Gold Card Announcement The time has come for the venerable Gold Card Security system to be phased out. As mentioned in the 2016 State of the Universe Address, MindArk has been planning for some time to eventually phase out the Gold Card Security system. Support for the Gold Card Security system will officially end on September 30, 2018. MindArk considers account security one of its highest priorities. As such, we are announcing this change well in advance so that Entropia Universe participants have ample time to migrate over to the Entropia Pocket solution before the September 30th deadline. About Entropia Pocket If you have not yet upgraded to Entropia Pocket, now is a good time to do so. Entropia Pocket is available for free for both iOS and Android devices and offers secure Two-Factor Authentication (2FA) system for your Entropia Universe account. Entropia Pocket will generate a unique code every 30 seconds that you can be used to securely log into one's Entropia Universe account, providing optimal security and peace of mind. Security systems similar to Entropia Pocket are used by numerous online banks around the world. We believe that your Entropia Universe account deserves the same state-of-the-art security as your real-world bank so we offer Entropia Pocket to all participants, free of charge! Entropia Pocket is an invaluable companion for every EU adventurer, providing real-time information about system updates, in-game events and news. We also recommend that you accept notifications as we will utilize this system to notify you of important announcements such as Developer Notes and Support information. Read more about Entropia Pocket on the Account Security Pages. Source
So, on September 30, 2018, not installling that app...my account will be unprotected...just like in the old days...yayyyyy, retro. ;D
Fuck really? I fucking well hope not! That would be insane! What if someone got hacked after MA removed the protection? They should at least just freeze the account until the owner signs up to the (likely - prove me wrong?) hackable app. This way we can all vote with our feet.
Seriously, this is fucking insane. Why would you replace a bit of hardware that couldn't be hacked unless someone physically took it and the reader from you, with an android app that can (and will - if it hasn't already) be de-compiled and most likely exploited? By all means I was with them on the, "we will no longer issue, replace or provide support for broken cards/readers", I don't expect them to support a legacy system if they don't want to, but to turn it off altogether?! and expose everyone's accounts to the world with only a password for protection... .... Jesus... way to lose customer confidence! And they want to start a Bank?!! Fuck don't make me laugh. Dick move. Seriously, extremely dick move. Wistrel PS and two factor authentication is about as popular an annoyance as athletes foot.
So how does this app work? Can anyone provide a functional description? The app page says something about using the camera to view a QR code on screen. Is this every time you log in? or just once on install? They don't make it very clear how the app works or why it is secure? First negative points I can see: Most people have their phones on them all the time. Unless they want to keep un-installing the app, the only way to achieve the same level of security as "leaving your gold card at home", this is as unsecure as carrying your gold card around with you all the time. Just as likely if not more likely (as nice phones are desirable) to get it lost or stolen. If it generates one time passwords like the gold card does, presumably these have to be either a) stored on the phone or b) downloaded over the net. A lot more people know how to hack software/data files than hardware. You have to install potential spyware on your phone The app will take up resources on your phone (memory, cpu, battery) You need to keep your phone charged (electricity cost) to use the app. [yes I'm being pernickety but it is still true] Not everyone wants to use a smart phone (honestly I keep thinking of giving up on mine and going back to my trusty Samsung bar phone) Hackers can access the system and look for exploits anonymously without needing access to specialised hardware (gold cards and readers) this opens the playing field up significantly
After the new eula where mindark can steal people without waiting the 3 years they "used to practise" before, now they oblige us to use a programmed application that will certainly be "hacked" so mindark can pretend it is not their fault if your account was stolen.... and no need to wonder who are (and who have always been) those so called hackers. My gold card never had any problems, and that's the SAFEST way to protect my account. Yeah, "mind" ark, the people who think a lot to wonder how they can rip off people even more, to hide their incredible incompetence to release working features. I guess the new hacked players will contribute to help to refund the total fail of the deepBStokens, so why mindark are rushing to destroy the gold card so fast. After the 30 september, let's prepare for the rain of locked accounts... and the numerous players pissed & robbed.
