exploits
Latest
Final Fantasy XI cracks down on cheating
Square-Enix can get very touchy about certain things with Final Fantasy XI. Revealing the precise numbers and mechanics behind many of the game's elements seems to be one of them that none of the game's fans are terribly pleased with, but they're just as touchy about people cheating in the game, which fans can't help but be happy about. The game's terms of use clearly state that the use of third-party applications interacting with the game is expressly forbidden, and the game has recently dropped the hammer for good on one of the distributors of third-party hacks. The announcement, which can be found on the official site or mirrored on Allakhazam.com, states that the game's team had been monitoring the sale and distribution of certain undisclosed third-party applications, and they had subsequently shut down both the servers for the programs as well as the sellers. The specific applications are not named, as is normal for Final Fantasy XI -- they don't want to encourage anyone to seek out the cheats, after all. The announcement also includes the usual warnings about bannings and account security when connected with third-party cheats. It's always good news when the less scrupled side of a game's community gets shut down -- now if only we could pass some of this along to NCsoft for their recent woes.
CCP Games declares exploit in EVE's new Sovereignty system
CCP Games has made some sweeping changes to how players claim and contest territory in EVE Online, with the recently-launched Dominion expansion. These changes haven't been without issue, however, and a significant problem with the new Sovereignty Blockade Units (SBU) has arisen. SBUs are anchored by attackers at stargates in a solar system belonging to the territory-holding alliance and disrupts the control of the Sovereignty holder, providing opportunities for attackers to usurp the space holding alliance. Issues with the SBUs prompted the devs to declare an exploit over the weekend. EVE's Community Manager CCP Wrangler stated: "An issue has been discovered that makes outposts and infrastructure hubs vulnerable to attacks without the attacker having adequate Sovereignty Blockade Unit (SBU) coverage in the system. Attacking outposts and/or infrastructure hubs without adequate Sovereignty Blockade Units in the system is an exploit and any incidents will be dealt with accordingly. Situations where attackers have the proper SBU coverage are not subject to this rule. The problem is under repairs and will be fixed as soon as possible. We thank you for your understanding and patience in this matter."
Why RMT won't go away
"Companies should just stop gold farmers." It's a consistent complaint in many games, with "gold" replaced by your game's currency of choice. As complaints go, it's right around "somebody should do something about all the problems" in terms of overall utility, but heck, no one likes the practice and it should just be eliminated, right? Well, as Scott Jennings has pointed out recently, it's not quite that easy. As Lum points out, there are several common misconceptions about the entire process. Among them are the idea that the game company doesn't step in because they're getting kickbacks, which is pointed out to fail the simple test of Occam's razor. When developers want to get more money from an existing game, there are usually better ways to run it, such as the Champions Online model or the Dungeons and Dragons Online approach. He also tackles the infamous statement that the farmers are paying customers and therefore the company has even less incentive to stop them. So if everyone hates RMT, why is it still around? The article briefly touches upon it, but We Fly Spitfires had a recent post that articulates more specifically: more people buy gold than would necessarily admit it. Since no one will admit to it, no one ever asks, and as a result there's a large culture of silence that publicly despises it and privately takes part. In short? As long as there's a customer base, the farming will continue. Food for thought all around.
Warhammer Online developer diary on combat with hackers
Hackers, as everyone knows, were scheduled to be the mirror class to Choppas... wait, no, that's not right. We're not talking about one of the classes of Warhammer Online, we're talking about that scourge of the paying and fair-playing populace of every MMO. The most recent developer diary on the game's official site is with John Cox, development manager, discussing some of the ways and means that allows Mythic to fight against the scourge of hacking and try and keep the game on the level. Cox discusses a number of techniques, starting with the most obvious: that several people working on fighting the hacks are part of hacking communities, observing silently and sometimes even testing them internally to develop a response. He also discusses why some of the progress on fighting illegal behavior is a bit slower than the community would like, and why it's not always as possible to shut things down straightaway on the server end. With a discussion of some of the holes in detection, which includes an explanation of why the game briefly had Vista users almost universally flagged as hackers, it's an interesting look behind the scenes at Warhammer Online's efforts to fight the good fight. (That is, the one not involving Order versus Destruction.)
