Jump to content

  • Curse Sites
Help
* * * * - 3 votes

BEWARE! Do not click "password reset" email links from Arenanet!


  • Please log in to reply
227 replies to this topic

#181 Chreyz

Chreyz

    Fahrar Cub

  • Members
  • 29 posts

Posted 29 August 2012 - 05:44 PM

View PostSkolops, on 29 August 2012 - 05:43 PM, said:

Are you absolutely sure you didn't give ANY information out ANYwhere, even to ArenaNet?
I NEVER gave any information to ANY site at all! I even made a new email just for gw2! And a newly thought password that I have never used for any other game or any website. I have absolutely no idea how they got my account.

#182 Skolops

Skolops

    Vanguard Scout

  • Members
  • 282 posts

Posted 29 August 2012 - 05:57 PM

View PostChreyz, on 29 August 2012 - 05:44 PM, said:

I NEVER gave any information to ANY site at all! I even made a new email just for gw2! And a newly thought password that I have never used for any other game or any website. I have absolutely no idea how they got my account.

If this is correct, then make absolutely certain you point this out at some point when they do get back to you.  Don't update your ticket, as this will slow down the response, but when you do get a chance to convey further information its absolutely necessary you tell them so that if there is anything wrong with security on their end they can be aware of it.

#183 xGen

xGen

    Pale Tree Seedling

  • New Members
  • 3 posts

Posted 29 August 2012 - 06:38 PM

Yeah the e-mails many of us are getting are legit in the sense that they're from ArenaNet. As others have, I've checked the e-mail's header and the links aren't being directed to somewhere else. I also made the brave step of clicking on one and it brought me to a page that was down. I then went to the Guild Wars 2 site, went to the password change section, and... same exact downed page that the e-mail leads to(this was yesterday, it could be up now).

I certainly wouldn't recommend clicking the link on any e-mail you're not entirely sure of, there are phishing scams out there for sure, some of us seem to be getting legit mails. Now why we're getting them? No clue.

#184 Skolops

Skolops

    Vanguard Scout

  • Members
  • 282 posts

Posted 29 August 2012 - 08:11 PM

View PostChreyz, on 29 August 2012 - 05:44 PM, said:

I NEVER gave any information to ANY site at all! I even made a new email just for gw2! And a newly thought password that I have never used for any other game or any website. I have absolutely no idea how they got my account.

Please see the following thread on reddit.  They are asking for information from people precisely like you: http://www.reddit.co...t_notification/

#185 Babizokahh

Babizokahh

    Asuran Acolyte

  • Members
  • 123 posts

Posted 29 August 2012 - 08:22 PM

I got the reset password email too, i opened to see what it was (i saw the email before i was aware about the hacking problems,been playing so hard that i didn't even saw email or websites since friday) but didn't click on anything ( i never do, unless i indeed asked for it.) and came straight here to see what it was. I hope i won't be compromised just by opening the email. lol

#186 Chreyz

Chreyz

    Fahrar Cub

  • Members
  • 29 posts

Posted 29 August 2012 - 08:31 PM

View PostSkolops, on 29 August 2012 - 08:11 PM, said:

Please see the following thread on reddit.  They are asking for information from people precisely like you: http://www.reddit.co...t_notification/
Great! Good to hear that they atleast know about this problem, I did send them a ticket hopefully they can recover my account.

#187 Leorio

Leorio

    Fahrar Cub

  • Members
  • 17 posts

Posted 29 August 2012 - 11:43 PM

got one of those nasty emails right after the preorder launch and since the account page went bonkers immediately after the headstart I tried to log into my account several times and thought maybe I accidentally hit the password reset button. So I opened the mail (d'oh)and clicked the link (god knows what got into me) but since I was pretty suspicious about that whole mail business I didn't enter my password nor did I enter a new password or reseted anything. I immediately changed my password through the Account Page after it went up and checked if someone logged into my account, luckily no one execpt me did. Changed my E-Mail the following day and nothing happend to my account (yet).
Still kind of worried (checked for spyware and keyloggers and whatever though - found nothing) but I think I dodged a bullet there. Thank god the Guild Wars 2 Account page has no personal infos or even CC ones.

