Stat Shark Terms of Service:
“You agree not to misuse the data provided to harass or harm any individual listed on the website. Any misuse of the provided data for malicious purposes is strictly prohibited.”
Isn’t that funny?
3 Likes
If payment data also can be hijacked, maybe restrain from doing any purchase using real money (or your main card), until gaijin fix the data breach, or at least tell us that this kind of data is not at risk.
TL;DR for everything below: If you want to be extremely careful, you could unlink/unsave your payment methods. We still have ZERO evidence that any payment methods have been, or could be, compromised. Until/unless we get an official update stating otherwise.
This is only speculation IF any payment methods are at risk, however, it might be a good idea to unlink PayPal if you/anyone else has it connected. That way it will not be possible to make any “instant” purchases without having to go through PayPal’s two-step authentication methods.
(Again this is ONLY an assumption/speculation) but I would NOT expect it to be possible for payment methods to be hijacked and used outside of Gaijin/War Thunder. HOWEVER, if for some reason someone was able to use your stored payment methods to purchase a gift for a separate account, THAT might cause issues for YOUR account. Details below:
TO LET EVERYONE KNOW: it is in the Store Policy/TOS that if you have a “recalled purchase” (“charge back”) for a purchase on your Gaijin account, you may/will be blocked from using certain types of payment methods in the future.
There are multiple statements for different types of purchases. (Though, they look like they say the same thing: if you have a recalled purchase, certain types of payment methods become unavailable to your account.)
- First, purchasing GJN for use on the Online Store and/or Marketplace: https://support.gaijin.net/hc/en-us/articles/115000706645-Replenishment-of-the-Gaijin-Store-Balance
- Second, for Gift purchases: https://support.gaijin.net/hc/en-us/articles/115000162045-The-gift-system-of-Store-gaijin-net
NOTE FOR MODS: If anything here is incorrect or incomplete, please let me know and I will edit OR you should edit my post yourself OR just go ahead and delete my entire message if you need to 👍 No hard feelings if you do.
I do encourage Gaijin to make a public statement about this entire situation ASAP to prevent an excessive amount of speculation. Thank you.
3 Likes
Considering he was egging him on to crash servers and matchmaking, I’d hardly doubt anything he was doing was for the benefit of the site. The fact that he knew what Plupsy was capable of and knew he was trying to get people banned for little to no reason tells me more than enough about Hadi and the other developers. They willingly took on a notorious cheater and justified it with “oh well he didn’t distribute it so he did minimal to the community” is just as stupid. Even if he didn’t distribute it, it gives way for new hacks to be discovered as other cheaters know where vulnerabilities lie. A user on here pointed out that it looks like weak server-side verification, so if he’s to be believed then any cheat maker might be able to do the same.
Is Hadi capable of doing the hacking instead? Its plausible. If he really found it so amazing what Plupsy was doing, I’d say there’s a fair chance that he wanted to learn to do it. Not to say he can, or that he can’t.
Either way, Statshark’s team can’t really be trusted. The tool itself is fine I guess, but the team behind it are unreliable and complacent- especially since Hadi admitted they knew Plupsy was trying to get the person banned, and all they did was “talk to him”. Childish.
3 Likes
This sums up my opinion on this situation pretty well.
5 Likes
Pretty much my whole view. Obviously what Plupsy did is bad, nobody can deny that. The issue is that the developers knew about everything and didn’t do a thing. Even after the video, all they did was let him leave by himself. Their whole announcement is just trying to save face.
3 Likes
Why?
…Why what?
The real corporate-level winrate-by-nation-and-BR data Pluspy obtained for Hadi starting early this year basically helped Statshark to drive Thunderskill out of the “cool third-party War Thunder website” game (for now), so I’d say the site benefitted. And there’s not really “other developers,” it’s just Hadi, Pluspy from February until now, and a couple volunteer Discord mods, more or less. As far as I can tell from here anyway. And the egging on by Hadi all occurred long before Hadi “went legit” last year and tried to build something useful for the community. Did they do an Icarus and go too far with the XVM stuff, if only because it led indirectly to the Pluspy personal implosion? Maybe. I totally believe Hadi is going to have to expect to take some time to earn back player trust for what he’s trying to do. But I still think he’s made a useful site and I feel perfectly safe and comfortable using it as a resource for data (like the flight model stuff) about the game that he’s either derived or legitimately acquired that you really can’t get anywhere else.
There is leaks containing Pluspy and Hadi where Hadi askes pluspy do kick out of game one of content creators because he is japing to much. :)
yep, seen em, they are long term friends, no one’s denied that, just saying that all happened six months or more before Hadi started Statshark, and a year or more before Pluspy offered to help him with it. I’m not a member of Africamod Discord where that all went down, but there was a lot of sketchy stuff happening over there and they were both part of it, along with others, and (not that anyone would care) I don’t agree with any of it.
The maturity of my fellow human never ceases to strip me of what little faith I have remaining.
1 Like
All those screenshots are from Africamod. Statshark didn’t exist before August 2024.
Not defending it, Gaijin was fully aware at the time of Africamod’s collective abuse of certain CC’s and what they were doing and chose to do nothing. I just don’t associate Africamod with Statshark, although yes, it’s some of the same people. I believe we have to give people chances to change.
1 Like
There’s multiple users with the “Dev” role so I assume they are also devloping it.
Pretty sure there’s another developer besides Prae and Hadi (+ Plupsy) but can’t find them in official announcements.
Irrelevant of when it happened, they knew what he was capable of and kept him anyways. Either they wanted Plupsy to keep hacking (as it seems like when he did go back to it, they never cared) or are incredibly naive.
Use Statshark all you want, I just can’t trust the developers. I don’t care much for a players stats or vehicles stats so I never use it anyways.
Also for this, I don’t know if this was what Plupsy was getting for them. I just assume that he wasn’t doing it for the benefit of the site.
1 Like
I wouldn’t associate it until it becomes a pattern, which I feel like it has.
Hadi has said the two things that have to go now are the corporate data winrate stuff and the XVM stuff (presumably because it relied on the additional verification and only Pluspy knew how to make the game chat work like that), so it seems pretty clear to me those are the two things Pluspy was doing for them. Also Pluspy joined the site, Hadi says, in February with a help to offer get “certain data” and February’s when he was able to add the corporate data winrate stuff to the site. And yeah, I forgot about Prae, sorry to Prae.
1 Like
Good to know. This whole situation is so dumb and avoidable though, all they needed to do was distance their whole project away from a notorious hacker- nevermind fuel his ego in an echo chamber.
Why didn’t they do a thing? I quote it already.