Client bug allows you to swap character models
We've been sitting on this one for a few days now to let people have their fun before we draw a little too much attention to it, but there's a rather interesting bug in the patch 3.2.2 client: you can glitch out the model being loaded for your character upon login, and switch it with that of another character. We don't know how long it's been around or how long it will stay, but watch the video above (which is pretty large, our apologies) for a demonstration. The WoW.com staff has confirmed it works, though the timing required is very precise. You need to be quick, but being too fast hitting one or the other is just as bad as being too slow. A few of us found that we had to slow down our fingers to do it properly, because "fast" to a hardcore FPS gamer is very different than "fast" to a casual MMO gamer. Click first, hit enter second. Not the other way around. Whether this falls into exploit territory or not, we don't really know. What we do know is that the model 'swap' is only visible for you on your client, nobody else sees it, so nobody else should be impacted by it. It's also only graphical, no benefits carry over from one character to the next. You might see your epic iLevel 258 shield on your level 1 rogue, but you won't have the stats. You can't be a Horde draenei to anybody but yourself, so no screwing with people in battlegrounds. You can't be a unique snowflake like an undead paladin to anybody but yourself. It's a whole lot of fun to see what a draenei rogue would look like, or a gnome druid. Check out the gallery below to see what came out of WoW.com's experimentation, and a few from our friends, too. %Gallery-76823%
Second Life designers burned at Burning Life
Remember Kevin Alderman (known in Second Life as Stroker Serpentine), CEO of Eros LLC who is one of the plaintiffs who have filed a lawsuit against Linden Lab for negligence with respect to security and failing to act in accordance with their obligations under the DMCA? Well, it can't be a good week for either him or for the Lab. During Linden Lab's Burning Life event in Second Life this year (a sort of living pop-art showcase and party that draws many spectators) persons only presently known to the server logs left a cache of copied content, including at least one of Alderman's latest products, and a whole swag of other content belonging to other designers – free for the taking. It isn't really Burning Life's fault, but if you had to place the stuff somewhere where many people would take it, none-the-wiser that it was unlawful content, that would be the best place at this time of the year.
The Daily Grind: If presented the opportunity to cheat, would you?
Programming errors occur, we know that. No one's perfect, and game designers are no exception. The wrong buttons are pressed, the design is faulty, or the code just performs functions that no one expected it to perform. (We know how much the latter happens.)Sometimes, however, these things go unnoticed. They stay under the surface of the game for a while, until one person just happens to stumble upon a magical secret -- an exploit. That coding error has now turned into a possible source of major profit or a quick solution to something that was extremely difficult.Today's question is, if you stumbled upon one of these opportunities, would you cheat or would you report it to the developers to fix it? Why would you choose your answer? Drop your opinions into the shiny white box below, and let us hear all of your anecdotes and passionate text speeches.
EVE Online mini expansion Apocrypha 1.5 deploys Thursday, Aug 20th
Tomorrow, EVE Online will launch Apocrypha 1.5, which CCP Games has dubbed a "mini-expansion." The Apocrypha expansion was released in March and introduced a slew of new features to the game, but there were more changes in the works that didn't make it into that first release. The 1.5 changes slated to roll out tomorrow are numerous and will introduce a few new aspects to EVE Online, more than a typical patch would, but cannot be considered a full expansion release either. [UPDATED]: The maintenance window has been extended "due to delays earlier in the deployment process" per CCP. Tranquility is expected to come online at 16:30 GMT (12:30 PM Eastern).Read on for Massively's highlights of what Apocrypha 1.5 will bring.