#188 Temporarily Unavailable

Temporarily Unavailable

    Pale Tree Seedling

  • New Members
  • 3 posts

Posted 29 August 2012 - 11:54 PM

The thing is, it's not something to do with having a GW2 account. I previously mentioned that I was getting these emails, and I DO NOT have a GW2 account. I also stated that my account had been stolen, recovered, and all emails changed. The only possible way for my email to have been exposed was either direct hacking of the NCSoft website for master accounts, or the Guild Wars 2 Hall of Monuments calculator.

While the HoM calculator may sound like a stupid suggestion, remember that you only needed to put in a character name, and it would be able to retrieve actual character information. That means that it was directly connection with the game database to retrieve that information, and a website is not secure to SQL injection attacks.

My update from support was a generic response email that said "Don't worry. Your password will not be reset if you don't click the link..." or something to that extent. They completely disregarded the fact that I said that I HAVE NO GW2 ACCOUNT, but I do have a GW1 account.

#189 Leorio

Leorio

    Fahrar Cub

  • Members
  • 17 posts

Posted 30 August 2012 - 12:07 AM

What bothers me the most it that the E-Mail does seem kind of legit and that no one should be able to "steal" your account unless you directly enter your new password through the reset mail (never found any kind of spyware even though I opened the mail and clicked the account) or someone got their hands on the reset mail right away. I highly doubt that f.e that my outlook account got compromised so that they'd have direct access to the reset mail and enter a new password themselves.
Yet people lose their accounts without even opening the mail.

Edited by Leorio, 30 August 2012 - 12:10 AM.


#190 rebalnz

rebalnz

    Sylvari Specialist

  • Members
  • 745 posts
  • Location:Christchurch, NZ

Posted 30 August 2012 - 12:44 AM

just got 3 of these last night. kind of worried if that means they're targeting me?? would personally hunt them down and kill them if they hacked my account lol don't see what kind of losers would do this.

#191 Lordkrall

Lordkrall

    Legion Commander

  • Members
  • 5370 posts
  • Location:Sweden
  • Profession:Warrior
  • Server:Aurora Glade

Posted 30 August 2012 - 06:33 AM

View PostLeorio, on 30 August 2012 - 12:07 AM, said:

What bothers me the most it that the E-Mail does seem kind of legit and that no one should be able to "steal" your account unless you directly enter your new password through the reset mail (never found any kind of spyware even though I opened the mail and clicked the account) or someone got their hands on the reset mail right away. I highly doubt that f.e that my outlook account got compromised so that they'd have direct access to the reset mail and enter a new password themselves.
Yet people lose their accounts without even opening the mail.

Which might actually mean the hackers have access to the email, and not ArenaNet account-servers. Since with access to your email they can easily click the link and reset the password and *poff* your account is gone.

#192 Kauhu

Kauhu

    Fahrar Cub

  • Members
  • 17 posts

Posted 30 August 2012 - 09:28 AM

Not sure if this was mentioned already but at least with Gmail you can activate a service that SMS's you a 4-digit code that you need to enter if you have logging to your mail from unknown location. Has a "Remember me for 30 days on this computer" option.

#193 Xenharmonic

Xenharmonic

    Fahrar Cub

  • Members
  • 36 posts

Posted 30 August 2012 - 10:00 AM

View PostEzra, on 29 August 2012 - 02:02 AM, said:

As someone has pointed out, it's not at all hard to find someone's account name from just looking at their character in game.


A lot of these resets could be people trolling, perhaps some of you have annoyed people in game so they searched for your character, got your account name and spam reset your password on the official site to annoy you / make you worry.


There are people writing massively racist things in world chat wondering why they got 3 day bans, there's a small vocal community of morons in MMOs that literally do not understand how to function like normal people. The people with stupid character names, the people that can't string a coherant sentence together without swearing.

These are the kind of people that would try to piss you off by spamming reset on your password too, another form of trolling.

I'm sure there's phishing too, but when the email is actually coming from ArenaNet in every way you can verify, perhaps it's a troll.
It's not hard to find out your account name from in game.

