Forum Settings
       
« Previous 1 2
Reply To Thread

People are losing money when afk at the Summoning BellFollow

QuoteReply
#1 Nov 08 2013 at 2:19 AM Rating: Excellent
__DEL__1621210987875
Sage
**
589 posts
The other day I was scrolling through the market boards trying to find what was currently a good profitable item to sell and saw a Hi Pot (qty one) on sale for 333,333. Strange, I thought: it's probably RMT for gil transfer to a bank character.

There was also a post on the OF of someone swearing they'd logged in and had less gil than when they logged out. Of course this had the usual "lol" responses, but the OP stood fast.

This morning, on my server Facebook page the page owner posted this from Reddit. If true, it's scary reading; we already know about the crafting hacks and there is a lot of speculation on the quality of the code for the game. I really hope this isn't legitimate, but it harms no-one postng it.

FFXIV Reddit wrote:
My friend was afk at the summoning bell while taking a shower. When he came back he was getting insufficient gil errors despite the fact that he has over 3 million gil. Going back to the Summoning Bell he discovered he had bought a Bone Chip for 3 million gil while he was afk.

This wasn't someone in his house because no one in his household plays MMOs and several people in our linkshell suffered the same problem. They all "bought" bonechips for millions.
I've told all of them to submit tickets but this is a very big vulnerability. Be careful spending extended time at the summoning bell.

Edit: This is on Cactuar.


http://www.reddit.com/r/ffxiv/comments/1q5s10/apparently_people_are_losing_gil_at_the_summoning/

Looks like there may be an issue here, the post in the OF below has Screenshots of one of the transactions. This is scary.

http://forum.square-enix.com/ffxiv/threads/116540-Market-board-forced-to-buy-an-item-on-the-board-while-not-at-the-market-board?s=4225f306aeaa03a5d3fbe1f452839b5e&p=1533847&viewfull=1#post1533847

Edited, Nov 8th 2013 3:23am by SolomonGrundy
▲ Page top
QuoteReply
#2 Nov 08 2013 at 2:24 AM Rating: Excellent
__DEL__1669594618462
Sage
*
53 posts
Ah we make the same info xD , yours more clear than mine though. Gonna stay log off for the rest of the day until square fix it
▲ Page top
QuoteReply
#3 Nov 08 2013 at 2:42 AM Rating: Good
__DEL__1611533846233
Scholar
**
322 posts
On the official forums, its being said that its happening even while not at market board, or even summoning bell, for some. Message comes up insufficent funds, at random times. There seems to be a major bug, or rmt have completly hacked the game, its a shame that its becoming so rampant. I can handle the botting to an extent, but this is down right sad if its not a bug.
▲ Page top
QuoteReply
#4 Nov 08 2013 at 2:42 AM Rating: Good
__DEL__1629678339413
Sage
**
424 posts
This looks like the real deal. =(
▲ Page top
QuoteReply
#5 Nov 08 2013 at 2:55 AM Rating: Excellent
__DEL__1642378594228
Guru
*
181 posts
That explains the early maintenance. SE posted a (late notification) message at 12:39am about Emergency Maintenance that was suddenly scheduled to start at 12:15am. For the Market Board hack.
▲ Page top
QuoteReply
#6 Nov 08 2013 at 3:25 AM Rating: Good
__DEL__1701648984210
Scholar
***
3,653 posts
Quote:
There seems to be a major bug, or rmt have completly hacked the game, its a shame that its becoming so rampant. I can handle the botting to an extent, but this is down right sad if its not a bug.


They're basically telling the server that you bought an item from a retainer at a specified price. If you're within a certain range of the board the transaction will go through. If you're not close enough, you'll get the "Not close enough to make purchase" message. If you see the "insufficient gil" message it means they are trying to make a transaction but one of two things has occured:
- You didn't have enough gil in the first place
- You've been cleaned out already and don't have enough gil to make the transaction

Regardless, it's a pretty redundant thing to be discussing now, as it sounds like the fix is going in as we speak.
▲ Page top
QuoteReply
#7 Nov 08 2013 at 3:25 AM Rating: Excellent
__DEL__1621210987875
Sage
**
589 posts
Yeah, at least they've been reactive (the maint is for this problem).