Patch 3.2.0a being deployed today
You've read that right, there is a new patch that is dropping today, and right now. Patch 3.2.0a. This patch is a small one, yet important one that is fixing a variety of client issues that have been present since Patch 3.2. This is the first time in quite a while that a patch has not dropped on a Tuesday, and that one has come without any prior notice.Of particular note with this patch is fixing of the "dump macros" that were being used by numerous rogues. Ghostcrawler hinted earlier in the day that there would be a fix for this soon, but it's surprising to see it solved so quickly.There are also some graphic fixes in the game that many people should be pleased about. In particular for Mac users.The full announcement, including patch notes, after the break.
EVE Online's anti RMT operation Unholy Rage bans over 6200 accounts
Last week, Massively explained a bit about the war on real money trading (RMT) in EVE Online. The game's developer, CCP Games, has approached the problem from a few different angles. Central to their strategy of combating sellers of the game's currency called ISK (Interstellar Kredits) is to offer another way for players to exchange real world currency for the virtual in EVE Online -- "PLEX", or the 30 Day Pilot License Extension. PLEX is an in-game item that represents gameplay time and can be bought, sold, or traded on the open market in-game. PLEX has been integral in combating the numerous shady ISK selling websites in operation and CCP's dev blog last week showed how the playerbase is starting to embrace this system. After all, if this practice of outright buying in-game assets with real world cash is going to happen in EVE, as with most MMOs (and regardless of what the developers try to do to curb this) it might as well be via a system the devs can regulate. It's a slippery slope, and CCP's approach to the problem does have some critics, but thus far it's been successful. PLEX has only been one facet of their battle against the ISK spammers, sellers, and the virtual armies of macro-using operations, though. CCP's operation "Unholy Rage" is a major offensive against the RMT operations exploiting the game, and is the subject of a dev blog from EVE Online's GM Grimmi.
The Queue: Exploits and dirty cheats
Welcome back to The Queue, WoW.com's daily Q&A column where the WoW.com team answers your questions about the World of Warcraft. Alex Ziebart will be your host today.The video embedded in today's edition of The Queue isn't a silly music video this time around, I'm afraid. No funny business today. Today is for game faces. Today is for serious business. Today is for italic letters. Sashay asked... "I have found a glitch that has caused many people to have their hearts broken. This glitch is the "underground" mining technique that people use so they will not be attacked by enemies. Does this happen because they found a "Under Stormwind" glitch somewhere in Northrend? Maybe they put their toon in the tourney castle before it was built and now they are under everything?"
Dodgy Second Life viewer doing the rounds
We'd like to caution our Second Life readers about a dodgy Second Life viewer that's currently doing the rounds under rather dubious circumstances. The viewer is calling itself Neil Life, and purports to include some content-ripping features over and above those normally available to users. One particular feature of the viewer, apparently related to a permissions exploit, appears to have triggered Linden Lab to perform an emergency update to Second Life to close the exploit last week. The viewer was widely advertised last week with distributed notecard advertisements in-world which purported to have been created by famed resident, Gwyneth Llewelyn. In actual fact, a copy of one of her existing notecards had simply had the text replaced so that it appeared that she had authored it. (This is one of the main reasons we don't generally accept the provenance of notecards in Second Life)
WoW Insider Show live on Ustream this afternoon
