Shadowazun Posted August 23, 2022 #1 Posted August 23, 2022 I was playing on stake today when I got a notification that my session ended. After relogging and completing the 2FA authentication I noticed my account balance went from 10.7k to $2.6. contacted support immediately and noticed that my transactions show a withdrawal to an unknown BTC wallet. Have been trying to work with Stake to sort this out as my account has just had over 10,000 stolen.
SilentDeath37 Posted August 23, 2022 #2 Posted August 23, 2022 and what support told u? did u recover your money?
Shadowazun Posted August 23, 2022 Author #3 Posted August 23, 2022 Still working. Support has asked me for lots of verification to my account which I have provided. I am afraid I'm going to lose my money. Not sure what I can do here. Hopefully stake will reimburse me or let me speak to someone who can help.
BGjack1 Posted August 23, 2022 #4 Posted August 23, 2022 You and them can't do anything... Money is long gone by now
mirrorsd Posted August 23, 2022 #5 Posted August 23, 2022 If your 2FA was activated in my opinion is not your fault and stake should give your money back
mementomori Posted August 23, 2022 #6 Posted August 23, 2022 How can that even happen? Did you click any suspicious links?
hano25 Posted August 23, 2022 #7 Posted August 23, 2022 🤣 100% you withdraw that when you was drunk you think stake is stupid to give you 10k
Shadowazun Posted August 23, 2022 Author #8 Posted August 23, 2022 35 minutes ago, mementomori said: How can that even happen? Did you click any suspicious links? Not sure how they got into my account to be honest. I didn't click any links. But I was booted out of my session and when I logged back on the money was gone. I've provided stake with all the required images for deposits I've done from my crypto wallet and the withdrawal does not match my personal wallet. If stake checks the login information they will for sure find that someone has accessed my account from somewhere else. I also realized that 2fa was not enabled, I just had email verifications which would send a code to my email which I need to use to login each time. 41 minutes ago, mirrorsd said: If your 2FA was activated in my opinion is not your fault and stake should give your money back They don't seem to even care about the money right now. They're just asking me for an ass load of verification proof to show that I am the account owner in the first place.
mirrorsd Posted August 23, 2022 #9 Posted August 23, 2022 sorry to say @Shadowazunbut because of you didn`t have 2FA enabled i don`t think you will take something back @Shadowazungive them all what they need. and be patient
Shadowazun Posted August 23, 2022 Author #10 Posted August 23, 2022 3 minutes ago, mirrorsd said: sorry to say @Shadowazunbut because of you didn`t have 2FA enabled i don`t think you will take something back @Shadowazungive them all what they need. and be patient I am cooperating and being polite. I am really hoping they can do something for me. I play quite a lot of money on their site so I hope they can accomodate me. There 100% needs to be more protection for the customer because even without 2fa they require me to input a auth code that they send to my email for each login, and no auth code was provided when whoever else logged into my account. It literally took me a minute to log back in and the withdrawal was already requested. I even contacted them within minutes of it happening but of course crypto can't be cancelled. Maybe adding a review period in which a withdrawal can be reversed would also help. If I lose 10k to some hacker I'm gonna be pretty sad.
mirrorsd Posted August 23, 2022 #11 Posted August 23, 2022 Is posible someone to have your details on email? The biggest problem on Stake is they let people playing on VPN.. i have account to another website where one time someone try to login from Pakistan. I got email straight away. But because of vpn if you live in US and someone try to hack your account from i don`t know.....India and use a VPN with US ip you don`t get messages thats a bad thing. I think your email is hacked...you should change the password mate
Shadowazun Posted August 23, 2022 Author #12 Posted August 23, 2022 1 hour ago, mirrorsd said: Is posible someone to have your details on email? The biggest problem on Stake is they let people playing on VPN.. i have account to another website where one time someone try to login from Pakistan. I got email straight away. But because of vpn if you live in US and someone try to hack your account from i don`t know.....India and use a VPN with US ip you don`t get messages thats a bad thing. I think your email is hacked...you should change the password mate It is possible that someone has access to my email, but there was no email sent for authentication between the time I got logged out of my account and when I logged back in, except for the email that I got with the code to log back in. After providing them with everything they asked for, multiple times (they asked me like 4 times for the same exact thing) they left me with this message. "Thank you for providing us with all of the information. The case has now been forwarded to the General Managers. Once they review your case, they will contact you. It is crucial that this conversation stays closed from this moment on, meaning that you should not reply to this message. Please note that by replying in this conversation you can only delay the procedure. The process can take up to 48-72 hours. Thank you in advance. Your patience is much appreciated. Have a nice day"
ameobi Posted August 23, 2022 #13 Posted August 23, 2022 @ShadowazunSounds like someone hacked your email man.
