9 thoughts on “SOE Battles Credit Card Fraud-funded SC; LON

  1. “I and others have suggested what may seem an obvious fix — limiting StationCash Gifting to accounts that are older than 30 days or even setting the threshold to 6 months.”

    I think a cooloff period for the new account makes a lot of sense, as Smokejumper points out though it pushes the fraud onto requiring an account though.

    But why not put a cooldown on the gifting of SC if the payment type has been changed recently for an account? I’m sure it will inconvience a few people, but hardly many, and people can at least work around it. But for plat sellers leaving such a period where their card purchases will be flagged and cancelled should push the vast majority out of business and limit what is left to only freshly hacked accounts, the SC limit then should really make that less profitable.

  2. One more contraversial option though, I wonder how many of these hacked accounts are operated out of China (or remote data centres to prevent the tracking).

    Kind of wonder then if something could be done on the login checks that would immediately flag up if an account is suspicious and perhaps put a pause on SC related activities.

  3. You know honestly SOE has brought it on themselves by turning a micro transaction into a major transaction. It is a ripe picking when you are talking $@0 for a mount or $15 + for a house.

  4. For me the obvious countermeasure would be linking SC gifting to verified cash income at SOE. Giving away SC while the Credit Card Transaction could still be charge-backed is an invitation for scammers.

    SOE should track the net-income an account has generated for them and factor this in when allowing SC transactions. No scammer would put in $100 to be allowed to make a $10 transaction.

    An old account, say 4 years old, could be banned from SC transactions altogether unless some whatever foolproof manual, additional reactivation is been done. After all there was no SC at that time anyway.

    The legitimate customers are financing the fraudulent plus SOEs battle against them by having to pay inflated prices ! If everyone gives up a little bit convenience it might make it much more difficult for scammers, lower the prices and make more money for SOE in the long run. Hap-hazard action like crippling the SC-functionality is hopefully not their only response. They have to re-think the whole SC-concept.

  5. Quote:
    “No scammer would put in $100 to be allowed to make a $10 transaction.”

    Actually, they would if they are using a stolen or otherwise illegally obtained line of credit and it isn’t costing them a dime of their own money.

    “An old account, say 4 years old, could be banned from SC transactions altogether unless some whatever foolproof manual, additional reactivation is been done.”

    The problem is, NOTHING is “foolproof” . . . if it was, Sony (and everyone else involving any kind of anything that involves money) wouldn’t have to do any of this.

    Even the authenticators are not fool-proof. One popular authenticator company itself was hacked. If you can get access to this information, the thieves can. To quote a friend who, in his teen years, got into the wrong crowd and stole some cars (and did some time for it) “If there’s a way for you to start your car, there’s a way for me to start your car.”

    Even if they took away Station Cash and made EVERY transaction “Credit Card Only”, The thieves are still going to get stolen cards and/or numbers, buy the digital items, sell them for plat, then sell the plat for cash. It really DOES lend itself to being the perfect system to launder money . . .

  6. It would seem that SOE implementing a system like Trion’s CoinLock would go a long way towards curtailing this sort of thing. Of course, it doesn’t completely stop it (if your email account is also compromised, then you’re pretty much screwed to the post anyway) but it does put a significant speedbump in the road to using a stolen account.

    For those who aren’t familiar with it, basically the server keeps track of the IP addresses that you login from. If you (or someone else) attempts to login from an unrecognized address, the game “locks” the account so that you cannot buy or sell anything, destroy anything, etc. You’re basically limited to just running around until you enter a special code that’s emailed to the address that’s associated with the account.

    The only real hitch to this kind of system is if you don’t keep your email address updated, or if whoever got access to your account credentials also has access to your email account. In the first case, it would require you contact customer servers. In the second, you’re just in bad shape all around.

  7. Perhaps SOE should require players too register/apply for the ability too gift Items. A check would be done on the account and credit card and if everything looks good the account woud be on a probation period that would allow only say one gifting per month. After a probation period is over the account would be able too gift more and more.

  8. Gifting SC is just asking for trouble in my opinion. Sure it’s a nice idea for those of us that actually want to use it legitimately, but is it really something we need in EQ2? No. Turn it off. Problem solved.

  9. This debate is poorly framed. Here, let’s try again:

    CasualPlayer says “I’d like to use my REAL-DOLLARS to get more FREE TIME or GAME-DOLLARS,” and, at the end of the day, gets those GAME-DOLLARS.
    FreePlayer says “I can’t take credit card payments or I’d happily take your REAL-DOLLARS, of which I have none, but I have a surplus of GAME-DOLLARS and FREE TIME, which I’d like to use to get that shiny GAME-ITEM,” and, at the end of the day, gets that GAME-ITEM.
    SONY says “I have that GAME-ITEM for sale, but I won’t take GAME-DOLLARS, it’s REAL-DOLLARS or NOTHING,” and, at the end of the day, SONY has NOTHING.
    Scammer says “I have LIES,” which are NOTHING, but tastes worse, “and I want REAL-DOLLARS and EVERYTHING.”

    Scammer *deserves* NOTHING

    But Sony already took that.

    So, Scammer uses EVERYTHING and gets REAL-DOLLARS.

Leave a Reply