Shout At The Devil: Blizzard Acknowledges Diablo III Hacks - Polidicks

[QUOTE=RPS]First things first: everybody, go change your Battle.net passwords. I have to imagine that someone at Blizzard uttered the phrase “Besides, what else could possibly go wrong” over the weekend, prompting the god of comedically cruel timing to bring its massive whack-a-mole hammer down on Blizzard’s doorstep. And so: hackers! Diablo III‘s official forums are currently rife with tales of items and gold going missing and characters even being hijacked wholesale. Even Eurogamer has firsthand experience. Now, though, Blizzard’s attempting to play knight-in-increasingly-tarnished-armor once again. At the very least, Blizzard is now acknowledging the issue. You will, however, need to be patient for a bit longer. A Blizzard rep explained on the forums: “Hey guys, we are very aware of these reports and are taking them very seriously. Please keep an eye on the General Discussion forums as Community members will be posting something soon. If you have been hacked, please contact Customer Service as soon as you can. In addition, using an Authenticator can help secure your account even more.” Unfortunately, some players are reporting hacks in spite of Authenticators, so take all necessary precautions regardless. All of this, of course, comes after DRM woes ranging from lag to disconnects to lengthy periods of server downtime that have – among other things – severely hampered our enjoyment of Blizzard’s loot-loving opus and raised serious questions about the future of always connected games. Moreover, while Blizzard’s delayed the grand opening of Diablo III’s real money auction house, it still plans to take a pair of giant celebratory scissors to all the red tape eventually. With account hacking in the picture, however, that prospect goes from mildly controversial to downright frightening. Blizzard, then, has an uphill battle ahead of it on par with peddling a unicycle up the side of a skyscraper. Ultimately, I’m still rooting for the Titan-developing titan to get things under control so people can actually, you know, play the game they spent their hard-earned coin on, but here’s hoping Blizzard learns a very big lesson from all of this. And everybody else? Just because a heavily server-based infrastructure thickens your hulls against pirates and knocks down the barrier between single and multiplayer, that doesn’t mean it’s anywhere near unassailable. Time will tell what kind of toll these issues take in the long run, but for now, this certainly doesn’t look like the cure to all of PC gaming’s greatest perceived ills.[/QUOTE] [url]http://www.rockpapershotgun.com/2012/05/21/shout-at-the-devil-blizzard-acknowledges-diablo-iii-hacks/[/url]

[QUOTE]Unfortunately, some players are reporting hacks in spite of Authenticators, so take all necessary precautions regardless.[/QUOTE] How is that even possible? Exploit on Blizzard's side?

can't wait until someone makes a crack for it so none of the bullshit will reach me

[QUOTE=l l;36048678]How is that even possible? Exploit on Blizzard's side?[/QUOTE] If you get two authenticator different codes and the exact time they were used, you can find the algorithm used to get each and every code for that specific authenticator.

[QUOTE=Kabstrac;36048790]I'm under the impression it's basically impossible, right? The AI is controlled by Blizzard's servers, right?[/QUOTE] How do you think people made all those private servers for mmo type games? Emulate the AI alongside the content and authentication servers. Takes a while but people are persistent and the demand is quite high even if all the maker receives is simple attention and fame.

[QUOTE=Kabstrac;36048790]I'm under the impression it's basically impossible, right? The AI is controlled by Blizzard's servers, right?[/QUOTE] I have no idea how it works but I'm not buying it until I can play it offline

This is getting ridiculous. I would've bought D3 by now if not for all these issues.

[QUOTE=deadoon;36048827]How do you think people made all those private servers for mmo type games? Emulate the AI alongside the content and authentication servers. Takes a while but people are persistent and the demand is quite high even if all the maker receives is simple attention and fame.[/QUOTE] Hah, have you ever played a private server? Fucking horrible compared to retail

[QUOTE=l l;36048678]How is that even possible? Exploit on Blizzard's side?[/QUOTE] The hack is from spoofing a session ID, not getting a hold of usernames/passwords. People in public games are replicating session ID's and able to access accounts through them. Just don't play with people you don't know until this is fixed.

No worries here, getting Torchlight 2 instead.

[QUOTE=cccritical;36048882]I have no idea how it works but I'm not buying it until I can play it offline[/QUOTE] [img]http://i.imgur.com/uJLON.png[/img] I made this image just for you.

