Forum Upgrade April 19th – 25th

[wey4lust]

No its a pure fact, 99,99% of losing card info or money in internet is pure idiotism or sending money to nigeria / giving card info directly to scamer/thief by anwsering spam massage with super credit offer.

[Braegan]

Well, paranoid, untrusting, glass half-empty kinda guy - whatever you want to call it. To me, especially since no member of Turbine has stepped up to ease concerns on this as it was raised, removal of all my info is the sensible move to make.

15 min wait time, very quiet 15 mins, 1 min removal time.

[MalkavianX]

No its a pure fact, 99,99% of losing card info or money in internet is pure idiotism or sending money to nigeria / giving card info directly to scamer/thief by anwsering spam massage with super credit offer.

This may be true. However, say a hacker gets in to your game account via the forums. Then he goes into the ddo store and buys 50k turbine points. Just to be a ****. Call your cc company and just try to convince them that it wasn't you that did that. I'm not terribly worried that someone will get my cc #. That's probably safe . But I'd be plenty ****ed off if someone hacked me and charged $1000 worth of tp to my card.

[rimble]

<deleted, meh, don't even wanna talk about it>

[rdasca]

CC#s removed from two accounts, fake e-mail address replaced the real ones, fake name also.

I am ready for the switch, thanks Turbine for the heads up I would really have been put out if you did this without informing us first.

[SisAmethyst]

I bill through Steam so I don't give a ****. But I am annoyed that Turbine has remained silent on people's concerns.

So, when people say "account and CC info are linked," do they mean "if I log in at some location my CC number is plainly visible?" Because, usually, they only show the last four numbers (e.g. ************8888 or "a card with last four numbers 8888"). At least that's how Amazon and Steam do it, I imagine most other places too.

Is there really some location where your CC info can be found, in plain text?

To answer your last question: yes, usually inside of the database the CC information is available in plain text, independent if this data is obscured when it is shown in your web browser. Otherwise they couldn't bill you as your bank will most likely not accept *** as a valid number. In other words if someone manage to get direct access to the account system, you could most likely directly query those information.

[Qezuzu]

In other words if someone manage to get direct access to the account system, you could most likely directly query those information.

If someone did actually get into that database then it would not be because they were able to pull log-in info from vBulletin.

So, from what I'm still seeing, there is still no method to get CC info from a forum login. Unless Turbine is so pants-on-head stupid that they would have forum log-in and CC info in the same database the vBulletin uses, instead of making a system where forum log-in info is pulled from the game database and nothing else.

[SisAmethyst]

No its a pure fact, 99,99% of losing card info or money in internet is pure idiotism or sending money to nigeria / giving card info directly to scamer/thief by anwsering spam massage with super credit offer.

I don't want to sound negative, but I am not sure this number is even close to the reality. Especially with all the cross-site scripting vulnerabilities that popping out everywhere, because nearly every web page uses some kind of active content. Actually it was quite shocking to see on a developer conference I participated about a year ago, how easy someone accessed a web page in a different browser tab via this technique.

Also several statistics like Credit Card Fraud Statistics even not count "giving card information to a non-legit telemarketer" as a fraud and those numbers are rising!

[SisAmethyst]

If someone did actually get into that database then it would not be because they were able to pull log-in info from vBulletin.

So, from what I'm still seeing, there is still no method to get CC info from a forum login. Unless Turbine is so pants-on-head stupid that they would have forum log-in and CC info in the same database the vBulletin uses, instead of making a system where forum log-in info is pulled from the game database and nothing else.

Dunno, maybe I got that wrong but with the changes:

Forum login = Account login = login on Account system

But that isn't even the point anymore! It's not my point to scream doom1!!!11!! But why do you have to defend this system and why not Turbine stand up against and post exactly a statement like you did? Do they lack so much confident in their own security that other users have to spread confidence instead? There was nothing officially mentioned that would give at least a hint of confidence, and this is what irks and saden me.

[Memnir]

So, from what I'm still seeing, there is still no method to get CC info from a forum login.

Today, no.
Tomorrow, it'll all be one and the same login - everything all connected together at the hip. Get one password - you'll have both. Along with everything else.

[Hendrik]

The next time Turbine reconsiders something because of the player base being adamantly against it will be the first time.

False.

Offer Wall.

[Qezuzu]

But that isn't even the point anymore! It's not my point to scream doom1!!!11!! But why do you have to defend this system and why not Turbine stand up against and post exactly a statement like you did?

I do think it's stupid and I do think they should be communicating more on people's concerns, but I also think people are overreacting.

Today, no. I mean after the change
Tomorrow, it'll all be one and the same login - everything all connected together at the hip. Get one password - you'll have both. Along with everything else.

The point is: is it currently possible to retrieve your CC info with your game log-in info?

[Qezuzu]

False.

Offer Wall.

Cannith Crafting using Raid Loot, also.

[Maxallu]

How, adding a coin slot onto my laptop?

[Hendrik]

Well, on the bright side, with so many people quitting (but not really quitting) DDO over this, it will help with lag.

Hmm, maybe for some fun in the new forums, we should jot down all those that are either quitting DDO or the Forums and remind them that they quit when they start to post again.

[Charononus]

Well, on the bright side, with so many people quitting (but not really quitting) DDO over this, it will help with lag.

Hmm, maybe for some fun in the new forums, we should jot down all those that are either quitting DDO or the Forums and remind them that they quit when they start to post again.

That just it, we're not quiting, were removing cc information from turbine, that means we'll still be playing but not paying. We'll still be sucking up bandwidth.

[Hendrik]

I bill through Steam so I don't give a ****. But I am annoyed that Turbine has remained silent on people's concerns.

So, when people say "account and CC info are linked," do they mean "if I log in at some location my CC number is plainly visible?" Because, usually, they only show the last four numbers (e.g. ************8888 or "a card with last four numbers 8888"). At least that's how Amazon and Steam do it, I imagine most other places too.

Is there really some location where your CC info can be found, in plain text?

No.

[Autolycus]

I agree that this is a very bad move Turbine.

I had been taking a break from the game due to my displeasure with some changes Turbine had made and had just decided to check back in a couple of weeks ago. Fortunately, I stumbled across a thread complaining about this proposed change. Knowing that the powers that be would most likely ignore our concerns, I phoned and had them remove my CC info. I also made it a point of telling the service representative why.

For some reason, this situation reminded me of this.

[Aussir]

Dear Turbine,

You can keep my CC, it's being deactivated because I switched banks.

Only thing you'll get from me now is Paypal (since they don't give me poo over not having zip-code or street name) and all Paypal is getting is a Pre-paid card anyway.

So go ahead and keep on using this pile of steaming poo called vBulletin when there's way better out there and keep making us vulnerable to hacking.

But then again, we all know WB is trying to kill-off DDO with waves to stupidity, the latest ones being this change and the enhancement pass.

Toddles

[GermanicusMaximus]

It is rather sad to see some people trying to make the case that this is not a problem. All anyone needs to do is Google "credit card hack" and see what pops up.