This is how it's done in many other MMORPGs. At least I can confirm, that's the way it works in Silkroad Online (old MMO from 2005). There's a SQL table which contains all GM IP addresses and if your IP doesn't match then you won't get access. I'm working on a private server of Silkroad Online and also added a 2-factor-authentication for extra security (for normal and GM accounts). You could also make a HWID check so you can access the account only from specific computers. @Wolfszeit I'm a developer myself and I agree with you, that developing a MMORPG is pretty damn hard (especially for a small team like SV) and bugs, exploits and security vulnerabilities will always occur. I don't blame SV because these things happen, it's more about the way they handle it. It took hours before they even made an official statement in their discord (not only in this case, but this is always when something happens), their communication and transparency is underwhelming which personally pisses me off since it's not hard to write a 1-line-statement like "There is a problem, we're working on it". Just inform your players that you are actually AWARE of the problem. Instead they try to clean the picture channel and behave like there was no hack, which is pathetic imho. There are many things about MO2 that annoy me, like the general game stability. Many basic features such as transferring items into bags and/or chest and splitting them are still not working (and we're over a year out of beta already) and I feel like they should invest WAY MORE time into getting things stable instead of rushing for new content. On the other hand I agree with you again, MO2 is such a nice game and the vision is awesome. I haven't had so much fun in a MMORPG for over 15 years and I wish them all the best and fuck those DDoSing b*tches.
I've been playing MO2 for about a month now. My bet is that someone is making a point. The game NEEDS A FULL WIPE. What would have happened if the person pretended they didn't have GM access? The hackers POINT is OBVIOUSLY that the game if FULLY COMPROMISED. How many "hackers" have used GM access for an advantage? How many "cheaters" have in game wealth from DUPING? How many have wealth from GM GENERATED stuff?? Seriously, the point is CLEAR. The game NEEDS A PROMISED WIPE. How can nobody read between the lines?!?! You mentioned the DDOS attacks might be from a competitor. TAKE OFF YOUR ROSE COLORED GLASSES. Nobody is trying to steal MO2's pitiful (in MMO numbers) customer base. Any game that competes as a full-loot sandbox MMORPG is going to simply MAKE A BETTER GAME. Not "try" to sabotage Star Vault. SV fails the "smell test" for most customers all on their own.
A lot of good game devs out there start small and eventually become bigger and bigger, making a lot of mistakes along the way. MO2 is still a work in progress, Henrik is not charging us any subs so far (what is very fair) and as he mentioned in his last stream we gotta relax and take it easy. I hope that some big changes will come in the future, like hiring more devs, because the game really needs some! of course we could wait 10 years for the game to be in a more playable state, but I guess most of the already old playerbase won't be able to stick for that long (what is sad). events like this only show that henrik cannot place his trust in a small team only (maybe that was his intention so far) because it doesn't change a thing. there need to be more people working on the code, even if it means that there are possibilities of abuse. but without trust there cannot be growth. we all love this game and I'm sure with a successful epic store release the playerbase will grow a lot bigger. so please put more people to work on the code starvault, in case you read this! ♡ we all want to play and enjoy this awesome world that is Nave
Apparently the nightmare guild are in contact with the hacker, I don't know for sure if the hacker is a guild member, a friend or even someone they hired, but I know multiple person saw them teleport threw wall couple of hours before gm account got compromised.
They don't even have a 2 factor authentication option that almost all games now are starting to offer. They at least need to have 2 factor on the GMs accounts at least.
1:40 "...some men aren't looking for anything logical, like money. They can't be bought, bullied, reasoned, or negotiated with. Some men just want to watch the world burn." - Alfred, The Dark Knight (2008)
Purely Starvaults fault in terms of poor security/management, You've been there since MortalOnline 1 so you should know and already seen this. The exact same problems are repeating itself, Henrik and SV has learnt nothing.
Unfortunately there will always be someone to take advantage of any weak spots in your security. Whoever you choose to blame, it doesn't change the result; and that is that the game was damaged. Can you prevent people from being assholes? No. But you can and should take the appropriate security measures. Of course, there is no 100% guarantee you can defend against everything, but it's a matter of resource allocation. How much time/money do you want to spend in securing your stuff? It's your investment vs the attacker's investment.
If other huge companies like blizzard can't handle DDoS attacks then it's bound to be an issue for SV. the gm account hack is crazy though but spawning some mobs isnt as bad as it could've been.
Think it has something to do with Jonah Veil. Last week when the servers went down for the weekend, after it came back up, I witnessed on his stream his character was deleted and remade with the name "DDOSLOL" or something like that. I think he's been targeted by some hacker following him around to whichever game he plays, including Gloria Victis I believe. Also FYI, the hacker also made a fraudulent charge on his credit card, so payment information has also been compromised. Make sure you protect your info.
