WARNING!! NEW Potential POE 2 TRADE HACKERS!! | I Have STOPPED Trading For Now!

Поделиться
HTML-код
  • Опубликовано: 20 янв 2025

Комментарии • 61

  • @mattjesticgaming
    @mattjesticgaming  17 дней назад +5

    Please be careful in the next few days guys!
    P.s. not sure why comments were off, quite strange, its bad on now, I went to sleep right after posting the video and somehow RUclips auto turned off comments

    • @AmerAmer-ti7bp
      @AmerAmer-ti7bp 16 дней назад

      This. Or these peoples RMT. GGG get rid of their div / currency and items or soft ban their account. And they said they have been hack to pretend to be legit.
      We know ggg are tracing any transaction and trade in game and are aware and take action about this.

  • @FFeeLiT
    @FFeeLiT 15 дней назад +11

    Im still in shock that a game in 2025 doesnt have an ingame market for items. This is unbelievable.

  • @cluosion
    @cluosion 17 дней назад +9

    also matt u can set hideout to friends only and trade somewhere else if u want.
    - In your hideout click decorations
    - at bottom there is little arrow dropdown next to hideout options
    - u can set to friends only and lock portals to friends only so people dont jump in randomly

  • @laizerwoolf
    @laizerwoolf 16 дней назад +3

    I think the hack has something to do with a well known poe1 bug, where sometimes people can access other people's character selection screen. If the hacker can exploit the bug in a controlled manner, it would be possible that they bypass login and steam account. And the way they target people is by being invited to a party by their victim, so trading is a big no no. But the good news is that your passwords and logins are probably safe for now.
    Here is an account of the reddit post detailing poe1 bug :
    "just happened to me too. i was switching characters and the character list had someone elses names. i logged in and was able to look into their stash.
    i had to log back to title screen to get back to mine"

  • @Colyers
    @Colyers 17 дней назад +11

    I'm pretty sure this is a variation of session hijacking. I think it's an issue related to the pause game feature. It makes that game session persistent beyond logging out. Hackers don't need your credentials because they've already authenticated to the server on their own. They just need to swap/jump to your session.

    • @mattjesticgaming
      @mattjesticgaming  17 дней назад +1

      i see, yea quite concerning, thanks for sharing buddy!

    • @xlnt2new
      @xlnt2new 16 дней назад

      how do you use a hacked session after it's closed? most people got hacked after logoff.. note that site/game do not share a session, this is easy to check. Session gets invalidated on logoff - at least ALL implementations i've seen in my carrier - of'corpse some one might do it in a VERY stupid way, just so session hijacking IS possible... but i'm willing to bet a small amount of 2-3$ that this has nothing to do with sessions. Paused game != ongoing session/same session id used after restored login.

    • @klingon9292
      @klingon9292 14 дней назад

      Literally can’t jump sessions unless you’re using the same up you will get instant kicked

  • @papaefstathioujohn4972
    @papaefstathioujohn4972 14 дней назад +1

    The game is full of bugs.Me after a trade to another players hideout can not access my hideout .When i try to teleport to my hideout it keep saying (you have been ignored by the target player).After restart several times its the same thing.Its like trying to sent me in another players hideout for some reason

  • @Kendurance
    @Kendurance 17 дней назад +2

    swapping hideouts does not kick people out of the old hideout. My friend was chilling in my old hideout after i swapped.

    • @mattjesticgaming
      @mattjesticgaming  16 дней назад +2

      oh really, so it creates a new one but he stays in the old one? thats really strange!

  • @brandonkramer1983
    @brandonkramer1983 16 дней назад +2

    Instead of writing to every trade request. Just make your tab private instead of public.

  • @mehmetkork15
    @mehmetkork15 13 дней назад

    They could easily hot fix this by adding lock system to both inventory+ stash tabs 1 by1 , Meaning: lock system requires you to set password each stash tab and your whole inventory when you log into the account , you gotta Enter password for each stash tab and for your inventory to unlock to move the items around . Once unlocked it stays unlocked until you log off.
    It's easy to program such a unique system for this game but lack of intelligence and " we don't care" really fugged up many people and keep hurting people , they have to find a solution , something similar to inventory+stash tab lock system or something else as soon as possible . very fu**king easy solution too......

  • @gtarman8d
    @gtarman8d 15 дней назад

    It’s absolutely insane to me to think some online tech crime syndicate is out there buying user information on the dark web to… take your divine orbs on Poe 2?….

