Notification of Plutonium Forum Databreach - September 2021
-
KrKd AxiZ there's none.. it's just that you can set ANY name for bots and for some reason some servers set bots names to the Plutonium staff names
-
Resxt yes because plutonium staff act like bots lmao. Over a year of our data being leaked. Over a year of cheaters constantly running rampant with FREE cheats on this crap. Hell I know ROBLOX game makers in their teens with better security and anticheat than this. You people can’t use the excuse of “free client” either when it’s a whole team of developers working on an project that gets VIEWED and PLAYED by YouTubers with millions of subscribers and viewers, versus some 13 year old with better development and anticheat knowledge than you guys.
-
So lately for the past few months there has been cheaters like crazy and now a data breach?! RIP PLUTONIUM 2022 might wanna find someone who knows how to make a proper anticheat.. just saying but wait i already know how you guys deal with cheaters… it’s always “Report it to the server owner” like what!!!! brilliant but lazy…
-
Most of the users probably have a dynamic IP, meaning IPs got changed (A LOT) for the past year.
If you feel paranoid, change email, password, username and change IP by calling up your ISP or by simply restarting router.
NEVER link your account data and authenticators to your iCloud account, or to any account that can store shit in cloud. That's the #1 thing you should never do in terms of security. You can avoid storing your data on the cloud, or use separate phone that has no access to any accounts (almost as it is airgaped).
As of the apology, I can forgive you, but next time, tell your staff to always report any breaching attempts and successions (and to preferably blur sensitive accounts). -
Mr. Android took yall a whole ass year to figure this out?
-
@rawssh FR
-
bonbon321 Is that why no one can talk in the discord? Because all the channels are muted?
-
SFMPlayz yep lol
-
Mr. Android truly embarrassing that you guys didn't know this information. And wanna know the worst part besides this overall? We still have yet to get a fucking update for bo1 Pluto but I see that's gonna take longer now just cause of this situation that happened. Yall need to be more alert with personal information amongst yourself to keep your client application and your forums safe. Otherwise people would move to a different client if this gets robust and personally I wouldnt want to do that because I think that pluto itself is a but more funner than the steam versions of these games even tho the development of bo1 is still a bit rubbish. Don't let us down again.
-
The matter at hand is unfortunate, but I'm glad they decided to address the issue to the community. Rather, then keep it to themselves. I just hope this doesn't happen again and no staff member decides to make money for themselves with users information. Yes, you can make money selling IP addresses and emails to 3rd parties. Another project called Teknogods had staff members that were doing this and nothing was done about it. Plutonium addressing this issue shows they do care about the community. Security just needs to be better, and not only from outside of plutonium, but within as well.
-
oh well i guess its time for me to play bo2 on the 360 now
-
FaZe Flick said in Notification of Plutonium Forum Databreach - September 2021:
Mr. Android truly embarrassing that you guys didn't know this information. And wanna know the worst part besides this overall? We still have yet to get a fucking update for bo1 Pluto but I see that's gonna take longer now just cause of this situation that happened. Yall need to be more alert with personal information amongst yourself to keep your client application and your forums safe. Otherwise people would move to a different client if this gets robust and personally I wouldnt want to do that because I think that pluto itself is a but more funner than the steam versions of these games even tho the development of bo1 is still a bit rubbish. Don't let us down again.
lil bro is asking for a lot from an unpaid staff team
-
Data breaches happen all the time... what do you think happens when google gets their data breached and millions of user's info gets sold as a result? I get why people are freaking out but at the same time, if somebody really wanted to come hunt you down, they would have done it by now.... Besides, I don't think some random stranger would want to hunt down some random person that plays video games in their freetime.
Not only to top this reply off... but do none of you realize that phone books are still a thing and every person's address is listed in the phone book as well as somebody's email and phone number? I'm not undermining the seriousness of the situation, I'm just simply stating that overworrying doesn't help anyone and giving shit to the staff of Plutonium isn't fair. Anybody can get hacked, that's just the risk you take when you use the internet.
-
chasef7 said in Notification of Plutonium Forum Databreach - September 2021:
FaZe Flick said in Notification of Plutonium Forum Databreach - September 2021:
Mr. Android truly embarrassing that you guys didn't know this information. And wanna know the worst part besides this overall? We still have yet to get a fucking update for bo1 Pluto but I see that's gonna take longer now just cause of this situation that happened. Yall need to be more alert with personal information amongst yourself to keep your client application and your forums safe. Otherwise people would move to a different client if this gets robust and personally I wouldnt want to do that because I think that pluto itself is a but more funner than the steam versions of these games even tho the development of bo1 is still a bit rubbish. Don't let us down again.
lil bro is asking for a lot from an unpaid staff team
Your constant dickriding isn't helping, either. So shut the fuck up and sit down, kiddo.
-
Good project but
-
As a used-to-be supporter of Plutonium, hearing this is unsurprising. I disliked Plutonium staff as most of them tend to be complete jerks. This is also shown in the way you muted every channel leaving modding and support questions to be solved on their own and I bet you you'll pull a Pokimane and filter out specific words or mute people to let this die down instead of answering questions of what actually happens next when it comes to privacy and security. Maybe because you don't even know.
There is absolutely no way that the staff member noticed them trying to breach several sensitive accounts except for their Plutonium backup? How does that even work. You would think that if you are being targeted on not just one account but several, that maybe they'd also go for your Plutonium account. Most of all, how did you notice the exfiltration of the data the first time? I bet that staff member was specifically targeted and they most likely have spoken to their attacker some day. Why would a staff member even need access to so much information when you guys treat them like friends and not workers. Hopefully this is a learning lesson that shows just how little trust there is in business whether the wrongdoings were done on purpose or not. If you guys can't even create a simple filtering system, I wouldn't expect you to take less than half a year to figure this out. Hopefully one day a different client comes about so that a lot of us can switch.
I bet you one of your culty discord followers that loves admins is going to reply with something dumb too.
-
Invenios If an admin doesn't like someone, they can by all means DDoS attack them or leak it out to have anyone go at it.
-
FIamezKiIIer you talk real tough for a bitch boy
-
Daltax Yeah idk why people are only talking about the ip addresses being leaked like, oh no somebody on the internet knows somebody who uses my wifi plays cod on it
-
Sad to hear with the databreach, and i can understand some of the arguments of the people here. However, people going crazy about IP-Adresses. If you are really scared that your IP could be leaked, then you should play Singleplayer. Every Dedicated Server has your IP-Info. If you really beeing that paranoid you shouldn't installed Plutonium.
Thank you for your transparency, a lil late, but better than never.
And no, the Plutonium Dev's not going to DDoS someone, or leaking IP's just by not liking someone. Jesus, what a wild year