Square Enix wrote:
[Maintenance] Emergency Maintenance (Nov. 8)
We have found a security issue on the Market, and are currently performing an emergency maintenance on Nov. 8, 2013 from 8:15 (GMT)

We apologise for any inconvenience this may cause and for the late notification.

Along with the maintenance, we are stopping World transfer services. Users will not be able to use or transfer to Worlds until the maintenance is completed.

[Date & Time]
Nov. 8, 2013 from 8:15 (GMT)
* The completion time may be subject to change. We will notify you as soon as we find more information.

[Affected Services]
-FINAL FANTASY XIV


http://eu.finalfantasyxiv.com/lodestone/news/detail/3e66a636b94fb862dbf57111463b37e08a92e5d1

This is really embarrassing for them though, I expect to see something on Joystiq/Massively or Kotaku soon.
▲ Page top
QuoteReply
#8 Nov 08 2013 at 3:29 AM Rating: Excellent
__DEL__1669594618462
Sage
*
53 posts
Update on Yoshida reply on reddit:

http://www.reddit.com/r/ffxiv/comments/1q61ch/yoshida_replies_no_server_rollbacks/
▲ Page top
QuoteReply
#9 Nov 08 2013 at 3:33 AM Rating: Decent
FilthMcNasty
Scholar
****
4,175 posts
Sucks for the people affected, but hopefully they'll be able to clean it up. Stuff like this makes me glad I'm too paranoid to save any payment info with these guys Smiley: frown
____________________________
Rinsui wrote:
Only hips + boobs all day and hips + boobs all over my icecream

HaibaneRenmei wrote:
30 bucks is almost free

cocodojo wrote:
Its personal preference and all, but yes we need to educate WoW players that this is OUR game, these are Characters and not Toons. Time to beat that into them one at a time.
▲ Page top
QuoteReply
#10 Nov 08 2013 at 4:11 AM Rating: Good
__DEL__1633306907757
Sage
*
70 posts
Wow that sucks. I hope they really do squash the exploit and everyone is reimbursed their gil. I didn't even look at my gil before logging out last night but I usually have less than 100k at any given time so I'm not too worried for this. I already keep gil stashed on both retainers but it's just to stop myself from overspending. But still, this has got me paranoid. If they could figure out how to make you spend money on the market board without doing a thing, I hope they don't also figure out how to summon your retainer and clean you out that way.

Edited, Nov 8th 2013 5:12am by Thevantis
▲ Page top
QuoteReply
#11 Nov 08 2013 at 4:33 AM Rating: Good
__DEL__1676852310545
Scholar
**
356 posts
Good to hear from Yoshida that there will only be rollbacks for those whose gil was stolen and they are going after those who stole through legal action. Ive only got 50k on me after buying some lvl 50 miner stuff but its good those who were robbed will be reimbursed, cant imagine losing 6 million like some did.

Most importantly, hopefully they figured out exactly how this was done (ive read theories) and fixed it.

Edited, Nov 8th 2013 5:34am by aadrenry
▲ Page top
#12REDACTED, Posted: Nov 08 2013 at 4:45 AM, Rating: Unrated, (Expand Post) The hackers responsible most likely are those hired by World Of Warcraft. Blizzard seems worried.
QuoteReply
#13 Nov 08 2013 at 6:55 AM Rating: Good
__DEL__1650241072629
Scholar
*
72 posts
How shameful. Like another poster said, things like bots and chat/tell spam is one thing, mainly just annoying, but hacks such as this just go too far. I hope these people get flogged or caned in real life.
▲ Page top
QuoteReply
#14 Nov 08 2013 at 7:07 AM Rating: Excellent
Szabo
Darqflame's Peon
ZAM Administrator
****
6,096 posts
http://forum.square-enix.com/ffxiv/threads/116690-Current-security-issue-affecting-the-market-place-and-planned-countermeasures?p=1536024#post1536024

Yoshi-P wrote:

This is Producer/Director Yoshida.