  • @kontrollierteschaos4068
    @kontrollierteschaos4068 14 дней назад

    There has to be a reset with the next big patch. The things with those hackers have a good side. It forces GGG to establish an ingame market in Poe1 and Poe2.

  • @littleggggg
    @littleggggg 14 дней назад

    what do ggg server logs say, you cant steal sometihng in a game where ultimate control is in the hands of the people who run the server and control all the data contained within... i'd like to hear what happened to the items and how it was accessed... this is all information that you cant just hide online, it all exists as logged data

  • @phildg4266
    @phildg4266 14 дней назад

    Just to add a data point, I am a victim... Lost everything. Thank you for exposing this!!!!!! You're the best Matt!

    • @LoganLove-t5l
      @LoganLove-t5l 14 дней назад

      Did you rmt or use any 2rd party things overlay or make any 80 div plus trades

  • @Not2Late2WakeUP
    @Not2Late2WakeUP 17 дней назад +3

    Sounds like they are getting peoples IP during the exchange. I really dont like the trade site. It is possible they are stealing session info when the message is sent from the trade site to in game message. If their IP is communicating directly with yours, There has to be a point where IP addresses meet at the same point. I am curious if there are more venerabilities with standalone or steam. I know there is an option in the steam APP called steam networking. it is located Steam App>IN GAME>Steam Networking. The information states "Allow games using steam network to share my IP for a faster connection. I personally have this option on NEVER.

    • @mattjesticgaming
      @mattjesticgaming  16 дней назад +1

      maybe! let me turn that off too thanks buddy!

    • @mattjesticgaming
      @mattjesticgaming  16 дней назад

      thanks for the tip buddy!

    • @Not2Late2WakeUP
      @Not2Late2WakeUP 16 дней назад

      @@mattjesticgaming I only use the trade site in windows sandbox as well. There is really no telling if what they are doing is limited to the browser or if they have the ability to connect via c2. There really is no telling. All I know is they are smart and with a little AI added to the mix it could be devestating.

  • @VaporGearhead
    @VaporGearhead 16 дней назад +1

    Safe on console. Divines still drop as grey, no loot filter, but at least we don’t get hacked 8)

    • @Phntmvoid
      @Phntmvoid 16 дней назад +1

      it can still happen to you

  • @palsoltesz9967
    @palsoltesz9967 10 дней назад +1

    150 divine gone haha.. how tf would u have 150 divine when one falls 1-2weeks cca. with playing 16-18maps most of the time.. fake more. not many has divine orbs, impossible.

  • @cookytrix
    @cookytrix 16 дней назад

    it seems dodgy to me we have to party up to trade. i warped to many ppl hideout and saw all their chests and shit. also half the time i message ppl about trade, i get spam to buy items from websites. totally dodgy and insecure system.

  • @asalistic
    @asalistic 15 дней назад

    trading site now working properly atm i think GGG is cooking something up.

  • @kekqq
    @kekqq 16 дней назад +2

    Thats not how hacking works... this video is scaremongering... just don't reuse your passwords

  • @klingon9292
    @klingon9292 14 дней назад

    lol. Stealing your password in game through trade is just plain lying. This is not how that works. And if it was then it would take alit longer than 4 weeks to figure out the work around to hack encrypted information from a game server where all you have is a token that the login server has given your session. And literally do not ever believe a streamer who says they do not use 3rd party apps. Dudes literally use 3rd party overlays to stream.

  • @Oxid05
    @Oxid05 15 дней назад

    dude, im glad im poor af, the hacker will be disgusted if he see my stash

    • @littleggggg
      @littleggggg 14 дней назад

      They might even leave us something out of pitty... or just see the amount of junk and worthless items i have hoarded into 10+ quad tabs, give up after 5 minutes of digging theres nothing in there.. trust me

  • @alekdanda6329
    @alekdanda6329 15 дней назад

    or devs just removed dupe items wo telling people they have dupe

  • @klingon9292
    @klingon9292 14 дней назад

    Y’all mfers been watching the movie hackers way too much. You know 99% of people that get hacked have rtm accounts and use the same password and email they do their games. So those Chinese hackers aren’t hacking they just use your own creditors against you.

    • @jat1424
      @jat1424 14 дней назад

      This is most likely what happened. SnooBae or any streamer that got hacked is not going to admit to using third party apps/services that break TOS. I have been playing Online games for almost 30 years and the only time I got "hacked" was I stupidly downloaded a maphack for Diablo 2 and it had a keylogger virus that literally just recorded my login info. Anyone getting "hacked" is downloading sketchy shit or visiting sketchy/RMT sites, period. No one is stealing our session id/account info by simply trading with you or standing in your hideout.

