people should start thinking about their own security by themselves already. who forces you to store your card data? can't you copy-paste account # and enter other attributes? it takes 20 seconds and ensures no one will go on a shopping spree with your money.
gog definitely should fix this issue with auto-login and messed up cookies but users also should take care as well.

NOte this kinda depends though

On steam, while you are able to save your payment method, steam still requires the CCV code when you checkout. This means that even if your account is hijacked, unless the hijackers guesses the CCV they can't buy anything with the account

I havent bought anything on GOG in awhile so I don't know if GOG asks for the CCV on purchases, which would aleviate said concerns

Also why are you using bolded text. If you're concerened people are misinterpreting your intent, don't bold your posts which from a perception perspective looks one step down from all caps.


If I had to guess what the problem is, it's likely similar to the web caching issues Steam had during Christmas

https://store.steampowered.com/news/19852/

They don't, and they should.

So yeah, for the time being it is a good idea to remove any "saved" credit card in your GOG account.

A fair question. But what would I have to gain from staging the whole thing?

I‘m not opposed to a little vice now and then. But to me the art of trolling involves getting a maximum amount of butthurt with a minimum amount of effort. Let‘s just say if I had opened an account several years ago, amassed 43 games on that account in order to make it seem legit only to strike at the right moment and then getting four pages of lukewarm dorama and people lulling themselves into a false sense of "2FA‘ll fix it!"-safety in return, I‘d be pretty depressed right now over the pretty poor yield of lulz.

Now, you can rest easy: I didn't do anything "unethical" with Mr Xiaozhuzhi's account. I didn't access any private information or whatever other info I might have pulled from his account.
amassed 43 games

Looks to me like you had a look,by above statement.

https://www.gog.com/u/Xiaozhuzi

Oh no, I can see the number of games he has! I must have somehow hacked into his account!

Logging out also requires opening a menu that also shows the number of games you have on GOG.

This forum have a codebase update recently.

GOG used to append a single space " " to each line of forum post.
This "feature" was removed about one week ago.

I did not find any other changes yet, just provide a proof that GOG have changed their forum recently.

I bought a game the other day and they did indeed ask for the CCV.

Just to clarify: Was that on GOG.com where you bought the game and had to supply your CCV despite already having saved your card's details with GOG.com?

Yes.

Very good. Thank you!

All lines (except the last) still have an added space. So that appears not to be a true statement.

You too?