Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
Another reason to wait for SC release instead backing it now
jcrg99
Member UncommonPosts: 723
This weekend a backer decided to look into the Star Citizen files and found user name/passwords of their internal software, without needing to hack, break any code. It was just there, from what I read from people who said in a reddit, followed by an article on Mittani.
Then, it was leaked info about their internal schedule, an internal wiki and the Squadron 42 first 20 mission names, which by itself were capable to reveal some spoilers.
While it does not sound a problem for who look to that just in an superficial way due the nature of the information that was leaked, it actually implies a HUGE red flag for anyone interest on giving money and their PI to these people.
The situation demonstrates how CIG has been taking care of security measures in general, which could include the needs to protect the customer information. If they are capable to demonstrate such absurd level of incompetence to protect their internal data that should be hidden for monetary/advertising interests, showing a total and ridiculous lack of basic processes to avoid that, is not that difficult to associate that this is the trend with all the remaining data that they hold. If they don't care with information that could damage their marketing plans, just imagine how and with what focus they care or are paying attention to the importance of securing your data.
So, it's not just a good idea to wait for release because only in that time, they finally will have something near of what they promised to accomplish as a game released (maybe), but also to make sure that you will send your data for a company that, possibly only at release, will be ready and capable to manage it, secure it properly, with mature processes of security implemented and working.
If you still decide to give them money, or more money, at least you will do that knowing more and paying attention to all these additional risks now. Ignore the advice at your own risk.
Sources:
http://www.reddit.com/r/starcitizen/comments/2zv55t/release_list/
http://www.themittani.com/news/star-citizen-11-released-cloud-imperium-games-internal-data-hacked
Comments
A list of the titles of the first 20 episodes of Squadron 42 ... *** gasp ***
Earthshaking.
You might want to scroll down a bit in the threads and read a plot summary of Squadron 42, as told by Chris Roberts. So much for the entertainment value of your BIG HACK news.
No where - certainly not on Mittani's website - was ANYTHING mentioned about credit card info being compromised.
Did someone fuck up ? ... seems so. Is someone in danger of being fired for being stupid and sloopy ?... possibly. Was any relevant data (especially financial data) compromised ? ... no.
Have fun
PS:
Cudos to the guy who found the leak. He informed the relevant people about the leak BEFORE he went public with the info. So the effect was minimised. *** deep bow ***
It is hard to sort out the facts from your rant.... but let me try to paraphrase:
They did not secure the client (??)
This in turn revealed some login information for their site(??)
Which in turn revealed an internal schedule, wiki and mission names (??)
Please clarify if what I stated is correct.
As for the rest, it seems to be some random rant without any real relevance to the facts (surmised above). Credit Card and other finance information is not stored on their site, nor is it visible to them directly.
P.S. Why would the third quarter be any different than right now?
http://www.themittani.com/news/star-citizen-11-released-cloud-imperium-games-internal-data-hacked
No... It was not login for their site. Login for thirdy-party tools that they use and are accessed globally by other people, but for what they need such login/pwd to see the CIG information.
Obviously it was not at this case, that customer PI was compromised... But considering such amateurish approach, it's a red flag for sure, which customers interested on give money to this people must to be aware.
If you want to believe that they act in good faith and there is no such thing of "cash grabbing" interest, and all this is rant, maybe is better to come and give any cent for this "honest" but at least, proven as extremely incompetent people, only after release. When they finally have NOT JUST the promised game to show, but ALSO better secure measures implemented in their internal processes, because what happened was pretty much ridiculous for a project of 50 dollars, guess what 80-100+ million dollars.
Their development clearly is disorganized and chaotic (you do not lose a lot of leaders of development almost at the same time, in a project that is doing fine and ok, as they want you believe by those "reports" that are more like advertising than reality). Their advertising was ridiculous and let them all unprotected against lawyers looking for money. As well as their security, probably even more ridiculously managed than all the rest.
People should be aware of this reality, before risking giving their PI and money in the hands of these people. That's my point.
"P.S. Why would the third quarter be any different than right now?"
