Running With Scissors:

Key reselling websites hurt indie developers like us. There are many ways to obtain our games and we STILL prefer piracy over people buying from those websites.
Illegaly obtained keys are a source of money for scammers and it could even affect you as the customer in some cases.

NiX:

I love you guys and postal series, but I’m not made of money, if I can get a game for cheaper I’d rather pay less than more.

Running With Scissors:

Which is why we’re telling you to pirate our games instead of paying a scammer who will cost us money and probably even get your key revoked
Our games are cheap right now through official sites. Is saving a few cents worth lowering the chances for releasing another POSTAL game?

NiX:

Isn’t pirating illegal? You want your fans get fines and shit? Now they are on sale so I might pick up some but normally i still rather get the game of g2a for cheaper

Running With Scissors:

You can’t get fines if the owners of the IP give you permission to download.
Just know that by getting on G2A, we not only get no money, we also have to pay for the chargeback, that’s the core of the problem and it means no new games in the future and no more RWS

  • ouigol@beehaw.org
    link
    fedilink
    English
    arrow-up
    35
    ·
    2 years ago

    It’s interesting how scared some people are of pirating when the amount of people charged for downloading/streaming is so few it’s barely significant.

    • Cinner@kbin.social
      link
      fedilink
      arrow-up
      20
      ·
      2 years ago

      I used to pirate games and software. Then came the ransomware, and the crypto stealers.

      So I’m afraid of pirating certain things, but not because of the IP issues.

      • Deestan@beehaw.org
        link
        fedilink
        arrow-up
        8
        ·
        2 years ago

        Just finding a bittorrent client without giving my machine digital herpes gutworms is non-trivial these days.

        • Cinner@kbin.social
          link
          fedilink
          arrow-up
          15
          ·
          2 years ago

          qBittorrent is what I’ve been using since uTorrent went to shit. Well there was a brief period where I used Transmission but it’s so feature-limited.

        • boonhet@lemm.ee
          link
          fedilink
          arrow-up
          4
          ·
          2 years ago

          Deluge and Transmission have been good to me. I don’t need all the additional features of qBittorrent personally.

          If you live in a country where VPNs are needed in order to avoid fines, you may want to use qBittorrent for its ability to bind itself to a VPN though.

          I believe Deluge has the option too, but not as convenient as qBittorrent? I’m not sure.

  • actsukrit@lemm.ee
    link
    fedilink
    English
    arrow-up
    28
    ·
    edit-2
    2 years ago

    I swear everyone here is missing the point.

    The issue is scammers buy keys with stolen or fraudulent credit card info, then they sell those keys via key resellers like G2A to make money.

    Meanwhile the original sale gets disputed, and the sellers are hit with a chargeback, which means not only do the developers have to pay back the money they made, but they also LOSE money because of chargeback fees that credit card companies levy on them for the disputed transaction.

    It doesn’t matter that they can void the key that was fraudulently purchased, they still lost money on that sale. That’s why they’re saying “please at least pirate it”, because in that case, while they’re not making a sale, they’re at least not losing money on the transaction.

    • suddenlythequietrose@beehaw.org
      link
      fedilink
      English
      arrow-up
      12
      ·
      2 years ago

      Also, when the devs blacklist the key, the customer gets angry at the devs instead of the scammer, turning away future customers.

  • Leone@kbin.social
    link
    fedilink
    arrow-up
    14
    ·
    edit-2
    2 years ago

    Hold on a minute. Developers need to generate the keys so third parties can resell them. And they can revoke or disable them if they were obtained fraudulently.

    What is the point of all this? Just disable the keys and fuck the scammers.

    • dog@suppo.fi
      link
      fedilink
      arrow-up
      19
      ·
      2 years ago

      Ain’t as simple as “just disable them”. G2A acquires keys through buy-one-get-two deals, using stolen credit cards, money laundering, stolen keys (mass mailing the devs for “preview” keys, which they then flip on G2A) etc.

      So there’s no way to know the origin of keys in G2A. By the time you know it’s stolen keys, they’ve been sold out, and G2A has a notorious history of not giving a fuck about the situation.

      You could just arbitrarily disable all keys, but you’d affect >90% legitimate customers.

    • ram@lemmy.caOP
      link
      fedilink
      arrow-up
      15
      ·
      edit-2
      2 years ago

      They don’t know the keys on G2A and the like unless they buy them themselves. And these unauthorized key sellers aren’t in the business to cooperate with them, since the money laundering is their bread and butter.

      • Leone@kbin.social
        link
        fedilink
        arrow-up
        5
        ·
        edit-2
        2 years ago

        They don’t know the keys on G2A

        But they should. Someone at RWS generated those keys and then sold them to resellers. Even if they don’t personally keep track of the keys, Steam probably does.

        I guess they don’t want to affect users who already paid for a key even though they have the right to do so.

        Honestly, I’ve had keys revoked from my account before, and it sucks to waste money on scammers, but any rational person would understand that’s not their fault.

        • ram@lemmy.caOP
          link
          fedilink
          arrow-up
          10
          ·
          2 years ago

          How would they know which keys are on G2A? They’re bought through an intermediary before being resold on G2A.

          • Leone@kbin.social
            link
            fedilink
            arrow-up
            5
            ·
            2 years ago

            The keys were given in plain text to this intermediary at some point. A copy of said text should exist.

