Heads Up: my gaijin\warthunder account password got hacked.

Started by Destraex, January 31, 2019, 12:16:45 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Destraex

My gaijin account just got hacked. They got past my password and I got a two factor key in my email saying somebody from Russia was trying to login. Did anybody else get this problem with war thunder?
"They only asked the Light Brigade to do it once"

Tuna

Sure the email wasn't a phishing attempt?.. Or your password no longer works?

Destraex

It could have been a fishing attempt. But it was a good one as the email listed my exact username for just that game - I only use that username in one other game. So they had my email address in combination with my completely different username and combined that with the games name and from the correct gaijin email addy. Pretty elaborate phishing attempt getting so much right. No I think they cooked it with brute force.

I could get back into my account and nothing was lost or changed because it had two step authentication enabled. Without the code sent to my email the hackers could get no further.

However I thought I might just make people aware that people from russia are trying to hack into gaijin accounts. Thought you all might want to check you have the best authentication on.
"They only asked the Light Brigade to do it once"

bobarossa

Gaijin is based in Russia.  Why didn't Putin simply have them put backdoors in their code so no brute force would be needed? 

DennisS

Quote from: Tuna on January 31, 2019, 06:39:39 AM
Sure the email wasn't a phishing attempt?.. Or your password no longer works?

My World of Warcraft account got hacked in 2010, by brute force. The cleaned out our guild vault, with our guild having over a hundred active members. Ouch.

Despite Exalted guild status, I got booted, and haven't been in a guild since. Part of me is happy that they had a very difficult time replacing my ultra geared Holy specced Priest, as the guild's primary raid healer.

spelk

related..

You can check your various email accounts to see if you have been involved in other breaches over at

https://haveibeenpwned.com

It's run/maintained by reputable infosec guy https://troyhunt.com



jomni

I play war thunder everyday. So far so good. Last week someone tried to get into my Ubi account

Destraex

Uni needs to go into my list to check. How did you know somebody tried to get in?
"They only asked the Light Brigade to do it once"

jomni

I got an email someone was accessing it from a different location. But token 2FA is activated so I guess the guy failed. I just changed password as a precaution.

Destraex

"They only asked the Light Brigade to do it once"