Please note that we will not be posting more detailed information on this issue as this could potentially assist similar fraudulent activities or attacks. Also, there are several posts in this thread and some users could get lost in the text, so we’ve put together a basic explanation on the emergency shutdown below.

Current Status

No. of affected cases: Approximately 200
Prerequisite: Those who were logged in.
Affected Locations: Parts of certain worlds only
Affected Area: Only portions of zones players were in
Only affected those who possessed more than several hundred thousand gil (Excluding gil deposited with retainers)

Only those who fulfill these conditions and have been targeted by fraudulent third parties have been affected.

Review policy: No large-scale roll backs/Each case will be individually addressed by the operations team.


Details on the Emergency World Shutdown

This current emergency maintenance seems to have been confused with the other recent scheduled maintenances. Please accept our apologies for the confusion this may have caused.

Immediately after the escalation of this incident reached me, the operations team proceeded to announce the shutdown procedure as a ‘scheduled emergency maintenance”.

This was going to notify players of the shutdown in advance. However, as this was an external attack, and so much more urgent, we decided that a world shutdown notification in this case could have actually increased the frequency of third party attacks and initiated an emergency world shutdown.

As this is an urgent matter, we will post further announcements on this thread and on the NEWS, and we have prepared an emergency flow. Thank you for your patience and understanding.


Edited, Nov 8th 2013 8:09am by Szabo
▲ Page top
QuoteReply
#15 Nov 08 2013 at 7:41 AM Rating: Excellent
__DEL__1680481127345
View User Forum
Sage
******
21,262 posts
I'm kind of glad I only ninja visited the retainers and the market boards when I needed something.

I always afk in a sanctuary.
▲ Page top
QuoteReply
#16 Nov 08 2013 at 8:06 AM Rating: Decent
__DEL__1618791890723
Scholar
**
320 posts
Honestly I'm surprised this is the only such hack we've seen so wide-spread since the revelation that all clients talk to a server with no authentication whatsoever. If SE continues this stance of playing whack-a-mole, we've only just begun. There are fundamental issues with this game's security model (or lack thereof).
▲ Page top
QuoteReply
#17 Nov 08 2013 at 8:22 AM Rating: Good
__DEL__1621210987875
Sage
**
589 posts
In case anyone that was affected browses here

Square Enix wrote:
[Follow-up] Countermeasures for the Fraud Using Market (Nov. 8): Follow Up
This is a notification about the countermeasures that will be taken for players who were affected by the Market security issue reported from earlier.

For players who were affected, we will notify you through Email Address 1 that is registered on you Square Enix Account after the maintenance have been completed.
After the Email is sent, a Game Master will correspond within the game. Until then, you will be able to play the game as usual. If in any case, our players are logged out when the Game Master corresponds, they will attempt again at a later time.

We apologize for any inconvenience this may cause and thank you for your patience.