Ok, NO, I just had to reply to this.

It's the people who report people for mild language, or names like Lappdance, that get a kick out of this kind of stuff.

#194 slam9905

slam9905

    Asuran Acolyte

  • Members
  • 52 posts

Posted 30 August 2012 - 10:07 AM

After a 12hr sleep I tried to log in about an hr ago....no go...So then I notice on twitter the servers just came back up 10 mins ago but when I try to log in I keep getting error code 42. Then I check my email and see that and old email acct has received 5 of these password reset emails...I just ignore them but when I try to log into the guildwars2 account page I get a message stating my password is invalid :(
No clue what to do other than wait and hope this is a glitch.

#195 Ezra

Ezra

    Vanguard Scout

  • Members
  • 228 posts

Posted 30 August 2012 - 10:35 AM

View PostXenharmonic, on 30 August 2012 - 10:00 AM, said:

Ok, NO, I just had to reply to this.

It's the people who report people for mild language, or names like Lappdance, that get a kick out of this kind of stuff.


What kind of kid would think lappdance is a good name? Like calling yourself - stripshow, gloryhole, reacharound or happyending.

#196 Fhaerron

Fhaerron

    Fahrar Cub

  • Members
  • 43 posts
  • Location:Belgium
  • Server:Gandara

Posted 30 August 2012 - 10:39 AM

View PostBabizokahh, on 29 August 2012 - 08:22 PM, said:

I got the reset password email too, i opened to see what it was (i saw the email before i was aware about the hacking problems,been playing so hard that i didn't even saw email or websites since friday) but didn't click on anything ( i never do, unless i indeed asked for it.) and came straight here to see what it was. I hope i won't be compromised just by opening the email. lol

No, hoewever these sites are not very "healthy"

Arenanet will NEVER ask you for your password or email so never give this info away.

#197 Xenharmonic

Xenharmonic

    Fahrar Cub

  • Members
  • 36 posts

Posted 30 August 2012 - 10:56 AM

View PostEzra, on 30 August 2012 - 10:35 AM, said:

What kind of kid would think lappdance is a good name? Like calling yourself - stripshow, gloryhole, reacharound or happyending.

This game is rated Teen, that means 13+.
And what on earth is wrong with a lapdance? Seems like a perfectly healthy thing for humans to do.

#198 Lordkrall

Lordkrall

    Legion Commander

  • Members
  • 5370 posts
  • Location:Sweden
  • Profession:Warrior
  • Server:Aurora Glade

Posted 30 August 2012 - 11:04 AM

View PostXenharmonic, on 30 August 2012 - 10:56 AM, said:

This game is rated Teen, that means 13+.
And what on earth is wrong with a lapdance? Seems like a perfectly healthy thing for humans to do.

And it is also against the rules which quite clearly state that sexual names are not allowed.

But this is for another thread.

#199 pamelakd

pamelakd

    Seraph Guardian

  • Members
  • 1018 posts
  • Location:London UK

Posted 30 August 2012 - 12:34 PM

View PostEzra, on 30 August 2012 - 10:35 AM, said:




What kind of kid would think lappdance is a good name? Like calling yourself - stripshow, gloryhole, reacharound or happyending.

No it's not. The spelling denotes the character is a dancer from Lappland...

#200 Jaybonaut

Jaybonaut

    Pale Tree Seedling

  • New Members
  • 5 posts

Posted 30 August 2012 - 04:48 PM

It's been 2 full days since my email became detached from my account without any kind of reply to my ticket whatsoever...

I was playing it just fine during every day of the head start until I got an email stating someone changed the email account that was attached.  I haven't been able to play since, and I reported it immediately.  I also never clicked on any links in any emails prior to it happening.

#201 Evenios

Evenios

    Fahrar Cub

  • Members
  • 21 posts

Posted 30 August 2012 - 05:06 PM

they already stated as such.. i just deleated them myself in the email itself it does say you can ignore the message.

