My bank contacted me: Credit card info stolen from PoE site

I can't understand why OP didn't first message support, GGG's Support is excellent. Instead of creating possible mass hysteria. I mean they must of had some kind of idea, the possible implications of their act.

I'm just baffled. I mean maybe it's easier to say now because the situation has already taken its course but.. good grief. It's like shooting a bazooka at a flea. I'm going to give OP the benifit of the doubt and say they were in shock so much so that they weren't thinking clearly and raced to the forums because I can't process it otherwise.

The thought of a troll, I.. to much.

"

TwistedTrip написал:

I can't understand why OP didn't first message support

because he is your typical knee jerk player...didn't listen to his bank properly, or his bank were proper retarded, got the wrong end of the stick and came here to warn people of nothing but his paranoia.

Initially i thought it was someone that was previously banned trying for maximum damage, but after reading the follow up posts it's clear he is a bit of a numpty.

"

Jerle написал:

"

onomastikon написал:

I am posting this as a warning to others and to those at PoE responsible for data security.

My bank contacted me 15 minutes ago by phone to inform me that they believe my credit card information was stolen from the website that processed my information after the last usage of my card, and the bank personell was able to name the nature of that purchase and the site from which the card information was stolen: Path of Exile.

Beware.

This is serious allegation. I hope GGG can verify.

Technically it is an allegation you are correct.

More specifically it is: M A S S I V E _ H O R S E S H I T

There's no way, absolutely no way, that a bank can tell where the information has been stolen. They'd need to have access to GGG's infrastructure and be able to trace internally everything that happened there. Not gonna happen.

What is more likely is that a fuck up was commited (possibly by the bank) and they are trying to put the blame on someone else.

"Oh it was taken from this website, it's not our fault, you deal with it".

Note that in my Western European country (which I will not name), if there's an internet fuck up the bank is responsible for covering the issue and reimbursing you. Despite well established laws, some always try to ditch their responsibilities. Feels like such a case.

"

Sarno написал:

"

ventiman написал:

lesson learned...less porn

I don't want to be 'the porn guy', but as an atheist I find it amusing that religious websites are actually more dangerous here. Large, profitable companies tend to invest money in making their sites safe so that people keep coming back and watching ads / paying a subscription.

By contrast, religious sites tend to be done by well-meaning but inexperienced volunteers who have little knowledge of web security. Trying to go to the website for my parish using HTTPS results in an NET::ERR_CERT_AUTHORITY_INVALID error. I mean, that's as basic as security gets tbh. :/

A better lesson might be "less theism."

Having worked for several of those large profitable companies I can tell you they no they dont.

They board approves the absolute minimum spending it thinks it can possibly get away with. When the inevitable breach happens they lay down double-talk, innuendo, make many soon to be broken promises and as soon as regulators go elsewhere go back the the same ignorant cheap spending.

Then since you overreacted change your first post shitty title...

The court is adjourned.

Agreed this is something to contact support and not make a thread about it.

"

Simplexity99 написал:

The court is adjourned.

Objection

haha