All this sucks. Im not experienced in game development so i dont know if we should blame SV or the hacker/ddoser but i know for sure we have to blabe SV for absolute lack of communication on this and even other things. Only responding in discord general chat isnt providing info on whats goin on.
You said it is common with hacked GM accounts, it isn't. SV REALLY have to consider their security practices because they must be absolute garbage. I wonder if this is how jonah got his character deleted too... And yes this is some massive oversight or actual some incompetence for this to happen somehow. I know what you said, "build a MMO before talking" and first I wanna say that this is a really bad argument because then almost noone have any rights to criticize how they handled this and furthermore I have worked on a big commercial one if that really makes a difference to you. DDoS can happen and there really isn't much you can do to prepare for that but getting GMs hacked with full power to ban people and spawn creatures? Give me a break.
@@sirluisray1974 It's just an analogy the point is SV can and now will do a better job of protecting their game. You seem a little angry did you eat a bad taco, mi amigo.
I appreciate your content so I hope you understand I say this with respect. This does not happen all the time in other mmos. If it did you would see massive drama all the time surrounding such an issue. I understand you are upset, but it doesn’t take an expert in cybersecurity to understand that this is messed up. -Star Vault didn’t even have 2 factor authentication, an incredibly common security measure.- Edit: Don’t get me wrong. I’m not “victim blaming” or saying that the people doing it shouldn’t be punished. I am saying Star Vault should at least use basic common sense and establish proven and common security protocols.
@@wiegraffolles9822 so, do you listened that said section? if yes, you should be aware that this is just autor's thoughts and on practice he dont know and he even mentioned that, so - it does not says nothing about real situation at all. i heavily doubt the reason is THAT stupid as the only method to log in the game is through steam and in steam even i have 2 factor auth, and if you look at MO2 site FAQ where they answer at "why steam" - "protection against intrusion" will be one of reasons. 2 factor auth is a strong way to secure accounts BUT this is not panacea and ways to bypass any lvl of security is always will be. anything can be real for sure but i think the reason is way more complicated
@@garother9173 I must have misunderstood, so my apologies for that. However, that by itself does not invalidate the point I am making. Whether or not it was two-factor authentication, it is clear that they made a mistake. When communicating with people on TH-cam, it is more important to convey the main idea than to be completely factually correct on every aspect. You have focused solely on the two-factor authentication part, without addressing the main point. The main point is that Star Vault is experiencing too many problems, even for an indie MMO. Ignoring the situation does not benefit anyone. It doesn't take an expert to see that Star Vault has made mistakes. This is not a sophisticated attack; it involves only one GM's account and a DDoS. I mean Christ, Henrik's account has been hacked before. Any competent gaming company should not be so easily vulnerable. I hear more drama about this game than the top played mmos. This is not the first time they have faced this type of drama, and I'd be astonished if it was the last.
@@WolfszeitYT I don’t even have the game lmao I simply know the devs and and GMs mass ban anyone they don’t like and anyone who does that doesn’t deserve to be supported in any way.
@@WolfszeitYT thats an outright lie and you know it. The devs literally play the game and ban clans they fight against. They did it in the first game and they continued doing it in this one. Not to mention they delete every post and comment on steam or the discord that even remotely talks bad about the game. Literally every negative review says the exact same thing. That's not a coincidence you're head is simply hollow.
@@KingSnake420 when you are employed by a company why would you destroy your own job. sry but what you claim here makes not much sense. Why would star vault ruin their own game and their income. That makes no sense
Ya Taners account was “hacked” , he totally didn’t give the password away for the sake of RMTing all the stolen items and gold or nothing 😂 POV : you’re a conspiracy theorist , but could possibly be correct 😢
I know you don't like the person who did this but if their security is so bad then its the fault of the developers. Just imagine if they didn't do it to a GM account and they hacked peoples accounts and stole stuff. How long till SV would have found the exploit or even handled it. Instead this may eventually get us 2 factor auth and a proper way to secure our accounts.
Dude, "Don't criticize unless you built an MMO" is an invalid argument. The least that they should do is have 2FA enabled for access to their work PCs which should be the only ones from where they would log into the game. Barring a MITM attack, that should be enough to secure their account well enough to avoid embarrassments like these. Other than that, standard SV quality.
why is everyones depiction of someone cheating "lonely and in a basement". most of the people who devote their life to this game are actually the ones lonely and are in basements 9 times out of 10.
