allstate jacked the rates on a kid after he went to an amusement park, the rollercoaster was turning hard and dangerously. He tracked it down through data brokers and there's a "G" event on every turn of the track.
Insurance is a total scam industry, no other sector can be so inefficient, in the business of not doing their job and be successful. You know they never used that data to lower premiums, and at the same time sold that faulty data on to other insurers boosting average peoples insurance off the back off some prejudice based association.
They deny claims their contract says they have to cover, get sued over it in court and lose, and then go to congress lobbying for new laws to make insurance companies richer by claiming those lawsuits they lost were fraud.
@@SuperPerry1000 so how do you suppose they were supposed to prevent steam support, a part of a company they do not own or have ANY control over, from being socially engineered into giving the bad actor access to an account which could access their admin panel?
Steam wouldn't let me change my username, so I told them that was my deadname and I'm trans and I got the username changed within minutes. Steam is a joke platform for clowns.
i mean he couldve just hired an experienced hacker to do this for him as a way to get revenge on everyone pointing out that he never actually played the game to begin with so... for legal reasons, this is a joke and is not an explanation for what happened but is in fact bringing humor into this tragic event, i am not defaming elon musk and have no intentions to.
Just remember for our friends watching who are lucky enough to not live in the USA, the AllState thing is worse because car insurance is multiple hundreds of dollars a month and if you're a car owner it's legally required to have it. Yes, our health insurance issues spread to cars long ago.
Depends where in the US you live (Maryland and Texas are 2 states that don't require car insurance), but you are right for the most part. Car insurance is a for-profit industry that is in the business of not doing what they promise, just like health insurance is in the business of letting you die.
it's more of a problem how the laws are. in Germany there is also mandatory car insurance (that if something happens, the other side gets the money, no matter what, you may have to pay it back)
info security or opsec. If someone can walk into your physical network stack on a giant network and immediately know how to start infiltrating data in an undetectable way, you're missing key opsec in your network.
We pretty much get to choose between this sort of vulnerability and what Google does, which is if you get locked out of your account somehow (outdated 2fa), that's it: it's gone. That account is now a black box.
Steam probably was like "You have 30 guesses as to the birthdate set on this Steam account before we can recover it for you. Yes birthdate is all you'll need for us to change the password"
The rather amateurish hacking might get poor reviews but they show that with 20 euro of funds for a llm they are able to do some real damage. Being the victim of that doesn't matter if pro or first timers hach you or even if the malware has duplicate code
I don't see this as an issue. It is clearly stated as early access on the webpage and Steam. And based on the reviews and popularity, there is only one mention worthy "bug" and that is the game hard crashing your PC under Win11 only, so probably just Microsoft being Microsoft again.
PoE and PoE2 share an account system, and there is some value innately bound to those accounts (old MTX that are not for sale anymore like the kiwi pets) and some moveable value that should show up in trade logs (there are people with one of a kind items like race rewards and crafted abominations with legacy mods in standard/thousands of mirrors in their currency tab).
You can't trade items for cash that against TOS and they ban you FAST for it. They also will not return items to accounts what would mean taking the item off the player who bought it off the hacker unknowingly witch isn't fair on them either. And they don't mint new items.
@@TaylorMorgan-y2z Valve can only undo trades that happen within steam's own systems or games that Valve has developed. I doubt that POE is using steam's systems to store account data instead of using their own database.
No, it's not a dangerous precident. If you can be hacked that easy, it's either your fault for being technologically illiterate and unable to be secure or trusted with a computer, or it's the fault of the manufacturer or OS maker. The only dangerous precident is acting like Ai, a tool, is at fault for the failures of others that need to be held accountable. Hacking has been here longer than what we consider Ai today has been by far.
I hate that Steam doesn't support proper 2FA anymore. Best you can get is SMS verification which we all know is ultra secure. (Yes, it has the Steam app as well, but SMS verification overrides that).
What are you even on? Of course Steam supports 2FA, and No it doesn't use SMS 2FA. When you enable Steam Guard on your account it uses the Steam Mobile App for your Steam Guard Codes.
You can remove SMS Authentication, by removing your number. 1. Disable Steam Guard 2. Remove your number 3. Enable Steam Guard but skip adding a number Steam Guard is still overridden by mail, but imo that is more secure than SMS.
thats ur take from this? not that they didn't log password changes and that password changes where even possible (they shouldn't be, most you should be able to do is trigger a password reset)
Steam don't, the games admin panel just lets them edit it freely apparently so make sure to use a unique password for PoE2 since their security very much isn't.
