Due to recent compromises of Graal's databases there appears to be a strategic effort to gain access to playerworld staff accounts, for example on Classic there has been unauthorised access to two staff accounts in the space of one week (fortunately no RC logins or damage caused).
I would suggest that all playerworlds:
- Remove inactive (or pointless) staff from RC
- Remove all but the latest IP range from each staff member
- Request that all staff change their Graal password and use the client computer lock system
- Request that all staff change their associated email address password (as it is known that some used this password for their support center account)
(if they haven't already)
05-10-2016, 03:23 AM
Staff Account Security Issues
Threaded Mode