This game was promised to be fully released by Nov/2014 . Worst case would be 180 days later (for unexpected reasons... unfortunately "more money" never would be faced as acceptable reason in a court of law to justify the delay and deal breaks... and CR made the mistake to repeat that many times, instead saying that all was because some dev mistake that lead to rework or something like that... public record... too late to try to bring other excuses now). It's just a smart play for lawyers to wait for that milestone and wait that they gather more money. For sure, they could jump in the CIG throats right now, because the number of holes and situations of disrespect of customers that they let already is big. But is much better to suit a company with 100 million dollars than a company with 50 or less, aswell as waiting to do that after that date, which will make CIG basically defenseless in any acceptable/reasonable form.
Soooooooo..... you're saying that they leaked a username/password for a third party site where all their planning was being done? Like they already have 20 episodes of Squadron 42 done? I fail to see how that's disorganized or chaotic. It actually sounds like they are, literally, organized. Soooooooo, does this not put to rest the idea that CR is running it all cowboy-style, loosey-goosey?
Show of hands of developers who have had clear-text usernames/passwords in any software you have developed... *raises hand*
Trust me, this has absolutely zero to do with data security. Trust me when I tell you that they are NOT going to be delivering you a game client with your personal information hard coded into it. Of the information that they received, I'm sure the most interesting part was schedules. Anything else would either be datamined or posted to YouTube before I ever made it to the end game anyway, probably before you would, too. Endgame will be posted on YouTube in the span of a week.
As for the rest of your post, I really don't understand it. It's just not coherent, sorry.
Crazkanuk
----------------
Azarelos - 90 Hunter - Emerald
Durnzig - 90 Paladin - Emerald
Demonicron - 90 Death Knight - Emerald Dream - US
Tankinpain - 90 Monk - Azjol-Nerub - US
Brindell - 90 Warrior - Emerald Dream - US
----------------
Ah yes, the infamous Mittani.
-The self proclaimed very successful ex-lawyer -rrrrrright- turned gamer before his career really took off, lives and streams Twitch from a basement.
-The same guy that has people in his game hacking computers/IP of members of his own group because they might leak strategic MMO intel to opponents.
-The same guy that urged thousands of his members to spam a EVE player with a RL depression on his mail to try him to commit suicide.
http://www.engadget.com/2012/03/28/the-mittani-gets-hit-with-ban-and-resigns-in-wake-of-eve-online/
-The same guy that posts propaganda of himself in a WWII Bundeswehr tank showing the Nazi salute.
Picture I will not post because it will obv lead to a ban here lol. Easy to find though on EVE Reddit.
-The same guy that urges members in EVE Online to post Nazi & Holocaust chat spam in order to upset opponents and crash the server when a fight seems to be lost
-The same guy that hosts a EVE Online propaganda newssite that only shows positive news about him and his friends, any mention of negative news a.k.a losses there in that game results in a immediate permanent ban.
He seems like a credible source and a decent guy and a piece of class to trust.
"going into arguments with idiots is a lost cause, it requires you to stoop down to their level and you can't win"
I find all this to be interesting.
there. ok?
So, all those statements to try to imply that because "mittani' reported, no leak actually happened? Not sure if serious or what (the source was in their article by the way).
http://www.reddit.com/r/starcitizen/comments/2zv55t/release_list/
Well it is still something i never like in any game.I used to get extremely frustrated when my FFXI was datamined by other players.
It can be a HUGE factor in ruining the game,especially when comes to AH trading or monetary exchanges in games.It allows players to find things not meant to be found,how is that ever defended,yet some people will try to defend it.
I remember being one of those players that always watched the auction house for something to trade and make profits in.Well one day i noticed a huge spike in a few certain items,i was like wtf,why?Well turns out a week later after new content went live,players that data mined found out what was going to be valuable before anyone else and already have tons to go up on the ah before anyone else.
So YES most certainly,sloppy handling of files is quite often a really bad thing for gaming.Sure it can have a lesser effect in games that don't really do anything,like a straight out pvp game with no other factors,but not like we care about a game with no depth anyhow.
Never forget 3 mile Island and never trust a government official or company spokesman.
So you are saying that a racist hacker player backing RMT player in EVE Online is ' a very trustworthy source'. :P
You MUST be a goon lol.
The stuff he posts is mostly incorrect, GL on the fact that he MIGHT post the truth for once.
I am surprised he didnt oprder you to upvote it all on reddit, as he usually does and got banned for it.
And yes, you can look back at my 'non-sense' on Google, it is all true and based on facts.
"going into arguments with idiots is a lost cause, it requires you to stoop down to their level and you can't win"