English Português Brasileiro Русский ไทย Deutsch Français Español 한국어
Path of Exile
Forum Index»Early Access Discussion»View Thread
View Staff PostsPost Reply

How hackers are stealing your stash with no 2FA

I do not have any knowledge in coding whatsoever but reading through this post it seems the security issue is connected to the Hideout.
I guess the Hideout has a specific "ID", would it help to change the hideout after a suspicious trade?
Avatar
Posted by

on Jan 7, 2025, 7:30:51 AM
Crusader Supporter
Elite Faithsworn Supporter
Silver Crescent Supporter
Sacred Paladin Supporter
Cryptkeeper Supporter
Quote this Post
Don't believe anything of it until I have seen proof, which I haven't seen anywhere so far. I'm also pretty sure that if there actually was a security breach somewhere GGG would have reacted right away.

Most likely the people who got hacked have no knowledge of digital security.

"
bobothewizard#1818 wrote:
"
H3LLSA1NT#6412 wrote:
you guys are just paranoid

#1 you will not get "hacked" unless you have downloaded malicious software somewhere that could be scanning your keystrokes or data packets.

#2 the game HAS 2FA, if you login from a different location the game forces you to authenticate via your email.

#3 the games does not send your personal account login info to anyone you are in a party with. (trust me ive checked)


#1 - Wrong, completely

#2 - That is not what two factor authentication is. Two factor authentication is done through other means. So a mobile phone, authenticate via text message to your personal device with a code, another two factor application running that generates a security code based on the setup of the authenticator application itself, that type of stuff. You do not 2fa based on the email setup on the account. Authenticating against the email that is already associated with the account would kind of defeat the purpose of two factor authentication since the account information was already compromised.


You are wrong here. That is what two factor athentication is, email is a different means. If the PoE acccount would be compromised that does not mean that the email account is also compromised. Email is a valid 2FA method although not the safest one.
Last edited by BesottedOrb#0064 on Jan 7, 2025, 7:45:08 AM
Avatar
Posted by

on Jan 7, 2025, 7:35:02 AM
King of the Faridun Supporter
Quote this Post

Report Forum Post

Report Account:

Report Type

Additional Info


View Staff PostsPost Reply
Forum Index»Early Access Discussion»View Thread

Home

Game

Forum

Events

Trade

Shop

© 2010 - 2025 Grinding Gear Games Terms of Use, Privacy Notice and Cookies Notice - Contact Support - Developer API
7abf722468df5417cff6bc3ddb8d2701