![The Wall Song ร้องข้ามกำแพง | EP.202 | ตั้ม วราวุธ / เบสท์ คำสิงห์ | 18 ก.ค. 67 [1/5]](http://i.ytimg.com/vi/cwIoA7XHqnE/mqdefault.jpg)
GM's should have a whitelisted IP. If the IP doesnt match, they dont have GM Powers, That is what I would do.
Literally
This is how it's done in many other MMORPGs. At least I can confirm, that's the way it works in Silkroad Online (old MMO from 2005). There's a SQL table which contains all GM IP addresses and if your IP doesn't match then you won't get access. I'm working on a private server of Silkroad Online and also added a 2-factor-authentication for extra security (for normal and GM accounts). You could also make a HWID check so you can access the account only from specific computers.
@Wolfszeit I'm a developer myself and I agree with you, that developing a MMORPG is pretty damn hard (especially for a small team like SV) and bugs, exploits and security vulnerabilities will always occur. I don't blame SV because these things happen, it's more about the way they handle it. It took hours before they even made an official statement in their discord (not only in this case, but this is always when something happens), their communication and transparency is underwhelming which personally pisses me off since it's not hard to write a 1-line-statement like "There is a problem, we're working on it". Just inform your players that you are actually AWARE of the problem. Instead they try to clean the picture channel and behave like there was no hack, which is pathetic imho.
There are many things about MO2 that annoy me, like the general game stability. Many basic features such as transferring items into bags and/or chest and splitting them are still not working (and we're over a year out of beta already) and I feel like they should invest WAY MORE time into getting things stable instead of rushing for new content. On the other hand I agree with you again, MO2 is such a nice game and the vision is awesome. I haven't had so much fun in a MMORPG for over 15 years and I wish them all the best and fuck those DDoSing b*tches.
@@johnicemilk4066 yes, I'm aware, I have implemented this on a few games as well. I am also a long time developer
As a new player, I love your content - guides, news, updates. It's great - thanks!
Henrik's official response "🎶Take it easy for there is nothing that we can do 🎶"
thank you for taking time to talk about it, it's very concerning and need to be discuss and not let them just brush it under the rug
I think these people can do whatever they want with little resistance. One can only hope they get bored and move on.
I get one weekend off a month from my minimum wage job and I can't even play the game. I'm malding hard right now.
I've been playing MO2 for about a month now. My bet is that someone is making a point. The game NEEDS A FULL WIPE.
What would have happened if the person pretended they didn't have GM access? The hackers POINT is OBVIOUSLY that the game if FULLY COMPROMISED.
How many "hackers" have used GM access for an advantage? How many "cheaters" have in game wealth from DUPING? How many have wealth from GM GENERATED stuff??
Seriously, the point is CLEAR. The game NEEDS A PROMISED WIPE. How can nobody read between the lines?!?!
You mentioned the DDOS attacks might be from a competitor. TAKE OFF YOUR ROSE COLORED GLASSES. Nobody is trying to steal MO2's pitiful (in MMO numbers) customer base.
Any game that competes as a full-loot sandbox MMORPG is going to simply MAKE A BETTER GAME. Not "try" to sabotage Star Vault. SV fails the "smell test" for most customers all on their own.
A lot of good game devs out there start small and eventually become bigger and bigger, making a lot of mistakes along the way. MO2 is still a work in progress, Henrik is not charging us any subs so far (what is very fair) and as he mentioned in his last stream we gotta relax and take it easy. I hope that some big changes will come in the future, like hiring more devs, because the game really needs some! of course we could wait 10 years for the game to be in a more playable state, but I guess most of the already old playerbase won't be able to stick for that long (what is sad). events like this only show that henrik cannot place his trust in a small team only (maybe that was his intention so far) because it doesn't change a thing. there need to be more people working on the code, even if it means that there are possibilities of abuse. but without trust there cannot be growth. we all love this game and I'm sure with a successful epic store release the playerbase will grow a lot bigger. so please put more people to work on the code starvault, in case you read this! ♡ we all want to play and enjoy this awesome world that is Nave
Now this guy is relentlessly DDOS attacking the server and nothing is stopping him.
Apparently the nightmare guild are in contact with the hacker, I don't know for sure if the hacker is a guild member, a friend or even someone they hired, but I know multiple person saw them teleport threw wall couple of hours before gm account got compromised.
They don't even have a 2 factor authentication option that almost all games now are starting to offer. They at least need to have 2 factor on the GMs accounts at least.
