Age of Conan

Write up here:  www.baltimoresun.com/business/investing/bal-bz.ml.consuming31aug31,0,897152.column

"In a recent demonstration of ISE's findings, analyst Gabe Landau logged into Age of Conan to highlight the vulnerabilities. He showed how sending a routine invitation to visit his player's team Web site using two booby-trapped links to another player could allow him to read confidential files. Data could include anything from passwords to bank account numbers off the other player's computer."

*Edit*

According to Erling Elingson the security holes have been "patched". But, we all know how well FC "patches" things.

You take a risk when you click on random links in any capacity. How is this that different?

Originally posted by Baio2k

You take a risk when you click on random links in any capacity. How is this that different?

Let me guess: You believe that ALL MMOs launch in the same piss poor shape AoC did?

*Edit*

This is VERY different from clicking random links my friend. Funcom has a responsibility to protect their customers private information and the holes shouldn't have been there to begin with. And as I said, it's been "Patched" but how much do you want to bet it opened up 10 other "Holes"?

This is why even when playing games one should always have a good anti-virus program running.

The thing is - there are still MANY of the Antivirus proggies out there atm that DONT WORK with AOC.  Or rather - AOC does not run with them on.  So ppl are not only forced to turn them off - they are TOLD to turn them off by other players AND the Devs.

I can personally tell you that part of my test progress was to check if certain AV programs would work with the game.  I can name you few that did not and are STILL not working with it.

Originally posted by Drakkhen

Write up here:  www.baltimoresun.com/business/investing/bal-bz.ml.consuming31aug31,0,897152.column

 

"In a recent demonstration of ISE's findings, analyst Gabe Landau logged into Age of Conan to highlight the vulnerabilities. He showed how sending a routine invitation to visit his player's team Web site using two booby-trapped links to another player could allow him to read confidential files. Data could include anything from passwords to bank account numbers off the other player's computer."

 

*Edit*

According to Erling Elingson the security holes have been "patched". But, we all know how well FC "patches" things.

Security vulnerabilities in AO and AoC!!  Online Games,  > Online Games and Security 

Afcourse it's bad when it happens, but it's definitly not something unique to AoC or AO, but then I geuss people run out of idea's to find something to atleast be able to bash something they dislike.

---

Originally posted by Reklaw

---

Originally posted by Drakkhen

Write up here:  www.baltimoresun.com/business/investing/bal-bz.ml.consuming31aug31,0,897152.column
 
"In a recent demonstration of ISE's findings, analyst Gabe Landau logged into Age of Conan to highlight the vulnerabilities. He showed how sending a routine invitation to visit his player's team Web site using two booby-trapped links to another player could allow him to read confidential files. Data could include anything from passwords to bank account numbers off the other player's computer."
 
*Edit*
According to Erling Elingson the security holes have been "patched". But, we all know how well FC "patches" things.

---

Security vulnerabilities in AO and AoC!!  Online Games,  > Online Games and Security 

Afcourse it's bad when it happens, but it's definitly not something unique to AoC or AO, but then I geuss people run out of idea's to find something to atleast be able to bash something they dislike.

---

Except the articles you linked to are not really about "security" as much as they are about preventing hacks in the game itself. The issue at hand is that not only were AO and AoC hackable, but they were hackable in such an extreme way that it put the user directly at risk, leaving their personal information exposed and their computer open to attack. There's a very big difference between someone using a teleport hack and someone hacking the game to feed them credit card numbers.

the "this link is a script" idea is soo flawed i am totally shocked some programmer put it.

how can pople be so ***** ??

and a feature that is calling for problems.

LOL at OP and avatar.

why bother, dude?

No different than when it was found that the AO billing systems were on unsecured servers/networks and Funcom denied it for months before finally admitting and fixing them.