Valve stopped giving a f about their games or steam for a long time. They are just milking it and there was no single Steam update that would fix or improve something, they just add new shit to buy. And don't even let me start about CS2
Yes that is true … but french is a very wide spread second language there and they prefer it over english and even other Arabic dialects due to the long history of french colonialism of their lands
You sure must be fun if you think that's the only reason someone would be upset about losing potentially countless hours or even days worth of time invested into something they were enjoying.
I hope this game company sues Valve. This game is irrevocably destroyed because of Valve's actions. And if they lose, well that's what firearms are for.
I get your point but at end of the Day it was the Game Company that attached a admin account to the game 🤦🏽♂️🤣 like is not like Hacker went I sorry I don't have any of this information and Vavle Support went ahh that's no problem here have the account 🤦🏽♂️🤣🤣 No it wasn't like that , the Hacker got enough information to pass /convince Vavle Support that they where that account holder . So No it isn't really vavles Fault . If the account wasn't linked then all that would of hapoend is the account was hacked they couldn't do anything to the gane if they sill person persons in Game Compnay didn't link the Admin account to the account Game they published on Steam
Insurance companies spy on users' driving habits, get sued in court for fines. Hacker spies on government, goes to jail.
They even monitor your cell phone usage and raise your insurance costs accordingly
Because you can't throw a company in jail. They aren't singular like a hacker is. 😅
Cope
@ImARealHumanPerson But you can put the people in jail who, not only agreed to let it happen, ordered it to happen.
@ImARealHumanPerson So, you think that it was the company doing the spying and not the persons running the company? You're not very bright, are you.
allstate jacked the rates on a kid after he went to an amusement park, the rollercoaster was turning hard and dangerously.
He tracked it down through data brokers and there's a "G" event on every turn of the track.
@@chriscole9621yea but this seems like they didnt ecen opt into these
@@chriscole9621 well it wasn't a choice of letting them track, that's the whole point. no one knew this was happening except the insurance companies
Insurance is a total scam industry, no other sector can be so inefficient, in the business of not doing their job and be successful.
You know they never used that data to lower premiums, and at the same time sold that faulty data on to other insurers boosting average peoples insurance off the back off some prejudice based association.
They deny claims their contract says they have to cover, get sued over it in court and lose, and then go to congress lobbying for new laws to make insurance companies richer by claiming those lawsuits they lost were fraud.
"We totally fucked up here." are words we would like to hear from every company when they fuck up. Big W for GGG.
good on them for that at least but kinda screw ingame economy stuff where it ends up creating real world "value" in ingame stuff.
A "big W" would be not having something this mind-strainingly stupid happen in the first place.
@@SuperPerry1000 admitting u fucked up is the next best thing tho
@@SuperPerry1000 I mean, stuff like this happens everywhere, having steam support as an attack vector is not something u first think off.
@@SuperPerry1000 so how do you suppose they were supposed to prevent steam support, a part of a company they do not own or have ANY control over, from being socially engineered into giving the bad actor access to an account which could access their admin panel?
love how within 19 seconds of you uploading this there's already a bot in the comments lol
Just one?
no this was all a ruse to fool you and make you think i'm not one
@@lorenzo. realer than real
Allstate isn’t the only one stealing data car manufacturers are collecting it and selling to insurance companies
All state "your in good hands" 💀
You're*
I gave up on steam years ago because of poor support. I enjoyed this.
What do you use now?
Steam wouldn't let me change my username, so I told them that was my deadname and I'm trans and I got the username changed within minutes. Steam is a joke platform for clowns.
You know Elon has nothing do with this, because Elon doesn't actually play Path of Exile
I was literally about to comment about Elon 🤣
i mean he couldve just hired an experienced hacker to do this for him as a way to get revenge on everyone pointing out that he never actually played the game to begin with so...
for legal reasons, this is a joke and is not an explanation for what happened but is in fact bringing humor into this tragic event, i am not defaming elon musk and have no intentions to.
Just remember for our friends watching who are lucky enough to not live in the USA, the AllState thing is worse because car insurance is multiple hundreds of dollars a month and if you're a car owner it's legally required to have it. Yes, our health insurance issues spread to cars long ago.
