Hey everyone, there were some weird news today in Wartune of a potential security flaw being identified and data migration action started. I didn’t see anything about this from official announcements, perhaps they will post later, but basically you get an event inside the game called ACCOUNT SIGN IN:
Update: this seems to be a R2 – WonderHill specific issue (Thanks Anders).
They added a reward for this because they want all players to do it, which is expected. So after you click on that you get this “scary” screen:
And it is on that screen where it says at the bottom that there has been a security flaw identified and actions were taken to do a data migration.
Once you pass this screen you get the confirmation with a code which can be redeemed for the mentioned rewards. This confirmation also goes to your email used in the previous step.
And finally you get the rewards in the mail:
The interesting and dangerous thing is that with this system anyone who has access to the account (even a temporary helper who was given login/pass) can perhaps fully take over ownership of the account without the original owner knowing about it.
But what is most weird about this whole thing is that, just like the governments, they keep everything secret it seems and do not transparently communicate what has happened, who has perhaps suffered (if anyone) from this flaw in security. So anyways, I hope this post will help to calm any fears by showing the exact process and if anyone else has any additional information on this Wartune security problem feel free to post in the comments.
Matched Links from DolyGames Sites / Google
NOTICE TO SUPPORTERS
Thank you to those Wartune players who are supporting my work, COSMOS Wartune blog and DolyGames gaming portal & the games that I create for people to play for free.
My goal is to reach 300 PATRON SUPPORTERS to help pay my monthly costs. Currently I have 29 Patrons! (Also thanks to Patrons who supported in the past!)
So please consider supporting my work via Patreon and check back for new articles and updates at the COSMOS Wartune blog and/or follow announcements on the Twitter page or Facebook page.
Bad hackers can make “from” email address look like anything they want. If you receive emails from COSMOS/DolyGames asking for your account details or password or money or anything strange – these e-mails are a case of criminal phishing and should be ignored.
Be careful, also for your personal emails, good luck!