Jump to content

Latest Visitors

- - - - -

Possible Code Leak

4: Adsense

Our main repo was hacked today and we lost 2gb worth of data. Despite having some security measures in place they were able to get past that and downloaded 2gb worth of data. If they got our games core code or if they just went after some other files we are very unclear. The person knew what they are doing and knew how to clear everything. Either they were a very lucky script kiddie who found some random bug in our backend system or they were very skilled and new exactly what they were doing. In either case this type of thing smacks you in the dick and makes you really think of what you are doing.

I am making this post so that people are aware we have had a serious setback. What i am focused on now is finding out what we can do to stop this in the future, what we can do to safeguard ourselves, and if possible find out what they took and how much. Sorry for the downtime as you guys have been seriously helpful in all you do.

Nov 02 2012 12:14 AM
I hope you are able to prevent further lose.
Nov 02 2012 12:41 AM
Hey bro, long time no see! Yeah, we found out most of the stuff they were going for was not related to our game. So... code is safe, we moved it to a new server protected and locked from the core location. We also will be implementing some ultra tracking and exported logs so... if, and when, this happens again we will know right away.

I found out one hour after they did what they did... but yeah.
Nov 02 2012 01:03 AM
You got a public server for your repo ? You should consider of using encryption software like truecrypt (kept in a container if necessary), then let them steal it and have fun with it :) But be careful, neverever forget your own access data :D
Nov 02 2012 01:44 AM
Wow, thats bad. Are you hosting the repository yourselves? Good luck!
Nov 02 2012 01:44 AM
That sucks! Hopefully they never got anything of value... I wounder who would go after your files?
Nov 02 2012 01:50 AM
We dont have a public repo, and yes we were hosting it on our own web server... which was secure using ssh keys. The problem is I am also the leader of a gaming community and as such... we ban people from our game servers that often get pissed. The ones who know what they are doing often can cause problems. *Shrugs* oh well. For now things seem... okay. If in 3 weeks a new game comes out that looks like ours... lol ill know why.
Nov 02 2012 09:49 AM
Damnit! Your project was looking so sweet!
Well, I hope you can assemble the remaining bits if you have any,
and I hope whoever got your code will suffer from spontaneous data loss! For shame...
Nov 02 2012 10:22 AM
Well, after a days worth of inspections it seems clear. They were not after our data for the game but rather after some very specific data on our game server side. Not sure what at this point or for what reason but... they only were connected for 15 min and downloaded 200mb. This is good news and thus our game production can start back again. We moved all information to a new server which should be 98% secure and we will be doing routine security checks to ensure stability and safe coding! Thanks guys for the support.
Nov 04 2012 07:46 AM
I am glad that nothing for major importance was copied or taken. School and work have pulled me away from game development. The Kickstarter was a up hit to the team a few may not be returning.
Nov 04 2012 12:16 PM
I am sorry to hear that bro, if you need anything you know who you can ask! These things happen so just keep pushing and some day I know you will make that game.

Note: GameDev.net moderates comments.