PWE already emailed me for request of information and restoration waiver of liability of damage.

I responded and lets see what happens.

more updates to come

One simple idea which might prove effective, allow the customer to limit access to their account (both game and on the website) to a specific country, or even an IP

If you try and login to the game from a completely different IP than usual, block the connection

If you try and login to the website from a different IP, ask for a special pin number or something, so you can amend the settings and/or verify your identity.

I wonder though, is cryptic/PW looking through the IP logs of who's been hacking all these accounts? They should be.

If a Hacker is doing this for a living, its fairly easy to get around IP logs through use of server proxies, and free wireless hotspots...

I bought a new Mac back in September, and made a deliberate choice to not install Flash on it.

In October I also built a new gaming PC. Again, I didn't bother to install Flash or Java on that machine either.

I have not had any problems being on the internet as a "general browser" since. Flash youtube videos can be substituted with HTML5 or h264 plugins. Sure there is occasional inconvenience in not having Flash, but I have never come across a time when I absolutely needed Flash to get some legitimate work done. Frankly, I have saved quite a bit of wasted time by not having access to flash-based web distractions.

Oh no, I miss out on being able to view steam videos, or some random video hosting site- but in exchange I enjoy complete immunity from Flash-based malware and ads. A fair tradeoff to me!

Yeah on TV and Movies that works against them but not in the real world.

I work a Corporate Help Desk for a Fortune 500. One of the things I often explain to users is the ease with which, even a moderately talented hacker, can hack someones website and infect an otherwise legitimate link. The site owner may (and often will) eventually catch and disinfect but usually not before bunches of people have been infected. With websites out there, now, that actually sell virus kits (and some even offer tech support) virus construction is becoming, more than ever, a cottage industry. It's rapidly becoming as common an issue as the old Nigerian money scams heheheheheh.

I'm hoping that people are getting fixed.

I would like to ask a dev if they can chime in on this, but I would like to ask if we can get a reply of the last featured episode series, when our characters were rolled back, we lost our Shard of Possibilities, or in some cases, because we had no equipment, couldn't even play the featured episode.

long story short, i think we should either get the shard, maybe through an npc or something, or easier just run a one week end featured episode relay so all those hacked accounts can get one.

I just don't want to be penalized because some hacker (Expletive deleted) hacked my and everyone elses account.

-AE

How long until they contacted you? I am going on 5 days without a response from them on my sons stolen account.

Perhaps this may help as well. I did not see this about STO Wiki however one of fleet members got some info from cryptic/pwe on it and we honestly think it was a slip and not meant to be disclosed .

Due to the information received through cryptic/PWE customer service it was a technical issue during the transfer to PWE's servers that caused the security leak and therefore allowing their servers to be hacked. I have no definite numbers but a lot of subscribers account information was compromised as we are now seeing

To keep yourselves safe I suggest removing any and all credit card information from cryptic's/pwe's website, change your passwords frequently, if any purchases are made do not save your card/bank info to their website.

As Posted by BranFlakes in fleet energy credits stolen here:

http://forums.startrekonline.com/sho...d.php?t=259233

Sorry all. This post is getting WAY off topic, and there are WAY too many reported posts coming in from it to keep it going. Feel free to discuss this further here, as long as you remain on topic:*http://forums.startrekonline.com/sho...d.php?t=260629

Also, I'll have a chat with our Customer Service team in the morning, but some of the comments made in this thread about hackings happening due to our integration with PWE are unfounded rumors and speculations that are causing more harm than good. I can assure you that if this had happened, we would have notified every player who has ever played our game. Also, Here is a recent post I made in a different thread about your payment methods:



I'm sorry but it is not a rumor and speculation when this was heard on the phone with your own customer service by one of our long standing and trusted community members.

Now if that customer service agent was lying I could see that but why would a slip of the tongue be a lie, and would such a statement even be made? This is disturbing at the very best and I won't speculate as to why this comment was made.

Customer service here is absolutely refusing to acknowledge the theft of those credits and we all know that there is a record of it. Our trusted member sat on the phone with customer service attempting to find out a reasonable explanation as to why our credits were not returned which is when this happened.

It is not a coincidence that shortly after the switchover to F2P and PWE servers that these hackings began nor is it uncommon for a company to not divulge the actual cause of the security problems or admit that it is their fault.

The issues of hacking accounts is not being addressed fully to the customer's satisfaction and nor can anyone attempt to blame so many members for such a breach of security.

I'm sorry BranFlakes but I can not and will not agree with your assessment.

I would however like to see some more info and correspondence from your bosses on this issue because the amount of hackings is growing and we are all concerned for our account safety.