Over 200 years ago, our forefathers put forth a document that not only declared the Independence of one of the greatest nations in the world, but also sundered the connection between the old country of Great Britain and the new United States of America. Now, all this time later, Turpster and I do the WoW Insider Show together, and basically undo all that work those smart guys did way back when. This week we'll have an especially good one, as Adam Holisky, Alex Ziebart, and Michael "Belfaire" Sacco are all coming on the show all together. Just in case you thought they were all the same person (some sort of former Blizzard CM/blog posting/contributing editor maniac), we'll prove you wrong.And there'll probably be fireworks as well: we'll be talking about faction changes, the changes to raiding in patch 3.2 (including the extended lockouts and the new universal armor tokens), Blizzard and how they're dealing with raiding exploits, and oh yeah, something called Cataclysm. Plus, we'll answer your emails and chat live with you on the our Ustream page. It all starts off at July 4, 2009 3:30 PM EDTvar date_span = document.getElementById("date"); var date = new Date(date_span.innerHTML); var monthname=new Array("Jan","Feb","Mar","Apr","May","Jun","Jul","Aug", "Sep","Oct","Nov","Dec"); var weekday=new Array("Sunday","Monday","Tuesday","Wednesday","Thursday", "Friday","Saturday"); var year = date.getFullYear(); var day_of_month = date.getDate(); var month = monthname[date.getMonth()]; var day = weekday[date.getDay()]; var hour = date.getHours(); if (hour > 11) { if (hour > 12) {hour -= 12} am_pm = "PM"; } else { am_pm = "AM"; } var minute = date.getMinutes(); if (minute < 10) { minute = "0"+minute; } date_string = day + ", " + month + " " + day_of_month; date_string += " at " + hour + ":" + minute + " " + am_pm; offset = -date.getTimezoneOffset()/60; if (offset >= 0) { offset = "+"+offset; } date_string += " in your time zone (GMT"+offset+")"; date_span.innerHTML = (date_string); . We'll see you there.Oh, and next week, since both Turpster and I will be out of town (for summer vacation, of course), we'll have another special midweek show for those of you who can't tune in on the weekend. Thursday, July 9th at 6pm Eastern, we'll have a live show going on, so mark that on your calendar and we'll see you then as well. Both shows will end up on the iTunes feed as usual, but if you want to tune in and listen live, please do.
The Daily Quest: They really are
We here at WoW.com are on a Daily Quest to bring you interesting, informative and entertaining WoW-related links from around the blogosphere. Grey Matter really dislikes the Moonkin set bonus on the recently unveiled Tier 9 armor. Pink Pigtail Inn has a pretty convincing argument for why "more epics" does not equal "new content." Burnout? With all of the new patch 3.2 information coming down, Pike doesn't know anything about burnout. Rhii of ISheepThings, on the other hand, isn't real happy with the World of Warcraft today. And finally, Sydera over at World of Matticus waxes philosophical about exploits and how Blizzard is punishing them. Click here to submit a link to TDQ
Over 100 Opensim regions wiped in weekend virtualization exploit
Hypergrid Business is reporting that an unknown person or persons destroyed a large number of OpenSim regions over the weekend, by exploiting a weakness in LxLabs' Linux-based HyperVM management software. OpenSim is a popular third-party reverse-engineered implementation of Linden Lab's Second Life server software used in a variety of commercial, non-commercial and educational virtual-environment grids. More than 100 regions are reported lost, along with any data that wasn't backed up off-site. Apparently more than just the simulators were taken down, Web-pages and other ancillary data and files on the affected servers were also lost in the attack. OpenSim regions using virtualization software other than LxLabs' HyperVM were unaffected. The attack hit more than just third-party Second Life compatible grids, however, as more than 100,000 other websites and servers were wiped over the weekend using the software exploit. In the wake of the attacks and massive data-loss, LxLabs' founder, K T Ligesh (32) allegedly committed suicide in his Bangalore home on Monday. Are you a part of the most widely-known collaborative virtual environment or keeping a close eye on it? Massively's Second Life coverage keeps you in the loop.
Kids exploring the Wastelands of FusionFall in ways devs never intended
Cartoon Network has done fairly well for itself with its IP-centric FusionFall. In fact, the words 'wildly successful' may come to mind when you take into account that FusionFall has already gained over 4 million registered users since its January launch. Having a TV network to promote the game is advantageous, of course, but with that many kids running around in the game's world, it was inevitable that some of them would get up to mischief. This topic came up in an interview conducted by MMORPG.com's Carolyn Koh with FusionFall community director Richard Weil. It's interesting to note that some kids are basically testing the limits of the game world by finding ways into the "Wastelands" -- vast in-game areas where the developers test aspects of FusionFall. These players have managed to find holes in the game code and slip into these off-limits areas that were thought hidden and inaccessible to them in the first place.