Somehow doesn't surprise me, all these issues.

[QUOTE=parket;36048907]Hah, have you ever played a private server? Fucking horrible compared to retail[/QUOTE] depends on the game

the "always online" game idea has a problem, its always going to be susceptible to some form of ddos attack :/

The sounds like what happened with Rift. It was something about using the authentication token to log into any account, or something like that.

I am reminded of the hack shitstorm that was and still does cloud that thing we call Diablo II.

so i have to deal with the always on DRM shit and yet it still doesn't work yeah i knew it was a bad idea straying from the "pirates enjoy the full product" mantra

[QUOTE=Kopimi;36049735]so i have to deal with the always on DRM shit and yet it still doesn't work yeah i knew it was a bad idea straying from the "pirates enjoy the full product" mantra[/QUOTE] Nah, I think it was a bad idea straying from the "stick to games that don't have draconian DRM" mantra. If everyone in the world stopped buying these games with draconian DRM methods, then developers just may figure out that people don't like them. Of course, there will always be enough people that purchase the games regardless, but individuals can still consider it a silent, private protest. On the other hand, if enough people buy these games with draconian DRM and consistently break them, developers may just get the hint as well... Nah.

And thus my previous fears of spoofers and hijacks from my WoW days come back to life. Well, here's to hoping shit gets under control soon.

[QUOTE=parket;36048907]Hah, have you ever played a private server? Fucking horrible compared to retail[/QUOTE] Not Project1999

I was seriously thinking about buying this because friends of mine are playing it and it's one of the few games I could enjoy with friends. But not like this.

As stated before, if you don't join random public games with random people you're not going to get hacked. They didn't get usernames and passwords, they hacked people through recently-joined matches. They don't need your password for that. Luckily i've only been playing solo / with friends and i have an authenticator so there's no worry

The only real problem with the always online requirement in D3 (apart from it being a useless and frustrating method of DRM, which made me lose faith in Blizzard quite a bit), is that it currently makes Hardcore virtually impossible. One lag spike or glitch and you're dead. That is not how this game is supposed to be. The challenge of HC should be staying alive, not trying to fight against your connection.

At least Blizzard's admitted to a problem, rather than the other year when loads of 360 accounts got hacked and Microsoft didn't do a thing.

[QUOTE=milkandcooki;36049243][img]http://i.imgur.com/uJLON.png[/img] I made this image just for you.[/QUOTE] It might not be that long, it took Starcraft 2 a year or so for Chinese hackers to hack in a LAN mode and a proof of concept Bnet Emulator. With Diablo 3 it might be sooner seeing as how there is more demand for it.

[QUOTE=Pandamox;36050391]As stated before, if you don't join random public games with random people you're not going to get hacked. They didn't get usernames and passwords, they hacked people through recently-joined matches. They don't need your password for that. Luckily i've only been playing solo / with friends and i have an authenticator so there's no worry[/QUOTE] I only went in a public game once awhile ago and still got hacked.

Stupid hackers should die.

The always online isn't only a DRM. It's also a way for them to easily prevent people from hacking the game by adding for example items and gold and stuff that then later can be sold on the real money auction house. It's a way to safeguard that all stuff you find is authentic and not cheated. So it works as an anti-cheat. The DRM part is just a bonus.

[QUOTE=Fear_Fox;36051100]The always online isn't only a DRM. It's also a way for them to easily prevent people from hacking the game by adding for example items and gold and stuff that then later can be sold on the real money auction house. It's a way to safeguard that all stuff you find is authentic and not cheated. So it works as an anti-cheat. The DRM part is just a bonus.[/QUOTE] Um. Then separate the battlenet characters with the offline characters? If you make a character locally, then that character is not allowed to participate with battlenet trading. It only exists locally, so I don't exactly see the problem here? That is literally the first thing I think of when combatting that problem. You're just trying to think of reasons for justifying a DRM that shouldn't exist.

[QUOTE=Fetret;36050490]The only real problem with the always online requirement in D3 (apart from it being a useless and frustrating method of DRM, which made me lose faith in Blizzard quite a bit), is that it currently makes Hardcore virtually impossible. One lag spike or glitch and you're dead. That is not how this game is supposed to be. The challenge of HC should be staying alive, not trying to fight against your connection.[/QUOTE] Yeah I lost a whole party of mates in a lag spike a couple days ago. Most uncool.