• Cosmic Cleric@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    edit-2
    1 year ago

    I still have no clue how that happened.

    Might be worth your time to go to the gaming subreddit on your web browser and then use the development mode of the web browser to inspect all the cookie data.

    The company might be putting more information in there than they show on the screen, that could be available to anyone who can do a search on their website for your characters name.

    For example, once I was playing World of Warcraft on an alt, and I argued with a tryhard player about being nice to other players. The WoW Armory, when you look up the alt’s name, adds in its cookie/memory the name of all the other characters for that same account (to populate a drop-down selection). So that guy started harassing me on my main character without having never knowing its name.

    • pascal@lemm.ee
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Was that guy the owner of the wow armory? Because otherwise… how did they get your cookie store inside your browser?

      • Cosmic Cleric@lemmy.world
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 year ago

        Was that guy the owner of the wow armory? Because otherwise…

        No, he was another player/customer. See below.

        how did they get your cookie store inside your browser?

        When you pull up a character on the Armory inside of the cookie/memory information was a list of all the other characters for that same account/character. And anyone can pull up any other account characters name on the Armory.

        My guess is the list of all the character names for the account was there so if you wanted to switch between one character to another from a drop-down UI object.

        My point is developers can leak additional information assuming that users can’t see it because it’s not displayed on the UI, but if somebody goes into the developer mode on the browser they can inspect all the memory/cookie information for that web page.

        Finally, this was a long time ago, so who knows if it still works that way today or not. My point of mentioning it was as an anecdote on how additional information can leak in ways we wouldn’t suspect.