now if your account was important to you or the game continued to interest you considering the recent slew of events and the soon to be launched 0.8.5 you would've noticed like I did ;).

     

    What I get from this poster is the following: I am angry because I use the same password in WoT on multiple games!! because otherwise why would he care about a game he hasn't played in over half a year?

    image
  • LogansanLogansan BrisbanePosts: 45Member
    Originally posted by Dihoru

    What I get from this poster is the following: I am angry because I use the same password in WoT on multiple games!! because otherwise why would he care about a game he hasn't played in over half a year?

    Because he intends to play it again someday? Sometimes the simple answer is the correct one.

  • DihoruDihoru ConstantaPosts: 2,731Member
    Originally posted by Logansan
    Originally posted by Dihoru

    What I get from this poster is the following: I am angry because I use the same password in WoT on multiple games!! because otherwise why would he care about a game he hasn't played in over half a year?

    Because he intends to play it again someday? Sometimes the simple answer is the correct one.

    Following that simple logic train especially considering how much stuff is going on in the game lately he would've been checking up on the site and thus seen the posted warning on the front page (there's new news from the development or tournament side of the game daily and contests keep coming up which don't require a team, Hell one or two don't even require you to be in-game).

    image
  • IchmenIchmen Winnipeg, MBPosts: 1,228Member

    i havent touched WoT since 8.5 came out that steamrolled the stupid cheapo/noob instant kill ramming crap, i dont get why people are so angry at WoT... this isnt uncommon in interweb products :/ so why is everyone ripping skin off WG for the breach?? it happens.. fix your PW and move on thats what i have done.  woopy 300g which might allow me to trade my marder 2 xp in to free on my stug meh.. 

    not a valid reason to flip out and demand a lynching IMO :/ unless it was like the DBS had no security what so ever.. then ya sure lets lynch them high

    CPU: Intel Core i7 CPU 860 2.8GHz
    Evga GeForce 670 FTW
    Evga P55 SLI

    <image

  • marilynjunkymarilynjunky Warren, OHPosts: 1Member
    Free 300 gold is always nice.
«1
Sign In or Register to comment.