  • @IcepointEvo
    @IcepointEvo 13 дней назад

    change your password evertime after trading! it will reset your game session!

  • @xlnt2new
    @xlnt2new 16 дней назад +1

    data breach is not what you guys imagine it to be, don't just talk nonsense - there are idiots who believe it....
    simple password guessing and/or tool assisted login via api requests is most probably what is going on, no sane hacker mafia would ever attempt a data breach on a small game :D
    session hi-jacking is the next thing i would try on a small scale but this is way more complex and there is no proof sessions work with game-pause, GGG might have implemented it in a way that keeps the game pause AND use a new session after you login again. There is clearly no single sign in for PoE and most attacks happened on a session that was closed (; I would say the session hijack is 1% probability - just out of curtesy...
    if you are a streamer and people know your username and that your account has something worth stealing - then change password and use long ones, min 40 char. Noone can save you from stupid passwords. 3DS would be nice but GGG should not be obliged to 'pay' the price to create that just because the players want it - this is a free game still...

    • @laizerwoolf
      @laizerwoolf 16 дней назад

      There is a curious case reported in reddit where the person logged in to a different character(not his own) from his account, it's replicable up to 3 times and it's a known poe1 bug. If the hackers exploit this in a controlled manner, it's a plausible pathway because it bypasses the login screen and straight up targets the other characters. Not to mention steam account and trade website itself is a vulnerability right now.

    • @pouf6463
      @pouf6463 16 дней назад

      Yeah I'm working in a game company and 99% of the theft are phishing/scam , almost always an issue with the end user being to trusting/giving his infos/going to a fraudulent website

    • @hakanhavuzzz
      @hakanhavuzzz 15 дней назад

      None of this explains how u dont get a mail that ur account logged somewhere else, none from steam non from poe2. If it was password guessing they would still trigger the mails. So u are the one kinda talking nonsense :D

    • @pouf6463
      @pouf6463 15 дней назад

      @@hakanhavuzzz Steam should send one if you've a steam guard. But if it's phishing, what's stolen is probably the ggg account and not steam (and I dunno if they send mail for suspicious connection on their side)

    • @pouf6463
      @pouf6463 15 дней назад

      and btw phishing is not password guessing.
      same if they use a facebook/... databreach and try the email/password couple they found there

  • @slattslatt
    @slattslatt 16 дней назад

    Just stay away from unofficial third party applications :)

  • @Retsgonewild
    @Retsgonewild 16 дней назад

    I mean this is an EA server/realm that will be reset on game launch or a new server at least is launched and people will move on, so I would say losing your items sucks but ironically the more it happens to people the more records at least for GGG.

  • @apcrol
    @apcrol 16 дней назад +1

    why do you belive something gonna happen when devs are back? what would be different? some devs are already working, support is answering and they are not returning hacked inventory anyway

  • @therecklessengineer5796
    @therecklessengineer5796 16 дней назад +4

    don't use RMT kids

  • @truckywuckyuwu
    @truckywuckyuwu 13 дней назад

    Did this need to be a 15 minute video?

  • @uhlspetznaz
    @uhlspetznaz 16 дней назад +10

    TLDW: Matt doesn't know what is happening. Dumb people using third party apps shocked that they get hacked. The world is filled with stupid people and bad people that take advantage of that stupidity.

    • @tzdrprm
      @tzdrprm 16 дней назад +3

      3rd party tools has nothing to do with that

    • @magentaurous4025
      @magentaurous4025 16 дней назад +2

      you are just as clueless as him leaving bullshit comments like that.

    • @uhlspetznaz
      @uhlspetznaz 15 дней назад

      @@magentaurous4025 Whatever makes you feel better, sweetheart.

  • @Daniel-t2t4c
    @Daniel-t2t4c 17 дней назад +1

    Thanks bro

    • @mattjesticgaming
      @mattjesticgaming  17 дней назад +1

      np Daniel, best we stay safe for few days until devs are back

  • @Cughin
    @Cughin 16 дней назад +1

    well now im gunna afk in ppl hideouts to freak em out hahaha

  • @Maruzase
    @Maruzase 16 дней назад

    I give you better tip, trade like normal and when you go off or sleep just change password.

  • @Ligh7Bulb
    @Ligh7Bulb 16 дней назад

    Know what’s special about you as a POE creator? You give us access to the wealth 💰 of knowledge found by the Chinese 🇨🇳 community.
    Thank you Matt, honestly 🙏

  • @badgerfat2726
    @badgerfat2726 16 дней назад +2

    'never rmt' in rmt game, nice.