Rift devs get help from a hacker and plug security flaws

Rift - warlock zap

Since launch, Trion World's new MMO, Rift, has been under constant attack from hackers trying to steal accounts. Trion Worlds have been fighting back against the attacks with the help of a benevolent hacker who spotted a huge security flaw in Rift's system, and contacted the developers to help them fix the problem. Trion Worlds have since launched a "one-two punch" of security updates over the weekend to help protect player accounts.

The hacker goes by the name ManWitDaPlan, and refers to himself as a "white hat", an ethical hacker whose day job involves running a security firm that works to secure and destroy sensitive data. His Rift account was hacked in March, so when he spotted a loophole in the Rift servers that would allow a malicious user to access someone else's account without needing their user name and password, he got in touch with Trion straight away. Five minutes later, he was talking to Rift lead developer Steve Chamberlain, and the engineering team was working on a fix for the problem.

"Trion hit this like Jackie Chan channeling Bruce Lee," said ManWitDaPlan, speaking to ZAM , "which is what you do when you find an exploit. No playing the blame game, no whining, just find and fix and slam the door on the hackers."

Rift executive producer Scott Hartsman posted on the Rift forums on Saturday to thank the helpful hacker, "We'd definitely like to thank Mr. ManWitDaPlan for the well-timed assist. Sir, we salute you and offer our most heartfelt thanks." It's rumoured that ManWitDaPlan received a lifetime subscription to Rift for his troubles. All he would say is "Trion seems very happy with me for some reason. I'll be around for a while…"

In the Saturday forum post, Hartsman also outlined a few new security measures for Rift, saying that, so far, hacks have affected about 1% of the Rift community. Trion Worlds are hiring more staff to combat the ongoing attacks.

"Both the login fix and the Coin Lock addition have been doing their part in signficantly reducing overall incidents over the last 18 hours." says Hartsman, adding that "neither one is a silver bullet, but so far it is looking to be a solid one-two punch." Meanwhile he encourages players to make sure their email passwords and Rift passwords are different, saying that attacks are likely to continue. "This will remain something that we will continue keeping an eye on, forever."

Tom Senior

Part of the UK team, Tom was with PC Gamer at the very beginning of the website's launch—first as a news writer, and then as online editor until his departure in 2020. His specialties are strategy games, action RPGs, hack ‘n slash games, digital card games… basically anything that he can fit on a hard drive. His final boss form is Deckard Cain.

Latest in MMO
Blue Protocol players dancing minutes before the game closes forever
What will we do at the end of the world? If MMOs are any indication: mostly what we already do, plus a lot of dancing
Several tight-wearing superheroes surge towards the camera in a heroic fashion in City of Heroes.
One year later, City of Heroes' officially recognized fan server has me praying it's the future of dead MMOs
Several adventurers in World of Warcraft Classic's hardcore server crying over the death of a fallen comrade.
Blizzard plans to revive WoW Classic Hardcore characters 'at our sole discretion', after DDOS attack puts major streamer guild OnlyFangs in the ground
A forester from Old School Runescape, contemplating life next to his pheasant friend on a green field.
You can finally try out Old School RuneScape’s first new skill in nearly two decades right now
Ghoul in sunglasses
After years of playing as stupid, boring humans in Fallout, you can finally channel your inner Walton Goggins and become a ghoul in Fallout 76
WoW Classic: Season of Discovery
World of Warcraft Classic’s Season of Discovery may be teasing a legendary weapon that players have speculated is in the game for two decades
Latest in News
Lara Croft Unified Art
Tomb Raider developer Crystal Dynamics lays off 17 employees 'to better align our current business needs and the studio's future success'
A long bendy arm stealing money from people in a subway car
'You're a very long arm. You steal things. It's a comedy game,' explains developer of comedy game where you steal things with a very long arm
The heroes are attacked by monsters
Pillars of Eternity is getting turn-based combat to mark its 10th anniversary, and that means PC Gamer editors will soon be arguing about combat mechanics again
Image of Ronaldo from Fatal Fury: City of the Wolves trailer
It doesn't really make sense that soccer star Ronaldo is now a Fatal Fury character, but if you follow the money you can see how it happened
Junah beginning a battle in Metaphor: ReFantazio.
Today's RPG fans are 'very sensitive to feeling like they wasted time' when they die, says Metaphor: ReFantazio battle planner—but Atlus still made combat hard anyway
Image of Cersei Lanniser from Game of Thrones: Kingsroad Steam early access trailer
A new Game of Thrones RPG is coming to Steam today with a cast of 'familiar faces,' which is good because it's really the only way to tell it's a GoT game at all