video games

PoE 2 player accounts target of mysterious hack. Devs at GGG released new details

We learned the details of the hacking of PoE 2 player accounts. It happened due to a bug, and a minimum of 66 people were affected.

Martin Bukowski

Source: Grinding Gear Games

At the end of December, posts from players whose accounts had been compromised by hackers began to appear on the Path of Exile 2 forum, as a result of which they lost valuable items. At that time, Grinding Gear Games stated that they were unable to return the stolen goods, but they were looking into the matter. Now we have learned new details.

At least 66 robbed accounts

Jonathan Rogers and Mark Roberts, the duo behind PoE 2, recently appeared on the Tavern Talk podcast, where they were asked if there had been a data breach at the developers' studio. Mark reported that there was indeed a situation in which one Steam account was hacked.Thanks to this, the hacker gained access to the administrator account on the PoE 2 website.

Related:Login error in PoE 2. Operation timed out error causes server issues

Over time, the devs have reached the details of how this happened, although they still don't understand the "full scope" of the situation. Mark explained that one of the Steam accounts was linked to the administrator account, but its owner wasn't aware of it, which sounds quite strange. The hacker used Steam's technical support for the break-in, and since he didn't use the account, no malicious activity was detected on it.

However, the reason it remained unnoticed in PoE 2 was a bug in the system. Usually when the administrator account makes changes, they are recorded in the log. However, due to a password change error, they were recorded as regular notes, which can be easily deleted. That's exactly what the hacker was doing, which is why GGG didn't notice any suspicious activities.

Then Mark confirmed that 66 notes were deleted, which means that the same number of accounts were compromised. However, the history only covers the last 30 days, and the hacker started operating 5 days earlier, so the exact scale is unknown.

The full report with all the information will be published in the next few days. It was reported that, luckily, the hacker couldn't access the servers, and once the team understood the situation, they promptly reset all passwords and ended sessions to maintain security. Since then, there have been no violations of the accounts.

More:How to get HoWA for your PoE 2 build

Path of Exile 2

December 6, 2024

PC PlayStation Xbox
Rate It!
Like it?

0

Martin Bukowski

Author: Martin Bukowski

Graduate of Electronics and Telecommunications at the GdaƄsk University of Technology, who decided to dedicate his life to video games. In his childhood, he would get lost in the Gothic's Valley of Mines and "grind for gold" in League of Legends. Twenty years later, games still entertain him just as much. Today, he considers the Persona series and soulslike titles from From Software as his favorite games. He avoids consoles, and a special place in his heart is reserved for PC. In his spare time, he works as a translator, is creating his first game, or spends time watching movies and series (mainly animated ones).

RDR2 Guide Cyberpunk 2077 Guide Assassins Creed Valhalla Guide BG3 Guide Is there flashlight in Cyberpunk 2077 How to Find and Activate Hall of the Penitent in Diablo 4 Stalker 2 Guide BG3 Interactive Map