**UPDATE** Nov. 13
Although not explicitly stated by En Masse, it appears how the hotfix did go through for the 11th and chat may be returned to normalcy. That said, players logging on following your hotfix have noted that their personal settings with the game are already undone. So, simply to be about the safe side, you might need to turn your volume down before logging into your game.
**UPDATE** Nov. 10
En Masse Entertainment posted a result to this later inside Tera Gold the day yesterday proclaiming that they are “taking these claims very seriously, but as of this time, [they] do not have evidence” how the exploit will be used from the way described or who's’s compromised player information.
In the meantime, they’ve applied a patch which will prevent all chat except guild chat like a precaution when they investigate.
**Original Post** Nov. 9
Using chat in TERA may not are the safest course of action. No, I don’t mean on account of general toxic community behavior. Rather, I mean who's can apparently be exploited by players due for the fact so it uses HTML.
Recently Redditor Gosukek made note in the fact how the way En Masse Entertainment handles the experience’s chat leave players ready to accept a wide variety of questionable activity. These include items like sending clickable links or external images — even on megaphone. This signifies that every connected client opens images, perhaps the chat can be viewed or not; a thing that could result in less savory people having entry to everyone’s IP address.
Other alleged activities believed being allowed will be to crash people’s clients while using the whisper feature, or maybe by spamming it in global. And all the more nefarious, someone may delete other player’s characters or items, although Gosukek refrained Tera Items from explaining just how that works.
The document Gosukek assembled also references Remote code execution, stating:
“Remote code execution This could be the big one, should you skip past the rest PLEASE READ THIS. Due to several factors that I won't go into detail with, there can be a very real possibility until this could be accustomed to remotely execute code on clients computers. This means the chance of this being used to spread malware, viruses, keyloggers, a myriad of juicy shit, is VERY REAL and VERY VERY VERY VERY VERY F* SERIOUS. This is really a HUGE deal and I cannot f* report that enough. This is beyond an effective data breach along with the fact that it has become swept within the rug is appalling (I will talk about it more within the drama section). I be aware that this is scary, nevertheless, you should be f* scared, this really is potentially a really serious issue. I have not tested it myself as it’s 2spooky even for me, however by all accounts it ought to work.”
Needless to convey, if true, there appears to be described as a lot of risks associated with while using the TERA in-game chat, and apparently there’s not just a whole hell of any lot you'll be able to do concerning this — unless you desire to make utilization of tera-proxy being a mode of protection. But let’s just claim that option is ethically questionable. Not this matters to everyone since the complete banning incident last May.
However, in the event there is usually a solution within the works, we now have reached in the market to En Masse Entertainment for comment (in addition towards the post they already made.) Should they respond, we're going to update this post. In the meantime, read Gosukek’s writeup around the issue and look into any comments for the Reddit post.