It seems that you're using an outdated browser. Some things may not work as they should (or don't work at all).
We suggest you upgrade newer and better browser like: Chrome, Firefox, Internet Explorer or Opera

×
low rated
avatar
AB2012: Same here, no financial data stored at all. It's also why you enable 2-Step Login and never reuse the same password for your e-mail account as you do other sites.
avatar
Darvond: Too bad that GOG's 2FA is a PITA compared to most others. No proper time authentication protections.
Doesn't 2fa mean when they hack the email account they get access to everything instead?

avatar
InkPanther: Perhaps you could open a new account with a separate card for everyday shopping and keep only a small amount of money on it?
avatar
Lord_Kane: I could but my bank charges for "extraneous" accounts for one person so I do not.
And we are going off topic here, don't worry about me, I get by just fine.
Brilliant banks making security worse. Safety schemes like that should be standard.
There is less and less reasons to use them these days.
Post edited February 09, 2021 by §pectre
low rated
Imma hearing DA SORZ?? Linux portz plzzzz
avatar
Orkhepaj: kids waster their time on things like this, im so sad
who uses twitter btw? you should be ashamed

i still dont get how these servers get hacked , dont they only allow connections from local network only?:O
how hard is that to set up? you just need to limit the ip range and that's all is that a request to prove you wrong?
Hahaha. Again, on subjects to which you are completely ignorant, stay quiet.
I wonder what security loop hole have the hacker used.

But my account should be secured, if there is an failed log in attempt I will change my password tho.
avatar
aCyborg: I wonder what security loop hole have the hacker used.

But my account should be secured, if there is an failed log in attempt I will change my password tho.
Probably had a hex matrix guarding the intranet

55 E9 7A 1C BD BD
E9 7A 1C E9 55 55
E9 55 BD 1C E9 1C
E9 E9 1C 55 E9 BD
7A E9 BD E9 7A 1C
Having people's details out there is a big issue, it's not something that should be seen as anything but a crime, be it weaponized for any level of gain or not.
Attachments:
Post edited February 09, 2021 by Linko64
low rated
Uh oh! That's not good news. Password changed.

From what I read, it seems the attacker stole the source code to Witcher 3 and Cyberpunk as well.
avatar
Darvond: Too bad that GOG's 2FA is a PITA compared to most others. No proper time authentication protections.
avatar
§pectre: Doesn't 2fa mean when they hack the email account they get access to everything instead?

avatar
Lord_Kane: I could but my bank charges for "extraneous" accounts for one person so I do not.
And we are going off topic here, don't worry about me, I get by just fine.
avatar
§pectre: Brilliant banks making security worse. Safety schemes like that should be standard.
There is less and less reasons to use them these days.
Not with a proper implementation. It would imply possession; ignoring the email based method entirely.
Well this sucks after everything over the last few months and now thus CDPR cant get a break. I do hope they can track the person(s) who did this.

Due to GDPR CD Project Red could also be fined for this breach which could amount to a hefty fine.
avatar
Time4Tea: Uh oh! That's not good news. Password changed.

From what I read, it seems the attacker stole the source code to Witcher 3 and Cyberpunk as well.
Source code for Cyberpunk, eh? I'm making a note here: huge success. I guess maybe if he pays CDP they'll take it back. I wouldn't.
Post edited February 09, 2021 by Breja
high rated
avatar
Lord_Kane: we hope that they do, you never know, I don't trust any electronic system enough to ever store my info on there, its just a matter of when, not if a system will get hacked, so I am always ready to challenge any odd charges or changes to personal information, sadly 2020 has reinforced this paranoia.
This. This is coming from someone who works on web services for a living.

Where I live, the Desjardins financial group (almost an institutional player in banking here) go an info leak (the banking info, phone number, SIN... the works, for 4.2 millions users which is roughly half the population of my province). In this incident, the flaw was human, not technical, but you have that to consider as well.

Some big almost institutional players (ex: AWS, Digital Ocean, etc) take security very seriously. Among the small and medium-sized companies, its a total joke (I've been around, in a lot of places I've been, I was either the most or among the most security-minded developers in the place and I'm not a security specialist... security is one, admittedly the most important one, concern among many that I have to take into consideration).

Whatever personal info they require beyond what they strictly need to operate is sheer irresponsibility on their part. If anybody serious wants their data, they will be hard-pressed to keep it secure. Don't assume you'll have privacy or security for most things on the internet. Always make the mental calculus of the worse thing that could happen if the info you give is compromised. I use a credit card online solely because of the insurance... the day someone will use my credit card info illegaly, I'll be reimbursed.

Seriously, the European Union had the right idea when they enacted laws to give end-users more control over their data. The majority of corporations really don't care. They'll take as much info from you as they can, sell it, have it leaked, whatever.
Post edited February 09, 2021 by Magnitus
avatar
Time4Tea: Uh oh! That's not good news. Password changed.

From what I read, it seems the attacker stole the source code to Witcher 3 and Cyberpunk as well.
avatar
Breja: Source code for Cyberpunk, eh? I'm making a note here: huge success. I guess maybe if he pays CDP they'll take it back. I wouldn't.
Lol! I heard the hacker is planning to sue CDPR for wasting their bandwidth ... XD
Now that's punk.
avatar
Lord_Kane: we hope that they do, you never know, I don't trust any electronic system enough to ever store my info on there, its just a matter of when, not if a system will get hacked, so I am always ready to challenge any odd charges or changes to personal information, sadly 2020 has reinforced this paranoia.
avatar
Magnitus: This. This is coming from someone who works on web services for a living.

Where I live, the Desjardins financial group (almost an institutional player in banking here) go an info leak (the banking info, phone number, SIN... the works, for 4.2 millions users which is roughly half the population of my province). In this incident, the flaw was human, not technical, but you have that to consider as well.

Some big almost institutional players (ex: AWS, Digital Ocean, etc) take security very seriously. Among the small and medium-sized companies, its a total joke (I've been around, in a lot of places I've been, I was either the most or among the most security-minded developers in the place and I'm not a security specialist... security is one, admittedly the most important one, concern among many that I have to take into consideration).

Whatever personal info they require beyond what they strictly need to operate is sheer irresponsibility on their part. If anybody serious wants their data, they will be hard-pressed to keep it secure. Don't assume you'll have privacy or security for most things on the internet. Always make the mental calculus of the worse thing that could happen if the info you give is compromised. I use a credit card online solely because of the insurance... the day someone will use my credit card info illegaly, I'll be reimbursed.

Seriously, the European Union had the right idea when they enacted laws to give end-users more control over their data. The majority of corporations really don't care. They'll take as much info from you as they can, sell it, have it leaked, whatever.
Remember the CRA leak and hack? you know who got bitten by that? yup yours truly.
CDPR just can't catch a break.