Quote:
Originally Posted by Arcana
Many Pokerstars accounts are suddenly being hacked and the number is rapidly growing. Stars continues to deny any possibility of a leak from their end, even though nobody so far has reported anything other than their Pokerstars accounts hacked. Other poker/bank/email/social media accounts have not been hacked.
Those of us who have run anti-malware software have not detected any spyware or keyloggers.
i don't get it why Mr Josem is bashed for posting the graph ... PS doesn't need to, but ppl making claims, like there's some sort of trend, just on the assumption, that their sample size is somehow relevant. if i'm not wrong, there was a similar thread months ago. if back then, a few other victims would have saw this and responded, ppl would have seen a trend too. kinda like believe in some sort of trend, just b/c two other ppl on Facebook share your birthday.
what's also weird is, that ppl in the original thread (internet poker sub forum) claimed, that they run anti malware software and are clean, so it must be a leak/insider job. besides the fact, that running such software basically proofs nothing, i pointed out, that if ppl use the 'remember password'-option and no PIN, an attacker don't need any keylogger (which might trigger virus scanners) to get the pw. i know, that the victims are disappointed, but instead of really focusing on where the leak is and help finding a potential 'new thread', it's all about making bold statements.
no doubt, as a victim i prolly would also claim, that it's so obvious, that the transaction are made by the hacker. but if you see all the transactions, it's might not so clear anymore. so the pattern of the recent hacks, might be fit onto other cases, were everything is 100% legit.
e.g. i know people, who travel a lot and login from different locations. it would be painful for them, if they are on a road trip and have to confirm this with several poker rooms. what about business ppl, who just want to play a quick session while in a hotel room. you might lose the best fish, if you rule out, that any login from a different location is okay.
there're plenty of cases where people change their IPs. there was also one hacking case, where the attacker lived in the same country. how far away is too far way too be suspicious? besides that, if a hacker get's your password, i guess he could (?) disguise his location too. so this idea of making PS safer is not very secure at all, but would rather make the service for players worse.
to be fair, declining the 'deposit from another creditcard than the account holder' (which is btw standard in many businesses) would help in this case, but if a password, he'll find other ways to get the money. besides that, there are many ppl out there, who don't have a credit card and might be need help, for a deposit. so like the idea with the IP, it don#t help much for security, but it's a bad service for customers.
ppl also think, that the insta cash out is a security leak. again, it might helped in this very specific cases, but i remember that ppl always hate, when it comes to delays in terms of cash out. i rarely play, but had at least one occasion, where i made a deposit and needed the money a few hours later. making it more strict, i'm pretty sure the big mass will hate it, which will reduce the fishes, which is not only bad for the poker room, but also the grinders.
so overall, the whole 'make it safer' ideas would only help a small number of ppl, but would make the playing experience for a lot of ppl worse (mostly random fish, who don't want any hassle but just a quick game). since this is the bottom of the food chain, i would think, which is more important.
last but not least is the idea, that PS has to pay the stolen money. that's obviously an option, but imagine you own a business. eg a club and you provide lockers, so patrons can store their things. let's assume some patrons lose their key and the lockers are cleaned out. as a good service, you pay for the stolen stuff. word spreads and the next weekend you prolly have to pay a lot more, b/c surprisingly the crime rate sky rocketed.
the only real option so far, is some 'opt in', if you never change location and/or deposit option. but to be fair, so far it seems the victims didn't neither use PIN, nor SMS verification (which are both free), so i doubt the potential victims would opt in anyway
tl;dr
don't hate the player, hate the game