hiawc Posted August 24, 2022 #14 Posted August 24, 2022 You will need to enter an email code to withdraw money without 2FA enabled. So maybe your email is hacked as well
Alexwinn Posted August 24, 2022 #15 Posted August 24, 2022 maybe someone have acces to your google account? and maybe they check your inbox and see stake e-mails? check applications on your phone
Shadowazun Posted August 24, 2022 Author #17 Posted August 24, 2022 I honestly have no clue how this would happen. When I first told the support team what email I had attached to my account, they said that wasn't the one they had listed. Which makes no sense because it literally shows on my account which email is verified. One of my messages to this post is also under review by moderators which makes me think they don't want me to talk about the situation. The last response they have me was this Thank you for providing us with all of the information. The case has now been forwarded to the General Managers. Once they review your case, they will contact you. It is crucial that this conversation stays closed from this moment on, meaning that you should not reply to this message. Please note that by replying in this conversation you can only delay the procedure. The process can take up to 48-72 hours. Thank you in advance. Your patience is much appreciated. Have a nice day Just got this email which confirms someone is continuing to attempt to access my account.
HMilly Posted August 25, 2022 #18 Posted August 25, 2022 15 hours ago, Shadowazun said: I honestly have no clue how this would happen. When I first told the support team what email I had attached to my account, they said that wasn't the one they had listed. Which makes no sense because it literally shows on my account which email is verified. One of my messages to this post is also under review by moderators which makes me think they don't want me to talk about the situation. The last response they have me was this Thank you for providing us with all of the information. The case has now been forwarded to the General Managers. Once they review your case, they will contact you. It is crucial that this conversation stays closed from this moment on, meaning that you should not reply to this message. Please note that by replying in this conversation you can only delay the procedure. The process can take up to 48-72 hours. Thank you in advance. Your patience is much appreciated. Have a nice day Just got this email which confirms someone is continuing to attempt to access my account. hmm very weird response. Sorry that happened. That’s horrible that can even happen
Shadowazun Posted August 27, 2022 Author #19 Posted August 27, 2022 My account is also in withdrawal only mode right now, and I can't even withdraw...
Gonger Posted August 27, 2022 #20 Posted August 27, 2022 On 8/23/2022 at 4:39 PM, Shadowazun said: I am cooperating and being polite. I am really hoping they can do something for me. I play quite a lot of money on their site so I hope they can accomodate me. There 100% needs to be more protection for the customer because even without 2fa they require me to input a auth code that they send to my email for each login, and no auth code was provided when whoever else logged into my account. It literally took me a minute to log back in and the withdrawal was already requested. I even contacted them within minutes of it happening but of course crypto can't be cancelled. Maybe adding a review period in which a withdrawal can be reversed would also help. If I lose 10k to some hacker I'm gonna be pretty sad. I do sympathize with you dude, and I am sorry this extremely unfair, unfortunate even happened. But stake does a lot, if you as the user weren't utilizing 2fa, then I'm sorry but its pretty unfair to place blame on them... Go to your setttings, click sessions and see what info u can get about the session that was logged in during the withdrawal.. also look into the transaction id for the withdrawal for possible info but you're probably screwed. If you're dealing with more $$ than you can afford to lose ( or that would be a huge hit on you to lose) then utilize all reasonable security features at your disposal...2fa (and other basic security practices) are relatively simple and effective. Sorry friend, use this as an expensive lesson.
Xylber Posted August 27, 2022 #21 Posted August 27, 2022 Stake needs a security feature where you can delay the cashout. For example, I enable this option and set up to "12 hours delay". The next time I cashout, the cashout is delayed 12 hours. If my account was compromised, I have those 12 hours to cancel the cashout and change the password. To disable the option (once enabled), you also have this "12 hours delay". Finally, the player choose the time (12 hours, 24 hours, 2 days, 7 days, etc.).