Depends where in the US you live (Maryland and Texas are 2 states that don't require car insurance), but you are right for the most part. Car insurance is a for-profit industry that is in the business of not doing what they promise, just like health insurance is in the business of letting you die.
it's more of a problem how the laws are. in Germany there is also mandatory car insurance (that if something happens, the other side gets the money, no matter what, you may have to pay it back)
info security or opsec. If someone can walk into your physical network stack on a giant network and immediately know how to start infiltrating data in an undetectable way, you're missing key opsec in your network.
Sometimes I'm glad that I don't live in the States.
whats that mark dude's accent?
Ricky Berwick as the driver is crazy work.
Just to clarify trading items in POE2 for real world cash will result in your account being banned.
3:15 that is true ask every technology company
We pretty much get to choose between this sort of vulnerability and what Google does, which is if you get locked out of your account somehow (outdated 2fa), that's it: it's gone. That account is now a black box.
*ALLSTATE exists for all car owners.*
It seems like this ‘FunkSec’ “group” is really one of two people. After reading more about them On CheckPointReserch in this video’s description.
Ah yes, the log retention policy of 30 days, also known as the "oh our cloud platform deletes logs after 30 days realization"
and that's why logs should be copy-on-write
Steam probably was like "You have 30 guesses as to the birthdate set on this Steam account before we can recover it for you. Yes birthdate is all you'll need for us to change the password"
It keeps the scammers going. Thanks Steam.
steam support is a lot better than other support platforms, it was probably not that easy anyway
You can't just hate insurance companies enough.
Agreed. That's why I insure all my vehicles with H&S™ (Hit & Split). It's A LOT cheaper
@@ValuedTeamMember is this a joke or an advertisement
@@newsnetworkchannel49 suppose to be a.... J.O.K.E. But now that you mention it, it could look like that. My bad. Cheeers
now we know how....
2:40 yk shits fucked up when watch dogs 2's intro becomes reality...
That's how Elon managed to get to top 20 😛
Powered by -AI- *skript kiddies*
There, I ruined it
Everyone's the N.S.A these days
The rather amateurish hacking might get poor reviews but they show that with 20 euro of funds for a llm they are able to do some real damage. Being the victim of that doesn't matter if pro or first timers hach you or even if the malware has duplicate code
we should force funksec to rename to skidsec (i know i'm original, funny joke, please laugh now)
When will a nokia trend start ?
..they clearly know what they're worth.. 😆
Hahaha, ransomware developers using ai tools is job security for me.
This is some how Elon's fault
Dev trying to push blame onto Steam, pfft. Nah mate you f'd up not Steam!
Poe2 has not been launched. People are paying to bugtest.
I don't see this as an issue. It is clearly stated as early access on the webpage and Steam.
And based on the reviews and popularity, there is only one mention worthy "bug" and that is the game hard crashing your PC under Win11 only, so probably just Microsoft being Microsoft again.
PoE and PoE2 share an account system, and there is some value innately bound to those accounts (old MTX that are not for sale anymore like the kiwi pets) and some moveable value that should show up in trade logs (there are people with one of a kind items like race rewards and crafted abominations with legacy mods in standard/thousands of mirrors in their currency tab).
5:12 actually the language of algeria is arabic, but french is heavily used because of good ol' colonialism
arabic was also brought through colonialism
@@bennyklabarpan7002 do tell, what was their original language then and since when did they start speaking arabic.
@ Likely something related to the berber or old egyptian. Latin was likely spoken there too. Phonecian through the same colonialism
@@psapple5858we're Berber/Imazighen, Islamic invasions brought Arabic with murder and rape, google is your friend. (I'm moroccan)
You can't trade items for cash that against TOS and they ban you FAST for it.
They also will not return items to accounts what would mean taking the item off the player who bought it off the hacker unknowingly witch isn't fair on them either.
And they don't mint new items.
Valve could easily undo the trades from the other players too. They just don't want to.
@@TaylorMorgan-y2z Valve can only undo trades that happen within steam's own systems or games that Valve has developed. I doubt that POE is using steam's systems to store account data instead of using their own database.
@ @reapimuhs Valve has no control over the POE economy it's all done on GGG severs.
honestly combat in this game is boring and for a game like this having the game to be perma online is just cringey
wow talk about getting roded on a video game that sucks
No, it's not a dangerous precident. If you can be hacked that easy, it's either your fault for being technologically illiterate and unable to be secure or trusted with a computer, or it's the fault of the manufacturer or OS maker.