http://na.finalfantasyxiv.com/lodestone/news/detail/869cb2527b42914d7a85f4691644ed6710551152
▲ Page top
QuoteReply
#18 Nov 08 2013 at 9:26 AM Rating: Good
__DEL__1634516906898
Sage
**
254 posts
So is this "maintenance" still going on? or is everything back to good?
▲ Page top
QuoteReply
#19 Nov 08 2013 at 10:05 AM Rating: Excellent
__DEL__1691972196123
Sage
****
5,745 posts
I tend to sit inside a menu of some sort while idle, and I noticed that I occasionally see an error message that I can't perform a certain action at the time (because I was in a menu with an NPC). But I know I wasn't trying to do anything when I got that message. I wonder if that was an indication of someone attempting to do that to me at that time.
▲ Page top
QuoteReply
#20 Nov 08 2013 at 11:30 AM Rating: Excellent
__DEL__1677457140542
Guru
***
2,550 posts
Holy Crap. Was this only on Midgard and Cactaur, or are there reports of it happening on other worlds?
▲ Page top
QuoteReply
#21 Nov 08 2013 at 11:41 AM Rating: Good
__DEL__1680481127345
View User Forum
Sage
******
21,262 posts
svlyons wrote:
I tend to sit inside a menu of some sort while idle, and I noticed that I occasionally see an error message that I can't perform a certain action at the time (because I was in a menu with an NPC). But I know I wasn't trying to do anything when I got that message. I wonder if that was an indication of someone attempting to do that to me at that time.


Come to think of it, I saw that error message once when I was fighting stuff in the field. I figured I was spamming the Stone II key too fast.

Curiouser and curiouser.
▲ Page top
QuoteReply
#22 Nov 08 2013 at 11:47 AM Rating: Excellent
__DEL__1677457140542
Guru
***
2,550 posts
On an up note, I am really proud of SE and Yoshi for how they handled this.

http://na.finalfantasyxiv.com/lodestone/news/detail/01985a5bbaf1346955e8e60230057fdd6d4e76ec
▲ Page top
QuoteReply
#23 Nov 08 2013 at 2:04 PM Rating: Decent
__DEL__1680481127345
View User Forum
Sage
******
21,262 posts
I think they're translating the Japanese word for "process" a little strangely, as "flow."

It might just be an idiosyncrasy of Japanese IT that they use their word for "flow" to correspond to the English "process."

So I wonder if they still call business process management notation BPMN? Hmmmm.
▲ Page top
QuoteReply
#24 Nov 08 2013 at 4:31 PM Rating: Good
Warmech
Scholar
***
1,098 posts
The only time my game crashes or the sound goes out because of drivers is at the retainer bell moving lots of 1.0 crystals or standing at the market board. I hope they fix this.
____________________________




[ffxivsig]459049[/ffxivsig]
▲ Page top
QuoteReply
#25 Nov 08 2013 at 4:48 PM Rating: Excellent
klausneck
Guru
**
482 posts
svlyons wrote:
I tend to sit inside a menu of some sort while idle, and I noticed that I occasionally see an error message that I can't perform a certain action at the time (because I was in a menu with an NPC). But I know I wasn't trying to do anything when I got that message. I wonder if that was an indication of someone attempting to do that to me at that time.


The is caused by the 30-min idle timer SE added. If you leave yourself in a menu (retainer, quest chat log, CS book in your inn room, etc), the server is unable to process the "Kick" action. You'll see that message pop-up in your chat log.

Cat wrote:
Come to think of it, I saw that error message once when I was fighting stuff in the field. I figured I was spamming the Stone II key too fast.


Bolded the correct part. You get the "Unable to perform" message when your cool down timer isn't up but attempt to perform an action.
____________________________
Jophiel wrote:
Pack your own lunch and bring nothing but Pixie Stix and Pop Rocks and get your liberty on.
▲ Page top
QuoteReply
#26 Nov 10 2013 at 1:30 PM Rating: Good
Tubrudi
Scholar
**
482 posts
It's stuff like this that makes me glad I am always broke... All the bad stuff seems to happen to people with lots of gil. I think the most gil I have ever had was around 300k...
____________________________
Kuyo - Hume Male - Pandemonium server (Retired)
75 Monk, 75 Samurai
▲ Page top
« Previous 1 2
Reply To Thread

Colors Smileys Quote OriginalQuote Checked Help

 

Recent Visitors: 108 All times are in CST
Anonymous Guests (108)
© 2024 Fanbyte LLC