Diablo® III

I work for Oracle, and i got hacked


Just let them keep your account, you would be doing yourself a favor.
I am a Communications Industry Solution Specialist working for Oracle with a in Ph.D Information Science and Technology from Syracuse University.

And I got hacked.

Let me preface this by saying I do not use an authenticator, but I shouldn't need to.

I have a randomly generated password that is 17 characters long, that cannot be bruteforced. I run all the games I play in an isolated VMWare environment on my standalone "Gaming" computer which does not even even have an internet browser installed. Each game I play has its own specialized password and every week I generate a new password for each game account.

On top of that, in this extremely controlled environment I have (which I use for my purposes of my job when I remain at home), my network is controlled by a 2975 Cisco Catalyst Series Layer 2 switch. Every port except the one's needed for the specific game are opened and closed at launch time of that respected game. For example Diablo III will open up ports 6112-6119 when I launch the game. All other requests of any nature on any port or attempted on any port are logged and analyzed. Naturally, no intrusions have been detected. I might as well mention for my weekly password changes I spin off an RHEL EC2 instance on AWS and make all my changes with CURL requests that are encrypted with a 128bit RC4 cypher.

The only way I could possibly ever get hacked is if your servers have a vulnerability. Please don't tell me I need an authenticator.

Here are the steps you need to take:
Step 1) get an authenticator

Even after all these steps you took to prevent this from happening, the free authenticator for Smartphones or the 5-6 dollar one you can buy would have prevented all of this. Sorry to say, but get an authenticator.
Edited by MojoRising#1865 on 6/28/2013 12:56 PM PDT
Wow you can literally tell fish not to bite the worm that there's a hook inside and they will bite anyway. LOL

good job!

Because many people will just read the OP and then reply skipping the other replies.
Support Forum Agent
Hi War, although we appreciate you bringing this to our attention, we ask that you refrain from repeatedly reposting older threads throughout various forums.

As ever, if there are any security concerns please let us know and we'll always do our best to assist as soon as possible. Although they are not mandatory, the use of authenticators and SMS protect is encouraged, as they will help protect your account and notify you of any changes made to it.
Edited by Araxom on 6/28/2013 1:43 PM PDT
This topic is locked.

Please report any Code of Conduct violations, including:

Threats of violence. We take these seriously and will alert the proper authorities.

Posts containing personal information about other players. This includes physical addresses, e-mail addresses, phone numbers, and inappropriate photos and/or videos.

Harassing or discriminatory language. This will not be tolerated.

Forums Code of Conduct

Report Post # written by

Explain (256 characters max)
Submit Cancel