3. The account recovery system needs to GO.

The account recovery system needs to GO.

Here's your issue, you act as if the guy that got hacked had all his emails and shit hacked he didnt.

They got his email, great, they have his only emails = automaticly his payment email that is required.

They have passwords from old databases, one of those must've most likely been used a long time ago = another match, the info hackers have no is stronger for a succesfull IP.

In the same databases (most of them should atleast) they have an IP address, if users joined the site/forum the same time around as he started playing they now have 2 more critical information: His account creation ISP PLUS his account creation location since you can search up most IPs and it will give you an rough idea of where the user is from (not 100% exact, but outside the usa country and isp alone are enough.)

Both ISP and creation country are asked.

So what's left? They have his main email AKA most likely his payment email, they have old passwords from databases (and you're borderline retarded if you think a 10-15 year old had super security and didnt reuse most of their passwords). They have his account creation location and ISP from the old IP from breached databases.

What's left? Payment information AKA personal information ,everyone has facebook nowadays, who the fuck does not have Amazon/Paypal - You know that Amazon can reset your account if you literally only provide your email address and name right? Don't believe me? Go try it out.

Even if they dont "SE" the Amazon/Paypal customer support one of those passwords should work, the majority of the time it does work.

And if it doesn't, have you never ordered food? Clothing? who the fuck in 2009 for example would use a extreme strong password to order a cap?

There's your personal information.

They have the info now, all they do now is send appeals from a VPN with the location the guy either made his account at OR where he is playing from now - they don't only send 1, they send multiple, and you know what the best part is? JAGEX TELLS THEM WHICH INFORMATION IS WRONG

So they can search on that, passwords weak? fuck it try some more from other databases

payment email wrong? Aw yus this means he has another email address somewhere that might have weak security. (And you're delusional if you think people had strong security pre "2step" area or before old databases where hacked, nobody in 2010/2011 knew about 2step because it wasn't even avaible then.

The recovery system is perfect for the hackers, they already have all the info, all that could prevent them from being hacked is hoping the hackers dont have the info or their login names, but we've heard about those stories of jagex supporting giving away people their usernames.

/r/2007scape Thread Parent
Previous
Next

Recently removed from /r/2007scape

Voyage to the Southern Sea Why do we need to keep adding to old school RuneScape? Jagex, we’re sorry. Learning 3t4g be like Dry Spell Hell: My Experience with Oldschool Runescape's RNG The Rank 1 Skiller who's account was compromised just had his name changed Have a question about the game or the subreddit? Ask away! Youtuber "A Friend" reminding us all that Jagex does not have our best interests at heart. New skill has potential to kill OSRS The botting is getting very bad. We need Jagex to provide a better stance against this. It is de-motivating me from playing the game. To people voting no to new skill Theory; The Winter Summit will propose a new skill. Number of new group ironman groups per month since release Mod Tyran leaving anti-cheat after 7 years (still working elsewhere at Jagex) Balance Baba/Akkha so red x and butterfly are not meta its actually a joke

More Random Comments

Here JSM goes again, tricking students into renewing leases. DO NOT RENEW! You hold the bargaining power Will this have enough airspace? It’s about 12 inches wide and my case I’m getting is about 8 inches wide. The Whitehouse staff watching as President Barack Obama welcomed Donald Trump as the new president Sydney Daily Random Discussion - September 12, 2020 Male friends What body type are you most attracted to? These people that don’t cover their noses My (25f) friend (32m) sees his video game family as real people and I'm starting to get worried Proposal for independent practice to achieve NP education reform Chris Roberts on the room system and other aspects A Growing Number of Catholic Schools Are Shutting Down Forever [Wolstat] Nurse didn't think Raptors coaching staff was "getting out of hand" which is what a reporter informed him Jaylen Brown was talking about in his post-game. "We were just competing." [Wolstat] Nurse didn't think Raptors coaching staff was "getting out of hand" which is what a reporter informed him Jaylen Brown was talking about in his post-game. "We were just competing." [Serious] Generally speaking, how can a 30+ year old adult with poor study habits (potentially due to ADD/seasonal depression) prepare to go to University in the next 2-3 or so years? [Wolstat] Nurse didn't think Raptors coaching staff was "getting out of hand" which is what a reporter informed him Jaylen Brown was talking about in his post-game. "We were just competing."