#202 Temporarily Unavailable

Temporarily Unavailable

    Pale Tree Seedling

  • New Members
  • 3 posts

Posted 01 September 2012 - 03:09 AM

This is my status update dealing with support. All I get are the "you are an idiot" responses to the problem, and quite frankly, I'm sick of it. Obviously, there IS a problem if they had to disable the password reset option. Instead of an email saying "We've temporarily disabled the password reset option while we look into the problem", I get "There, There. Read this FAQ and all of the problems are solved".



Subject
password reset emails

Discussion Thread
Response Via Email (Verminthrax)

08/31/2012 02:42 PM


Hello,

I can certainly understand your concern for account safety. To assist you, I have provided the following Knowledge Base article:

Title: Security FAQ
URL: https://guildwars.cu...detail/a_id/993

In the future, if you ever have any issues logging into the Guild Wars account you created, please feel free to reply to this message and let us know.

If you have any other questions, please let us know.
Thanks,
Verminthrax
Account Support Team


Response Via Email (Lance)

08/30/2012 12:53 PM


Hello,

Please read this entire message as it will speed up the process to resolve this issue. We are sending each player who has reported a possible account compromise this request for additional information. You will not "lose your place in line;" and obtaining this information will allow us to resolve this issue more efficiently.

Please reply with the following information:

1. If your Guild Wars 2 account name has been changed, provide the account name (your secure email address) you want it changed back to.
2. What is your complete Guild Wars 2 Display Name (if you have it)?
3. What is your 25-digit Guild Wars 2 Serial Code?

We look forward to your response. We appreciate your understanding during this busy time.

Regards,
NCsoft Account Support
Customer By Email (XXXXXXXXX)

08/29/2012 07:26 AM


That response does not respond to my original note. I know I have nothing to fear with a Guild Wars 2 password reset, because I have no Guild Wars 2 account. My concern is the fact that my email is getting legitimate password reset emails from you guys. That means that whoever is causing the problem knows that I have a Guild Wars 1 account....it's not some random accident that this has occurred. My original NCSoft Master account originally had a different email attached to it, and I changed that
after having lost the account briefly. The only way that anyone could've seen this email was attached to a GW account is by hacking either the NCSoft website, or the Hall of Monuments calculator.
Either way, you have completely disregarded what I previously stated. I think you need to take this more seriously. I'm not an idiot, and I know it only takes someone with knowledge of SQL injection to compromise a questioned website. Stop acting like we have no idea what we are talking about with these
responses, and actually do something about it.
Response Via Email (Westley)

08/29/2012 06:15 AM


Hello there,

If you did not initiate a password reset to your account, don’t worry, you have nothing to fear! As the e-mail suggests, if you did not request the password change, then you should disregard the e-mail. Your account should still be safe.

Please let us know if you have any other questions or concerns.

Regards,

Guild Wars Support Team
http://support.guildwars2.com/
Customer By Web Form (XXXXXXXXX)

08/28/2012 10:29 PM


I have gotten 2 emails so far in the last 2 days about someone trying to reset my password. I haven't purchased Guild Wars 2. Viewing the message source, it appears to have legitimately originated from this website. I'm not worried about losing a GW2 account, because I don't have one....however, I find it disturbing that my email, which DOES have a GW1 account attached to it, is apparently available for someone to think that I may have attached a GW1 account to a GW2 account. I've already had problems with my passwords being tampered with in the past. You obviously have a security breach already, and I suggest you fix it.

#203 Lordkrall

Lordkrall

    Legion Commander

  • Members
  • 5370 posts
  • Location:Sweden
  • Profession:Warrior
  • Server:Aurora Glade

Posted 03 September 2012 - 06:22 AM

Ah yes, because we all know they just sit around doing nothing, if they indeed have a security breach.. :)

#204 Lightmgl

Lightmgl

    Fahrar Cub

  • Members
  • 28 posts

Posted 04 September 2012 - 01:14 AM

Kinda funny they announced the official reasoning was similar to what I had suspected about the pw-reset phishing but they have no explanation for the newly created emails. That would actually point at something on their end being compromised....

My friend got an interesting one earlier. He received an email that his email had been changed, to the email he received it at, which was already the current email on his account. He got all freaked out and moved it to a newly created email after that. Something really wonky is going on though.

