Thread: Staff Account Security Issues
View Single Post
  #6  
Old 05-11-2016, 08:04 PM
MysticalDragon MysticalDragon is offline
Global Administration
MysticalDragon's Avatar
Join Date: Oct 2002
Location: Lynn Ma
Posts: 883
MysticalDragon is just really niceMysticalDragon is just really nice
Send a message via AIM to MysticalDragon Send a message via MSN to MysticalDragon
Quote:
Originally Posted by ffcmike View Post
Due to recent compromises of Graal's databases there appears to be a strategic effort to gain access to playerworld staff accounts, for example on Classic there has been unauthorised access to two staff accounts in the space of one week (fortunately no RC logins or damage caused).

I would suggest that all playerworlds:
  • Remove inactive (or pointless) staff from RC
  • Remove all but the latest IP range from each staff member
  • Request that all staff change their Graal password and use the client computer lock system
  • Request that all staff change their associated email address password (as it is known that some used this password for their support center account)

(if they haven't already)
Since his information is a little inaccurate, I'll correct the portion that is. Toonslab Support Database leak had nothing to do with accounts being compromised. The Toonslab Registered account list is seperate fromt he player account. However when the database was leaked only the registered accounts (Not the passwords) and the email name used to register the account.
__________________
~Delteria Support
~Playerworld Support
~PWA Chief
http://support.toonslab.com
[email protected]



Reply With Quote