Player receives Developer item in the mail, one-shots Ulduar
Update April 30th, 2009: Karatechop's account has been closed. Read the full story here. We first received a tip on a mysterious guild that was blowing through Ulduar's hardest achievements one after the other, all in one day, about a day or two ago. Their gear and raid experience stated very well that they were in no position to do any of those achievements, but we sort of shrugged and let it pass by. It was odd that these players were barely in Naxxramas gear, and their first recorded Kel'thuzad kill was only two weeks prior to their explosion of Ulduar achievements, but we initially ignored these reports because surely, nobody could be hacking the game. On top of that, the forum threads submitted to us all had so many posts deleted from them that they were completely incomprehensible. There was nothing solid about any of it. Tips on it are still flooding our mailboxes today and a bit more information has surfaced, so let's look into it a little, shall we? The guild is The Marvel Family of US-Vek'nilash. The character Karatechop is the one that has attracted the most attention, and you'll see why in just a moment. If you look over his gear, it's not that bad, really. Epic tank gear, a lot of it from Naxxramas, so it's feasible that he could make some progress through Ulduar. It gets weird when you go to his Statistics and/or Achievements panels. Let's go to his statistics first.
Guardian talks to Chinese goldsellers and UK buyers
UK paper The Guardian has a look at what life is like at a Chinese goldselling company. It's interesting, but we've basically seen it before -- the small room of young people working almost 24/7 to make and deliver gold in-game, the concerns about worker livelihood and the supposedly large amounts of money going through these businesses (there's one figure quoted of £700m, which is about $980 million, but that's an estimate -- no one really knows how much these companies are making).But what's really interesting about this piece is that it seems to treat goldselling as more of an "opportunity" than anything else. The people running the companies are making money, the employees are getting a roof over their head and a steady paycheck, and even the guy making the film talks about how governments should start taking a cut of this industry. Nowhere is it actually mentioned that Blizzard considers these companies to be against the terms of service, or that many times the gold obtained by these companies isn't earned through simple grinding, but by hacking, keylogging, and exploiting. Even if (emphasis on the if) these companies are making millions of dollars a year, they're stealing accounts and cheating in-game to do it.Rowenna Davis also did interviews with both the gold farmer and a player in the UK buying money from him (bannz0red?), but again, there's no insight at all from the player whose account was hacked and bank was looted, or the player who is able to earn as much gold as they need and have a life outside the game (there are plenty of those to go around). Would have been nice to see the issue from players who aren't actually breaking the game's terms of service.Thanks, Bryn!
CCP Games releases findings on EVE starbase exploit investigation
The EVE Online starbase exploit revealed in December has had a far-reaching impact on the game. Certain player-owned starbases in EVE were producing valuable, high-end materials that they shouldn't have been. Once a group of players picked up on this, they exploited the game on a massive scale, resulting in trillions of ISK (Interstellar Kredits, the game's virtual currency) that never should have existed being injected into the game. To date, this is the largest economic manipulation (via an exploit) ever revealed in EVE Online. The starbase exploit was the first of several player-triggered drama bombs that hit the game in recent weeks, and resulted in a substantial amount of (in-game) market turmoil and player outcry over the issue. The game's subscribers wanted openness on the matter from EVE's developer, CCP Games, and they've certainly got that as of today. CCP Games posted the results of the exploit investigation, and the caveat "be careful what you wish for" may apply here, given the depth and complexity of the findings conveyed to the playerbase in today's dev blog, "War Makes Thieves and Peace Hangs Them."
Guildwatch: Puppies can cause drama, too
This is Xander. You might think he's just a cute puppy, but no -- he's a drama-causing ball of AFK fury. A player in our drama section this week is the proud new owner of Xander, but the puppy caused so much AFK time for him that it rubbed his group the wrong way. Look in his eyes -- you can see he's got the power to split guilds and wipe groups at will!Lots more drama, downed news, and recruiting notices in this week's Guildwatch, which starts right after the break. Unfortunately, that's the only story that's puppy-related, but we've got lots of dead dragons and guild transfers. There's even a Blue appearance this week!
