ok

Why tho

Okay:)

​@@jarPlays11no

Ok

then the log4shell exploit happened 2 weeks after migration this Microsoft account migration has done more harm than good.

​@@AverageNerdGamerlog4shell exploit is unrelated to Microsoft account migration

I mean "safety" was never the point, it was about Micro$oft exerting more control and their policy of "embrace, extend, extinguish." Probably meant to force any Linux players of Minecraft to make a Micro$oft account and to make chat reporting easier. Security is the tried and true excuse for stuff like this.

Suck

Having multiple accounts is and always will be more secure unless you're a brainlet who uses the same password on everything. It was never for your security, it was always just to bump MS account numbers. Convenience, freedom, and security are interconnected and getting more of one means getting less of both of the others.

This can easily go past minecraft, many games even on steam could use something similar. This is a very scary thing to deal with and just know is out there.

Anyone who trusts that kind of name is a certified internet noob

@@jayemover_16 On a game with a primary audience of children that's to be expected and something we should take into consideration rather than make fun of. You were an internet noob too once, don't be elitist just because you can spot a phishing scam.

what do you fucking mean? this is nothing new. It's just that the phishing scam is doing in minecraft instead of some scam youtube bot or discord

Everywhere I go, I see his face.

Absolutely, it’s nuts that it doesn’t say it includes access to your MS account! Edit: Access to your Xbox account

Yeah, there's a reason why discord/google give you the scope of the app you're allowing access to, and that's to verify the permissions that the app would have. Nothing other than what's included in that scope is accessible by the app. But yeah, it seems that M$ gives full access to your account without even telling you. 🤦‍♂️

Exactly this, just look at how Xiaomi designed their UI for allowing third party downloads on their phones, just google "xiaomi dangerous permission screen" Unlike Microsoft, Xiaomi decided to add a red warning triangle, a wall of text that very clearly tells you that you would be at risk allowing this, explained in a very clear tone that even a grandma or kid could understand and finally, there is a 10 second cooldown before you can even proceed, after pressing a separate checkbox.

if its open source and can be community peer-reviewed and audited, this is technically not the case. you also need great op-sec to browse the internet these days

maybe handing over access to an account isnt that good? how about some diffrent kinds of rights for apps so that they cant just hyjack it afterwards

@@fireworkstarter It's not account access, rather it just lets it generate login tokens, aka it can only let it join servers with your name. This is required for third party minecraft launchers, however as you can see it can easily be abused by scams

@@fireworkstarter there are other kinds of account access, it's just that piglinbrute requested authentication tokens and people got phised into giving them to them

just make sure to set up the permissions correctly, you probsbly only rly need the player ID from the account for most purposes

make it open source and you're good

Why would you need to link it though? How and why does it add anything to anything?

@@tartas1995 microsoft makes sure that sensitive actions (like oauthing applications) couldn't be done by robots

What do you mean by "linking system"? It sounds interesting

I know of servers that are still safe, but yes they are getting rarer and rarer these days. :(

userbase*

@DedRnBrb For real, singleplayer is becoming the only viable option. But it gets kind of boring after a while, after all sharing the results of your work is part of the fun, as is hanging out with friends.

@DedRnBrb Have you never tried just plain old survival servers with friends? Its quite a good time. I burnt out of singleplayer years ago, at this point I just play Vintage Story for the more immersive experience. Minecraft's main draw has for years been multiplayer, but seeing the decay it may not be for much longer.

At this point the average bedrock server is starting to compete

no, they just don't tell u what it is

@@WalkingBrainTheMathNerdare you stupid or did you just not read? Or both.

​@@WalkingBrainTheMathNerdThats what he said

@@dagdnoob true, I kinda misunderstood it

If the MS login permissions list is correct, that's 100% Microsoft's fault - they're giving the app access way out of the scope of what it says it is giving

no security?

Microsoft was probably the one who told Mojang to do it so microsoft themselves made the attack surface of the game bigger causing more hackers

@@309electronics5 but mojang is microsot

It's wild to think that every change Microsoft has made to Minecraft has proven to be not only worthless, but actively destructive to Minecraft from every possible angle. Just wait until you hear about what they did to their EULA terms yesterday, they basically gave themselves permission to kill peoples' entire Microsoft accounts if they post unfavorable videos like the above, as well as reversing the old trademark use terms Notch setup, making anyone using the word "minecraft" in anything's title the "wrong way" a criminal overnight. 🤬

"free rectangle and bugrock/yava"

oh nice!

Yeah, hacking is more of things like DDoS attacks, hacking into websites, and other things. Also video game "hacking" is actually exploiting, as they are exploiting vulnerabilities in the game's code.