1:40 "...some men aren't looking for anything logical, like money. They can't be bought, bullied, reasoned, or negotiated with. Some men just want to watch the world burn." - Alfred, The Dark Knight (2008)
Oh man... it's almost like SV doesnt know how to handle this. If only they didn't blacklist their content creators like myself maybe I'd offer help
You were blacklisted? That's tragic I loved your content
@@moldiworp9143 I made one video discussing the exploits and they HATE me now. Won't even respond to my discord. Very petty
@@BasedBellagio no twitch drops for you
Blacklist WTF
@BasedBellagio I was wondering why your content stopped when you were so passionate about this game.
Purely Starvaults fault in terms of poor security/management, You've been there since MortalOnline 1 so you should know and already seen this.
The exact same problems are repeating itself, Henrik and SV has learnt nothing.
Hmmm what if they got a authenticator?
still am pissed SV had my info leaked in 2018, now this ?
Sad times, glad they caught it before it was made worse. I want the game to do well, I wish it didn’t attract the attention of loser hackers/cheaters
Unfortunately there will always be someone to take advantage of any weak spots in your security. Whoever you choose to blame, it doesn't change the result; and that is that the game was damaged. Can you prevent people from being assholes? No. But you can and should take the appropriate security measures. Of course, there is no 100% guarantee you can defend against everything, but it's a matter of resource allocation. How much time/money do you want to spend in securing your stuff? It's your investment vs the attacker's investment.
It's probably someone who got banned and came for revenge
If other huge companies like blizzard can't handle DDoS attacks then it's bound to be an issue for SV. the gm account hack is crazy though but spawning some mobs isnt as bad as it could've been.
Unfortunately a handful of rich players were targeted and had their banks drained.
This reminds me of what happened back in 2012 with MO1
yes exactly
Think it has something to do with Jonah Veil. Last week when the servers went down for the weekend, after it came back up, I witnessed on his stream his character was deleted and remade with the name "DDOSLOL" or something like that. I think he's been targeted by some hacker following him around to whichever game he plays, including Gloria Victis I believe.
Also FYI, the hacker also made a fraudulent charge on his credit card, so payment information has also been compromised. Make sure you protect your info.
Instakilla is back?
All this sucks. Im not experienced in game development so i dont know if we should blame SV or the hacker/ddoser but i know for sure we have to blabe SV for absolute lack of communication on this and even other things. Only responding in discord general chat isnt providing info on whats goin on.
its an inside hack
You said it is common with hacked GM accounts, it isn't. SV REALLY have to consider their security practices because they must be absolute garbage. I wonder if this is how jonah got his character deleted too... And yes this is some massive oversight or actual some incompetence for this to happen somehow. I know what you said, "build a MMO before talking" and first I wanna say that this is a really bad argument because then almost noone have any rights to criticize how they handled this and furthermore I have worked on a big commercial one if that really makes a difference to you.
DDoS can happen and there really isn't much you can do to prepare for that but getting GMs hacked with full power to ban people and spawn creatures? Give me a break.
It's Star Vaults fault that someone hacked them? It's only the fault of the hacker responsible for the actual act, not the victim's.
You leave your door unlocked and then blame the thief for robbing you. You are partly responsible to the people who suffer because of your ignorance.
@@jeffdumpster1470 LOl Some one hacked it meaning they broke in. meaning it was not open. Comparing it to leaving a door open is dumb as fuck.
@@sirluisray1974 It's just an analogy the point is SV can and now will do a better job of protecting their game.
You seem a little angry did you eat a bad taco, mi amigo.
@@jeffdumpster1470 Angry? You are projecting their bud. Is a bad analogy. If you want to say they should get a better bigger door then just say that.
@@sirluisray1974 there* I know proper English must be hard for you with all that spicy food giving you gas. 🌶
Good old cdxx at it again .
are you truckcar in mortal online 2 i swear you sound exactly like him
I appreciate your content so I hope you understand I say this with respect. This does not happen all the time in other mmos. If it did you would see massive drama all the time surrounding such an issue.
I understand you are upset, but it doesn’t take an expert in cybersecurity to understand that this is messed up. -Star Vault didn’t even have 2 factor authentication, an incredibly common security measure.-
Edit: Don’t get me wrong. I’m not “victim blaming” or saying that the people doing it shouldn’t be punished. I am saying Star Vault should at least use basic common sense and establish proven and common security protocols.
lol im curious why you decided star vault didnt even have 2 factor auth
@@garother9173 Theres a whole section of this video that made it sound like they don’t have it. Do you say stuff without thinking often?
@@wiegraffolles9822 Anyone starting a sentence with lol probably isn't know for their thinking skills.