Edited by Lightmgl, 04 September 2012 - 01:15 AM.


#205 FeatherMoth

FeatherMoth

    Pale Tree Seedling

  • New Members
  • 1 posts

Posted 10 September 2012 - 06:54 PM

earlier i was playing GW2 before i went to collage no problems.as soon as i got home i got this message The email adress you entered was not found.
If you have an active game account, please try again.
If you're still having trouble, please contact customer support.

I check and had an email: Someone -hopefully you!- has requested to change the email address associated with your Guild Wars account.
Need help or have questions about your Guild Warsaccount? Visit our support site: http://support.guildwars2.com/.
Thanks!
-The ArenaNet Team
at this point i was abit worried but though it would be simple because i have my activation code original email and all the accounts names. but it turns out it'll take 2-3days for them to reply?
I didnt even get any kind of password reset email. but i got atleast 12 emails saying:A login attempt from the following location is currently awaiting your authorization. Address: Ip here. City: Bath Region: A4 Country: GB This location is approximated based on information provided by your Internet Service Provider. If in doubt, deny the request and try again. For security purposes, we alert you each time your account is accessed from an unrecognized location. To authenticate this login attempt, please click the link below:
so is this a new email there sending now? or is the legitimate? and is there a way to get my account back.. i was level 79 with over 138 hours play time >......< wasted?

Edited by FeatherMoth, 10 September 2012 - 06:54 PM.


#206 Lord Dulizan

Lord Dulizan

    Pale Tree Seedling

  • Members
  • 2 posts

Posted 27 May 2013 - 04:15 PM

Reviving an old topic..but just some advice to players who havent seen these before or are savvy to the tricks of the scammers.....

Receiving multiple emails like this one:

Dear Players

This is the Guild Wars 2 team for further investigation be.

We found that there is a security risk to your account, click on the link below.

......


The Guild Wars 2 Team



Having received a large amount of these scams in gw1 and now getting alot of these sent lately just wanted a friendly reminder to newer players to be aware.....


removed link from above though to most players it would look official as hell


Edited by Lord Dulizan, 27 May 2013 - 04:16 PM.


#207 Cube

Cube

    Sylvari Specialist

  • Members
  • 550 posts
  • Location:A Web of Lies
  • Profession:Mesmer
  • Server:Ring of Fire

Posted 27 May 2013 - 05:11 PM

I actually use a separate email for my GW2, one which is signed to no other game, forum or anything related. And I've yet to get this kind of message. Luckly anything like this that comes up I ignore, or if I'm worried I will log into guildwars2.com to have a look. But I never press links in emails unless I asked for a link, such as retrieving an account etc.

#208 pumpkin pie

pumpkin pie

    Obnoxious Font Tag Abuser

  • Site Contributors
  • 4911 posts
  • Location:ArenaNet's Pantry
  • Profession:Engineer
  • Guild Tag:[AARM]
  • Server:Tarnished Coast

Posted 27 May 2013 - 06:39 PM

I have a question,  guild wars 2 official webpage/forum,  we use the same email + pw to login for game client, right?

#209 Lordkrall

Lordkrall

    Legion Commander

  • Members
  • 5370 posts
  • Location:Sweden
  • Profession:Warrior
  • Server:Aurora Glade

Posted 27 May 2013 - 07:02 PM

View Postpumpkin pie, on 27 May 2013 - 06:39 PM, said:

I have a question,  guild wars 2 official webpage/forum,  we use the same email + pw to login for game client, right?

Yep. They are the same login-system.

#210 pumpkin pie

pumpkin pie

    Obnoxious Font Tag Abuser

  • Site Contributors
  • 4911 posts
  • Location:ArenaNet's Pantry
  • Profession:Engineer
  • Guild Tag:[AARM]
  • Server:Tarnished Coast

Posted 27 May 2013 - 07:25 PM

Thank you, so, reason i asked: logically, if as some here claimed that gw2's webpage has be breached, then why would they still need to send you an email to get your password?

off topic, for security sake, I think arenanet should let us keep a different set of login / pw to the official forum!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users