So this is one of those more embarrasing posts to make public, but if it serves as a PSA for anyone else I hope it can help others.
Yesterday my account was hacked.
I was cooking dinner and letting Feya craft a bunch of things to print more money for my account. I came back and had a “you were logged off because of another client logging into this account”. I’m use to seeing “Network Connection” gray-screens and I chalked this up to just being a glitch with that system. I logged into Feya and everything seemed fine. Still, I was concerned and put a 2-form-authenticator back on my account.
Why had I taken this extra level of security off? I dropped my phone about a month ago and was planning on replacing it due to a cracked screen.
It wasn’t until later in the evening that I logged into my main character on Rowsdower, Scree, that I realized something was amiss. First off, my character wasn’t where I’d normally go. I was in the middle of a camp in Grimvault. Then I noticed my gold read out looked weird. Instead of 4 currencies, I only had 3. All of my plat on Scree was gone. I had about 5. Not a huge loss I suppose in the scope of things. Then I opened my inventory. All of my bags were empty.
Thankfully whoever compromised my account didn’t delete my primary healing set.
That was nice of them.
All of my gathered materials were sold off; I found one or two mails from the commodity broker still containing money, but it wasn’t significant.
The most damning part of the experience, however, was the fact they spent my Elder Gems; 120 or about a weeks worth. Guess what they spent it on?
Scree is both a miner and a survivalist. They bought the expert version of these tools. Probably to help them bot off of my character. Awesome.
So the actual damage to my account was minimal. The moron who hacked into it didn’t bother to look at my level 17 alt…. who by the way… had over 80 plat in her inventory. I laughed at my good fortune because losing my nest egg would have been too much to bear. They also ignored the 2 Credd in my inventory which could have easily been sold for a further 5-10 plat on the Credd market instantly. Basically this was a botched job right from the get go.
The point of this adventure down oh shit lane is to highlight that even someone like myself who doesn’t visit illegitimate websites can still be hacked. I have a feeling they targeted me right after my last post (which is funny because I name the character in the title thats making the money…). Regardless you can be assured that 2 form factor authentication is now securely installed on both my google accounts and WildStar.
Do not think you are safe. I know I always did. It nearly cost me two months worth of work.
On a side note; I submitted a ticket reporting a bot about a month ago and just got a resolved email yesterday. I am not holding my breath in terms of having my account restored. While its a minor set back in the scope of things for me, I’d still like to know someone got caught from this experience. I’ll update this as I get more feedback from Carbine.