Account hacked, change your policies please.

[Knutlock]

It really is a such a big shame when people who dedicate so much time and effort to this game gets fucked so hard so fast. Boom and its all gone.I really hope the GMs can change their policy and make exceptions and restore hacked accounts where the player obviously deserves a second chance. Here's for hoping...

[Mimma]

It is implied, since the ToS says that getting hacked is 100% your fault and there's no doubt about it, ALL OF IT is your fault, even if god came down to earth and hacked me it would still be 100% MY fault.

No, it is not implied. Nostalrius does not have the ressources to investigate and return items due to hacking.

Putting you at fault if you fail account security is just giving the responsibility where it belongs: YOU!
Not at Nostalrius, Blizzard, your mom or your school teacher.
Account security isn't that hard, but unfortunately many fails because they keep reusing same account name on the Internet.

[anterozz]

It is implied, since the ToS says that getting hacked is 100% your fault and there's no doubt about it, ALL OF IT is your fault, even if god came down to earth and hacked me it would still be 100% MY fault.

No, it is not implied. Nostalrius does not have the ressources to investigate and return items due to hacking.

Putting you at fault if you fail account security is just giving the responsibility to you. Not Nostalrius, Blizzard, your mom or your little brother.
Account security isn't that hard, but unfortunately many fails because they keep reusing same account name on the Internet.

How do you not get it? It is written in their ToS right now. It is 100% the user's fault at all times, ALL TIMES, that's what it says, so if some accounts get hacked for a legitimate data breach then nothing will be done about it because the ToS SAYS it's 100% MY FAULT, that's how it's WRITTEN.

Blizzard, a multibillion dollar company that spends millions of dollars a year on security gets accounts with authenticators hacked ALL THE TIME, accounts that are stored in gigantic datacenters with some of the best security in the world, yet the Nostalrius staff say that if my Nostalrius account, which happens to be stored in some machine inside someone's closet in a Paris apartment gets hacked then it is 100% my fault and there's no debating that.

[Mimma]

Dude, you need to smoke less weed.

It says NOWHERE that Nostalrius' security is better than Blizzards.
It only says it is YOUR responsibility because Nostalrius does not have ressources to investigate security breaches, and therefore have to give YOU some responsibility as well.

[anterozz]

Dude, you need to smoke less weed.

It says NOWHERE that Nostalrius' security is better than Blizzards.
It only says it is YOUR responsibility because Nostalrius does not have ressources to investigate security breaches, and therefore have to give YOU some responsibility as well.

Welp you still don't get it, you either need some english classes or reading comprehension classes.

[Uzephi]

Blizzard's accounts get hacked all the time, even the ones that have authenticators. It's hilarious how the Nostalrius devs think their security is greater than Blizzard's by saying that getting your account hacked in here is 100% your fault.

Authenticator hacked accounts is still 90% from malware and/or keyloggers. When these accounts get hacked,it is a simple procedure of knowing the auth code, kicking the player off to get a second auth code to remove the authenticator. They then login and get a new authenticator attached to the account. Also if a phone is jailbroken and/or rooted, the authenticator seriail is easily accessible through the data/data directory of the phone. (can only be accessed with superuser rights). There is known root exploits for all types of phones to get temp root access and grab this serial. Again, this is on the USER's side of the spectrum, not Blizzard's. IE you download a playstore app that was "fan made" to maybe show your character's stats or something and it had the malicious code to temp root your phone and grab the serial, and sometimes LOGIN (if you have the armory app, that logs you in and saves your login credentials at a superuser level as well) credentials. That makes it pretty easy to compromise the account.

So, to reiterate, account security is your responsibility and using another company's issues which I have debunked is no longer valid.

If you accidentally entered a shady site and entered your login as the same here, your fault, not a company's. You got a keylogger from entering a questionable site and didn't have a daily malware scan done on your PC. Your fault, not a company's. There is plenty of free malware apps, like Malwarebytes, that have constant updates to their virus/PUP database, so to not have one is quite haphazard.

[Heldunder]

is there even a way to change yourpassword?! i cant find it.

[Diametra]

Whoa man that really sucks. I think many of us are concerned about the security of our toons. It would be devastating to some people to lose their main chars. Unfortunately there is no policy change that could make accounts that weren't connected to an email suddenly verifiable. There's nothing to verify to reclaim your account before they were associated with email accounts. We entered no data, we just started playing random, unassociated accounts. I can't imagine any solid way by which to claim ownership of those pre-email accounts now. Maybe one of you have an idea. Hell, we don't even have a way of changing those passwords now, do we? Because the ingame feature no longer works...right?

Blizzard's accounts get hacked all the time, even the ones that have authenticators. It's hilarious how the Nostalrius devs think their security is greater than Blizzard's by saying that getting your account hacked in here is 100% your fault.

There is no implication that nost staff thinks this is the ideal solution. You've inferred that. This is their current solution.

[anterozz]

Blizzard's accounts get hacked all the time, even the ones that have authenticators. It's hilarious how the Nostalrius devs think their security is greater than Blizzard's by saying that getting your account hacked in here is 100% your fault.

Authenticator hacked accounts is still 90% from malware and/or keyloggers. When these accounts get hacked,it is a simple procedure of knowing the auth code, kicking the player off to get a second auth code to remove the authenticator. They then login and get a new authenticator attached to the account. Also if a phone is jailbroken and/or rooted, the authenticator seriail is easily accessible through the data/data directory of the phone. (can only be accessed with superuser rights). There is known root exploits for all types of phones to get temp root access and grab this serial. Again, this is on the USER's side of the spectrum, not Blizzard's. IE you download a playstore app that was "fan made" to maybe show your character's stats or something and it had the malicious code to temp root your phone and grab the serial, and sometimes LOGIN (if you have the armory app, that logs you in and saves your login credentials at a superuser level as well) credentials. That makes it pretty easy to compromise the account.

So, to reiterate, account security is your responsibility and using another company's issues which I have debunked is no longer valid.

If you accidentally entered a shady site and entered your login as the same here, your fault, not a company's. You got a keylogger from entering a questionable site and didn't have a daily malware scan done on your PC. Your fault, not a company's. There is plenty of free malware apps, like Malwarebytes, that have constant updates to their virus/PUP database, so to not have one is quite haphazard.

You're mentioning that kind of hack. You're not mentioning the one were they actually hacked accounts with 0 malware/virus usage, or the ones where they still were able to login when the physical authenticators were still linked to the accounts. Or how they removed authenticators despite needing the physical serial behind the authenticator.

[Diametra]

Reset password for email verified accounts: https://en.nostalrius.org/password I forgot password feature.

The ingame version of this that used to be available was ths command:
.account password "oldname" "newname" "newname"