Mon, Mar 21, 2011 | 00:49 GMT
Trion responds to RIFT security fears
RIFT developer Trion Worlds has been swift to act on recent hacks of user accounts, following assistance from a white hat in exposing serious security flaws.
“Both the login fix and the Coin Lock addition have been doing their part in signficantly reducing overall incidents over the last 18 hours,” Trion’s Scott Hartsman said on the Rift forums.
“Neither one is a silver bullet, but so far it is looking to be a solid one-two punch for the weekend.”
Trion’s continuing efforts including blocking bots and hackers, hiring additional security staff, and developing a two-factor authentication process.
Hartsman also gave a shout-out to ethical hacker ManWitDaPlan, who identified a gaping rift – ha ha – in Trion’s security and brought it to the developer’s attention, who told fansite Zam that Trion’s response was extraordinary.
“The response was insane,” he said. “I wasn’t contacted by some support flunky with no authority to do anything but read from a script, I was on the phone with the development team lead.
“I sent the technical details and got a call back within minutes. Left work to head home, and by the time I got home the server team lead was calling.
“Before I finished eating dinner the exploit was fixed, some extra features were improved, and all of Telara was cursing my name for making them go hunt down an unlock code in their email.”
Furious Fanboys reported a comment from ManWitDaPlan on calls for Trion to reward the hacker.
“For those of you that say ‘give ‘em lifetime accounts’, etc. I don’t want to go into any details aside from saying that this was apparently a pretty big hole and Trion seems very happy with me for some reason. I’ll be around for a while…”