Dear LFS Racers,
We have seen evidence of people obtaining the GAME passwords of LFS racers.
[EDIT: We know of around 20 passwords obtained by one person - there is no evidence of a widespread problem]
We don't know where they get the data, but there is no evidence of a breach of security on our servers. Passwords have not been obtained by brute force attack either. We suspect there are multiple sources, possibly including data from pirate master servers that no longer exist. Possibly some password guessing and possibly passwords could have been obtained by software supplied by unscrupulous LFS community members.
EDIT: Unfortunately, I started this one thread about two separate subjects which are probably not related. For the password subject, I have now started a new thread: https://www.lfs.net/forum/thread/107278
We have also received a report of a rental system in Turkey, run by some users that have obtained at least the GAME password of several LFS accounts and are renting them out for money (although some of these accounts may have been purchased legitimately rather than stolen).
If you have not changed your GAME password recently, please change it now, and make sure it is not related to any other passwords you use on the internet.
I'll have to take some more days off actual Live for Speed development in order to try to detect accounts that are being passed around.
If you have seen any account being used illegally, please try to contact the true owner of the account if you can. We will not be able to handle large numbers of reports to our technical support email. Such reports usually contain very minimal proof and it's hard for us to simply take such accounts offline. But if the true owner could change their passwords then the problem is solved without our intervention.
Live for Speed licenses are not for rental or loan to other users, so if we find accounts being used in this way we will remove their access to the online system.
EDIT: More information below: https://www.lfs.net/forum/post/2080549#post2080549
We have seen evidence of people obtaining the GAME passwords of LFS racers.
[EDIT: We know of around 20 passwords obtained by one person - there is no evidence of a widespread problem]
We don't know where they get the data, but there is no evidence of a breach of security on our servers. Passwords have not been obtained by brute force attack either. We suspect there are multiple sources, possibly including data from pirate master servers that no longer exist. Possibly some password guessing and possibly passwords could have been obtained by software supplied by unscrupulous LFS community members.
EDIT: Unfortunately, I started this one thread about two separate subjects which are probably not related. For the password subject, I have now started a new thread: https://www.lfs.net/forum/thread/107278
We have also received a report of a rental system in Turkey, run by some users that have obtained at least the GAME password of several LFS accounts and are renting them out for money (although some of these accounts may have been purchased legitimately rather than stolen).
If you have not changed your GAME password recently, please change it now, and make sure it is not related to any other passwords you use on the internet.
I'll have to take some more days off actual Live for Speed development in order to try to detect accounts that are being passed around.
If you have seen any account being used illegally, please try to contact the true owner of the account if you can. We will not be able to handle large numbers of reports to our technical support email. Such reports usually contain very minimal proof and it's hard for us to simply take such accounts offline. But if the true owner could change their passwords then the problem is solved without our intervention.
Live for Speed licenses are not for rental or loan to other users, so if we find accounts being used in this way we will remove their access to the online system.
EDIT: More information below: https://www.lfs.net/forum/post/2080549#post2080549