Well, I can relax. I'm at vacation with my Mazda MX-5 I bought from the withdrawal in 2014. Atm I have some $10 in the game. I suggest to sell out as soon as possible to all others.
Well.... I'm going to at least try and "encourage" them not to do it. http://www.planetcalypsoforum.com/f...f-your-Gold-Card-if-you-want-to-keep-using-it!
Wistrel, seriously, after 15 years experiance with MindArk do you really believe a petition would change something? I would more trust in MindArk's main skill: break promises. The announced change will probably never happen.
In 2014 I noticed by checking my account infos, that my birth of date had been modified without my agreement and since I NEVER modified this info, it was 100% CLEAR that it was MindArk. So I did a support case asking them to put my real birth date BACK, like it was when I created my account. I know MindArk's incredible ability to accuse people and pretend they can not/will not do a withdraw because the player did not enter the right infos... Mindark Support was pretending that "Mindark has never changed users details without their consent", which is A BIG LIE, and I proved since people had ALREADY BEEN complaining 3 years before in early 2011 : http://www.planetcalypsoforum.com/f...accounts-accounts-listing-incorect-birthdates Since I was doing this support case in 2014, it is showing that even if MindArk were CAUGHT modifying people's details, they were doing it AGAIN 3 years later, and may be it happened to other players after... Here is the support case I did : So with a programmed application let's get ready for tons of people in trouble, tons of people "hacked" and accounts robbed... BE SURE OF IT. Yes MindArk as you mention it, by playing in this game I have met people who are not following the same ethical codes as me...
The more tech there is, there more ways there are to mess with the tech. Thats what we slowly started to learn by now...but mankind is still filled with greedy dumb fucks. GoldCard Reader is 100% secure, until someone would lure you into a fake client loader and grab your digits. ;p The app is not 100% secure anymore. Many ways (already proven) to, lets say, "interact" with it. Welcome to the future. If its new, it must be good. And hey, it has the world google in it ! :D
The gold card is two factor authentication, too, though ;) I actually don't mind the extra step. My old Dutch bank had a reader resembling a calculator that I needed to use my physical card in to generate a code. My current Dutch bank used to send me a list of pre-printed codes (now substituted for an app). The Danish government implemented a 2-step program as well, which also uses either a pre-printed list of codes, or a physical authenticator. I have something similar linked to my Humble Bundle account, but after my old phone crashing, and my PC following suit, I no longer have access to either the app, or my mailbox to retrieve a transaction ID, so I'm curious how that'll work out. I guess my point is that I'm not against using an app. You would still need to know my username and password for it to be useful at all, even if you did manage to compromise my app, or somehow obtain access to the generated codes. That is, after all, what 2-factor authentication is all about. @Wistrel - Hilarious thread you started. I want in, but refuse to sign up to PCF for it. If I take a picture of my gold card, will you post it on PCF for me?
The app does exactly the same thing as the Gold Card did. The GC is essentially a tiny computer with one dedicated program running on it. The difference is that it frees MindArk from the burden of distributing a piece of hardware.
The app does the same, but it is way more unsecure then a reader without internet connection. MA made some nice little extra income with distributing readers. Neverdieeeeeee
Forget about using app on more than one device... since its 2 factor as it is it can only be on one device. Suggest u keep it on device u dedicated to it like old smartphone or tablet after u upgrade to another so u leave it at home so u aren't risking loosing it if u lose primary cell phone u carry with u.
Nope, not in the slightest. I just like to shit stir ;) Well that and I hope some cool pictures of gold cards will show up. That would be fun. But really anyhow, it isn't about what I think. If it was just me posting sure, I don't think anything will come of it. I don't even think anything will come of other people posting. However some other people might think it will help so I did it for them. Just because I know MA always nerf things, doesn't mean I'm right. Wistrel
Ah ok I didn't know that counted. What I don't like is having to muck around waiting for an email - like every time I sign into humble bundle. This is just an annoyance. It's that sort of 2FA I get irked by.