The only dangerous precident is acting like Ai, a tool, is at fault for the failures of others that need to be held accountable. Hacking has been here longer than what we consider Ai today has been by far.
Steam has always had a history of getting users items stolen or scam and they not giving jack shyt about it.
There's not much they can do, I got a bunch of items stolen once. And once items change hands, you're completely screwed
@@sd1gaming They could undo the theft, repay the victim, improve security. Valve's custom 2FA implementation doesn't seem to work at all.
Steam isn’t gonna be able to give in game item back for a game they don’t develop for lmfao. This is a path of exile problem, not valves.
@@unluckycord3218it doesn't matter if they developed the game or not they do not give items back for any reason.
mark is a terrible liar.
I hate that Steam doesn't support proper 2FA anymore.
Best you can get is SMS verification which we all know is ultra secure.
(Yes, it has the Steam app as well, but SMS verification overrides that).
What are you even on? Of course Steam supports 2FA, and No it doesn't use SMS 2FA.
When you enable Steam Guard on your account it uses the Steam Mobile App for your Steam Guard Codes.
You can remove SMS Authentication, by removing your number.
1. Disable Steam Guard
2. Remove your number
3. Enable Steam Guard but skip adding a number
Steam Guard is still overridden by mail, but imo that is more secure than SMS.
How about you just use a strong password
Does this mean someone can prove Musk is a fraud? 😂
I remember gas buddy… I remember thinking "no thx, lol"
My family use life 360 and kept wanting me to get it and im so glad i didn't get it.
good video
Bro why tf would you link an ADMIN ACCOUNT to steam? Thats the singular dumbest idea ever
thats ur take from this?
not that they didn't log password changes and that password changes where even possible (they shouldn't be, most you should be able to do is trigger a password reset)
How is it that steam shows you your password when you try to reset it? How eactlly do they keep it?
Steam don't, the games admin panel just lets them edit it freely apparently so make sure to use a unique password for PoE2 since their security very much isn't.
Algeria mentioned 🇩🇿🇩🇿🇩🇿🇩🇿
My steam acc was compromised and it was surprisingly easy to get the password easy so I’m not shocked
steam support sucks lol
Valve stopped giving a f about their games or steam for a long time. They are just milking it and there was no single Steam update that would fix or improve something, they just add new shit to buy. And don't even let me start about CS2
December, NOT November was the release date
Horrible logging, hello!
Proviblues IRL 👀
ELLO
i miss my family
Aim better.
AI generated malware has been around ever sense gpt3 get a few 4090's and you wont need gpt to make good malware/ransomware. HAIL AI!!!
no brain
lol
Hello world!
Hello world!
Segmentation fault! (core dumped!)
@@halfsine this is a oh no moment
Algeria language is arabic and berber, not french.
Yes that is true … but french is a very wide spread second language there and they prefer it over english and even other Arabic dialects due to the long history of french colonialism of their lands
@@AhmadHossamMahmoudnot anymore, in these days, it's Arabic/Berber first, English second with Fr*nch being a distant third.
HackerNewsImma1st
Don't take my comments seriously. It's only a meme
Don't let your life revolve around video games and you won't cry when your game gets hacked.
You sure must be fun if you think that's the only reason someone would be upset about losing potentially countless hours or even days worth of time invested into something they were enjoying.
@reapimuhs Shaming language doesn't work on me.
@@MrHathaway1337 Hey man can i have some money? you got a trollface on your pfp surely you must be rich as hell
@@reapimuhslook at pfp, I wouldn't bother with trollface.
I hope this game company sues Valve. This game is irrevocably destroyed because of Valve's actions. And if they lose, well that's what firearms are for.
I get your point but at end of the Day it was the Game Company that attached a admin account to the game 🤦🏽♂️🤣 like is not like Hacker went I sorry I don't have any of this information and Vavle Support went ahh that's no problem here have the account 🤦🏽♂️🤣🤣 No it wasn't like that , the Hacker got enough information to pass /convince Vavle Support that they where that account holder . So No it isn't really vavles Fault . If the account wasn't linked then all that would of hapoend is the account was hacked they couldn't do anything to the gane if they sill person persons in Game Compnay didn't link the Admin account to the account Game they published on Steam
fed
Noice
wild
thank
ChaosEaster39