Shadowazun Posted August 27, 2022 Author #22 Posted August 27, 2022 2 hours ago, Gonger said: I do sympathize with you dude, and I am sorry this extremely unfair, unfortunate even happened. But stake does a lot, if you as the user weren't utilizing 2fa, then I'm sorry but its pretty unfair to place blame on them... Go to your setttings, click sessions and see what info u can get about the session that was logged in during the withdrawal.. also look into the transaction id for the withdrawal for possible info but you're probably screwed. If you're dealing with more $$ than you can afford to lose ( or that would be a huge hit on you to lose) then utilize all reasonable security features at your disposal...2fa (and other basic security practices) are relatively simple and effective. Sorry friend, use this as an expensive lesson. I understand that it would be unfair for them to be held accountable when 2fa was not enabled. But there is still an email sent out during the withdrawal process that requires a code to be entered before withdrawing. I know this because I attempted to withdraw my remaining balance from boosts and bonuses, and it sent me this email when I made an attempt to withdraw. It did not send me an email when whoever withdrew 10k. I've also seen that people have had issues with someone switching their 2fa and then immediately withdrawing. I have added an image of the sessions. It looks like someone logged in from Oslo, and also someone from Dublin at some point.
Jjdjjdjms Posted August 27, 2022 #23 Posted August 27, 2022 Bro got 10g in his account and no 2fa? I mean that hurts heavy, likely this will be an expensive lesson. I’d say your email has been compromised. Check any settings that can be changed on stake. check trash can and junk mail for withdrawal notification. Ask whoever handles your case on stake if they can confirm the withdrawal request email was sent out and confirm it was sent to the proper address. you did say that you have it set for email notifications/code when withdrawing but looking at the image you showed us in this post, you’ve never made a single withdrawal. good luck.
Shadowazun Posted August 27, 2022 Author #24 Posted August 27, 2022 49 minutes ago, Jjdjjdjms said: Bro got 10g in his account and no 2fa? I mean that hurts heavy, likely this will be an expensive lesson. I’d say your email has been compromised. Check any settings that can be changed on stake. check trash can and junk mail for withdrawal notification. Ask whoever handles your case on stake if they can confirm the withdrawal request email was sent out and confirm it was sent to the proper address. you did say that you have it set for email notifications/code when withdrawing but looking at the image you showed us in this post, you’ve never made a single withdrawal. good luck. My accounts new. I didn't have everything setup because I previously didn't really use it. Then all of a sudden someone gets perfect timing when I actually have money on the account and withdraws it. I haven't made a withdrawal myself until I attempted to take out the rest of the funds on the account, which confirmed to me that a code was required to complete a withdrawal. So again, even if someone had access to my email, there was no verification email sent to me as I would have been notified on my outlook application. I had 10k on the account for less than 20 mins when this happened. Good call about requesting confirmation of where a notification was sent if a different email was attached to the account briefly
JoeBlack Posted August 27, 2022 #25 Posted August 27, 2022 On 8/23/2022 at 7:28 PM, Shadowazun said: Not sure how they got into my account to be honest. I didn't click any links. But I was booted out of my session and when I logged back on the money was gone. I've provided stake with all the required images for deposits I've done from my crypto wallet and the withdrawal does not match my personal wallet. If stake checks the login information they will for sure find that someone has accessed my account from somewhere else. I also realized that 2fa was not enabled, I just had email verifications which would send a code to my email which I need to use to login each time. They don't seem to even care about the money right now. They're just asking me for an ass load of verification proof to show that I am the account owner in the first place. Sorry for your lost but I want to ask this question,if your 2fa wasn’t activate that means you can’t withdraw with 2fa,you you can login with email code but can’t withdraw, soo that person who hacked your account should activate 2fa after access your email but question is how you can access your account again if your session expired before? You can’t log in again before stake delete 2fa and that is really hard cuzz they are asking so many proof ? Am I wrong ? I am sure you can’t withdraw with email code, you have to activate 2fa for withdraw..
Featured Comment
Archived
This topic is now archived and is closed to further replies.