@@wiegraffolles9822 so, do you listened that said section? if yes, you should be aware that this is just autor's thoughts and on practice he dont know and he even mentioned that, so - it does not says nothing about real situation at all.
i heavily doubt the reason is THAT stupid as the only method to log in the game is through steam and in steam even i have 2 factor auth, and if you look at MO2 site FAQ where they answer at "why steam" - "protection against intrusion" will be one of reasons. 2 factor auth is a strong way to secure accounts BUT this is not panacea and ways to bypass any lvl of security is always will be. anything can be real for sure but i think the reason is way more complicated
@@garother9173 I must have misunderstood, so my apologies for that. However, that by itself does not invalidate the point I am making. Whether or not it was two-factor authentication, it is clear that they made a mistake. When communicating with people on TH-cam, it is more important to convey the main idea than to be completely factually correct on every aspect. You have focused solely on the two-factor authentication part, without addressing the main point.
The main point is that Star Vault is experiencing too many problems, even for an indie MMO. Ignoring the situation does not benefit anyone. It doesn't take an expert to see that Star Vault has made mistakes. This is not a sophisticated attack; it involves only one GM's account and a DDoS. I mean Christ, Henrik's account has been hacked before. Any competent gaming company should not be so easily vulnerable. I hear more drama about this game than the top played mmos. This is not the first time they have faced this type of drama, and I'd be astonished if it was the last.
I find it hilarious and sincerely hope it keeps happening. Mortal online 2 and the devs deserve whatever comes there way.
Oh that sound salty what happened?
@@WolfszeitYT I don’t even have the game lmao I simply know the devs and and GMs mass ban anyone they don’t like and anyone who does that doesn’t deserve to be supported in any way.
@@KingSnake420 Never heard of unfair ban they only ban for harassment or cheating or exploiting
@@WolfszeitYT thats an outright lie and you know it. The devs literally play the game and ban clans they fight against. They did it in the first game and they continued doing it in this one. Not to mention they delete every post and comment on steam or the discord that even remotely talks bad about the game. Literally every negative review says the exact same thing. That's not a coincidence you're head is simply hollow.
@@KingSnake420 when you are employed by a company why would you destroy your own job. sry but what you claim here makes not much sense. Why would star vault ruin their own game and their income. That makes no sense
sounds like a disgruntled ex employee to me
this game can not just get a break
2 option, frustrated gm let himself to be hacked because of cash, or some chinese frustrated gold duper get banned so he takes revenge on them
Relax, Take it eaaaasay, for there nothing that we can do, relax.
Ya Taners account was “hacked” , he totally didn’t give the password away for the sake of RMTing all the stolen items and gold or nothing 😂
POV : you’re a conspiracy theorist , but could possibly be correct 😢
If you're trying to log in and getting user not found that means the hacker deleted your character 🤣
Not true, happened to me too but later I was on with my character without a loss.
Supposedly some shit bird has been following Jonah veil and ddosing every game he plays. I want to be clear. THIS IS NOT JONAH ATTACKING THE SERVER!
Jonah brought this cancer to the game he should be removed asap
@@NigyaLaylah I don't like Jonah but he has a right to play just like any of us.
Yes ALL HAIL ULFRIC. WE STORMCLOACKS Rein free. MOrTAL ONLIne 2 IS OUR GAME MUHAHAHA
I would sue the shit out of this guy that did thos
i would say MO2 deserve that
I know you don't like the person who did this but if their security is so bad then its the fault of the developers. Just imagine if they didn't do it to a GM account and they hacked peoples accounts and stole stuff. How long till SV would have found the exploit or even handled it. Instead this may eventually get us 2 factor auth and a proper way to secure our accounts.
This is just a snap shot of the total damage done many player accounts have been hacked and banned. Items have been created and deleted.
@@jeffdumpster1470 I agree but it's sad SV needs to be hacked at such a scale for them to do anything.
As i see the only way to log-in in MO2 is through steam. Steam already have 2 factor auth, and sufficient level of security in general, isnt?
Thank you for defending SV I defend then to tons of people bc i love SV and mortal they are great company and dev team
must be nice to be so clueless do you live the rest of your life in denial to
You love a company you never met before? Stockholm Syndrome Much?
Dude, "Don't criticize unless you built an MMO" is an invalid argument. The least that they should do is have 2FA enabled for access to their work PCs which should be the only ones from where they would log into the game. Barring a MITM attack, that should be enough to secure their account well enough to avoid embarrassments like these.
Other than that, standard SV quality.
Scam game get owned again mo2 noobs
🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂🤣😂
why is everyones depiction of someone cheating "lonely and in a basement". most of the people who devote their life to this game are actually the ones lonely and are in basements 9 times out of 10.
projecting all nerds do it
@@NigyaLaylah wig splid