​@@TristanY_A very surprising majority of people don't know the difference between exploiting and hacking. Its kinda sad

​@@road__housePeople call leaving their twitter logged in on their friend's computer and that friend making a troll post getting "hacked" it's so dumb

How tf did you manage that

​@kingacrisius he verified a "hypixel" bot to his Microsoft, same as me which just takes ur acc, I recovered my stuff and acc but many cant

Same bro I got ratted a few days ago too cause Microsoft gives zero shits about random websites and so on havin full access to your account

Sorry for you and all the others. Grinding for years and losing everything is never funny. Personnally I simply stopped playing minecraft because I refuse to link it to a microsoft account, especially because I mainly play solo and I see no reason at all to do it. But even if I understand that few people want to go to that extreme, I cannot understand why people still accept to give so much access to any games/apps they download. If you download a game or an app (mobile or PC) that ask you to give a ton of permission that are not necessary, it's *always* to sell your informations and/or to do shady things with them. I hope that someday people will massively say NO and switch to an other game (or an other server) each time they need to give away all their data for no reason, but I know it's not for tomorrow. The worst is on mobile, when some people give all the permissions (camera, memory, account,...) to games they do not know...

​​​@@lilnasnusnus7867​​ maybe you shouldn't give access to your entire account to these random websites yourself. You live am you learn. Blaming microsoft for what is essentially a mistake on your part will not fix anything What microsoft could've done is not make it so vague. "Allow app to see and update the data you give it access to" doesn't *really* explain what data exactly. Either way, letting an app modify data on your behalf is already suspicious

Watch it be actually popbob

Popbob is a girl 🤫

69 likes on this comment

The popbob sex account duplication glitch

what the heck is a popbob

Average microsoft moment.

Yeah lol. Joining the server yourself doesn't do nothing. Only if you enter your own credentials, - then something will happen.

roblox is far more simple, you google "free robux" and you find a pdf file hacked onto a dentist's website that contains a link to a phishing website

If I'm understanding things correctly, they're not just stealing Minecraft. They're getting into peoples' *Microsoft* accounts which will include any personal or payment info associated.

@@SoftisNelaris Yeah and the entry point is some lego game a bored swede came up with one day, since so many kids play it and arent educated on online saftey regarding phishing scams it creates a hotbed for malicious people trying to steal their info.

@@SoftisNelaris Yeah and Roblox has your stuff stored but censored. Although, if you have 5,000 robux (Or maybe more? I don't remember) and you make games for the platform, you can cash out your robux for real money (At the rate of a free money mobile game basically, so not much money, but it's still money that they can take from you). So all they have to do is gain access to someone who has millions of robux, then change the credit card associated with the account, then cash out.

true, as before the only ways to steal accounts before was through mods and blatant login pages, both not so effective. I have been oath ratted nearly 3 weeks ago, when I joined a discord server for a guild I was in

😢חבי ‏‪0:39‬‏ 😢חהבחבנב😢

Although you can sometimes read it you just have to apply the mosaic then do the movement which soloves the problem and yes, some AIs can read through blurs but not through mosaic where information is lost

By "blur" I mean blur and mosaics. Some techniques can work through mosaics by applying the mosaic on guesses for letters until a best match is found. They aren't as safe as a black strip over data.

@@sajeucettefoistunevaspasme blur loses data aswell, but you can still see through it. Same with mosaic.

True Chads right here.

the IP leaking is probably because of Minecraft literally printing your ip in the server console when you join, which is really stupid

@@quantdev Yeah it is really stupid. I questioned whether I should use a VPN, but I'm worried Microsoft would terminate my account. They've been known for freaking out about people going on their account in different ip locations because they don't permit selling or borrowing people's Minecraft accounts. I don't want them to take my VPN as some else using my account. Idk if a VPN now would matter anyway because they prob have my real ip stored somewhere. I don't care that much if the server admins know my location, I just worry about it getting leaked to everybody.

Holy shit. Ur the guy from spokes old civ events

🤣🤣

Technically it did. That just a side effect. It just matter of convenient and security. You guys seems fine having 1 steam account for several tens of MP games and your credit card. Yet annoyed when using a separate account for Ubisoft, EA or Epic, but they provide increase security by the fact it is separate from each other

yup

never heard that one before

it all seems fake though, the document is full on trolling and he throws it out there like its real lol

or, hear me out, whitelist

@@truerandomchannel That wouldn't work here since the griefer in question would have access to your account, unless you used an IP whitelist I suppose.

@@truerandomchannel No I mean if somebody steals your account or you are sharing your account with a sibling or friend

@@ashleybyrd2015 The login security mod makes you log in with a password on the server that isnt saved to the server instead of your account and therefore they wont be able to access the password.

@@felixchen1796 I was responding to the person who said "or, hear me out, whitelist"

Lmao

Holy🗿

As a player with more than 1 braincell i see this as a absolute win

same. been playing Minecraft since 2010 and never gave Microsoft/Mojang a dime

​@@Kitulousi dont think thats a thing you should brag about.

It's not hard for them to prevent this, this is literally pure stupidity by Microsoft to design a dangerous screen to look like that.

Captchas suck. The one on the Roblox website was so excruciatingly difficult and when I finally completed it, it gave me this “An error occurred” 🤬

I bet Microsoft realy was excited and happy when they got to buy the game from notch implementing their things.....

frrr

I was wondering the same thing lol. Same with who would click a link of a server like that to verify yourself.😂

Huh. Weird. I haven't seen that with my personal server with Geyser installed, so either they borked their configs or something shady is happening. Geyser itself is fine, (in terms of security) whatever server you're connecting to may not be.

Presumably just some shaders and a realistic sky texture pack… or maybe there are some shaders with Aurora