            The Steamworks Documentation explicitly recommends tagging the keys to keep track of them and potentially prevent this kind of issues.

            • Moonrise2473@feddit.it
              link
              fedilink
              arrow-up
              15
              ·
              2 years ago

              I checked better because they mentioned chargebacks.

              The “reseller” on g2a is actually a scammer who is using stolen credit cards for purchasing steam keys from the developers website, so even if they void it, they will incur a $30 chargebacks fee from each “sale”

              • Hellsadvocate@kbin.social
                link
                fedilink
                arrow-up
                1
                ·
                2 years ago

                Correct. Once the charge ack occurs however, the key is revoked. The key is revoked and the customer goes to g2a who refuses refunds (unless you pay an extra cover charge fee now I think).

            • ram@lemmy.caOP
              link
              fedilink
              arrow-up
              6
              ·
              2 years ago

              Yes they were given to an intermediary like green man gaming who then sold it to what they believed was a customer but was actually a credit card scammer laundering money

          • Moonrise2473@feddit.it
            link
            fedilink
            arrow-up
            0
            ·
            edit-2
            2 years ago

            False positives. If some of them are legitimate customers

            Afaik you can’t disable individual keys but the whole batch

        • Send_me_nude_girls@feddit.de
          link
          fedilink
          arrow-up
          2
          ·
          2 years ago

          Aside of what was already said, there’s also no gain for revoking the key. Say you do, the owner will be pissed and likely just pirate the game, maybe even give a bad rating/review in frustration. To believe they buy the game again for full prices is, humbly, naive.

    • AndrasKrigare@beehaw.org
      link
      fedilink
      arrow-up
      14
      ·
      2 years ago

      Yeah… I hadn’t heard of G2A before now, but after reading up a bit, it seems like a bit of a convenient scapegoat for developers.

      https://www.gamesindustry.biz/g2a-and-wube-software-settle-usd40-000-chargeback-dispute

      Some quotes

      The debate over the site was triggered by No More Robots founder Mike Rose, who claimed it was better for gamers to pirate titles than buy from G2A since “devs don’t see a penny either way.”

      Vlambeer co-founder Rami Ismail agreed, adding: “These sites cost us so much potential dev time in customer service, investigating fake key requests, figuring out credit card chargebacks, and more.”

      As the discourse escalated into a petition to stop G2A from allowing the sale of indie games, the marketplace responded with its 10x chargeback offer in an attempt to address these concerns.

      Lack of response has frequently been an issue for G2A. To date, Factorio remains the only studio to challenge the firm’s offer of 10x chargebacks, and when G2A suggested a potential keyblocker tool for developers, only 19 companies registered interest.

      Klonan acknowledges Wube’s role in how G2A sellers were able to obtain codes for Factorio. These codes were purchased through the game’s official website, which was previously less secure than the likes of Steam or Itch.io, although did give Wube detailed records of purchases and chargebacks it could compare with G2A’s audit.

      The company also offers a free Steam key with website purchases, many of which are “probably flipped on G2A”, although as these are obtained legally it becomes harder to challenge these transactions.

      Klonan notes that after Wube switched to using Humble’s widget on its site and refraining from “giving out tons of keys for giveaways to dodgy, often fake, influencers,” the fraudulent purchases “stopped completely.”

      “In the end, contacting G2A is treating a symptom of people stealing keys,” he says. "The best way to combat that is to cut it at the source.

      • Steeve@lemmy.ca
        link
        fedilink
        arrow-up
        5
        ·
        2 years ago

        Sounds like G2A has tried to be accommodating and the overall dev response was just refusing to work with them entirely

      • lowleveldata@programming.dev
        link
        fedilink
        English
        arrow-up
        16
        ·
        2 years ago

        I hate these guys just tell you to “use common sense” without explaining any shits. Your comment does not contribute to the discussion at all.

        • megahbite@dataterm.digital
          link
          fedilink
          English
          arrow-up
          9
          ·
          2 years ago

          If it were so simple to revoke these keys as OP is implying, why would the game publishers be telling people to literally steal their games instead of buying on one of these key resellers?

    • actsukrit@lemm.ee
      link
      fedilink
      arrow-up
      4
      ·
      2 years ago

      No that’s not the issue. That’s not why they’re saying pirate the game. The issue is they’re also getting hit by chargeback fees from those fraudulent sales.

      See this comment

    • Ullallulloo@civilloquy.com
      link
      fedilink
      English
      arrow-up
      4
      ·
      edit-2
      2 years ago

      The problem is rather the opposite. The keys are secure and their sale is decentralized, which gives limited control over them. People generate the keys with stolen credit cards, and then resell them. The postal devs are basically admitting they are giving up trying to actually go after the thieves, but it is genuinely hard to figure out which keys are legit and which are stolen. All your proposing is to make it impossible to revoke a key even if you know it’s illegal.

      The actual way to prevent this theft would be to forbid merchants from generating keys at all, and go to a fully centralized model like Steam and Epic generally use.

      • Dymonika@beehaw.org
        link
        fedilink
        English
        arrow-up
        1
        ·
        2 years ago

        What? Steam generates keys, does it not?

        Also, what if usage of keys was required to be publicly declared on the chain? That would instantly stop all of this.

        • Ullallulloo@civilloquy.com
          link
          fedilink
          English
          arrow-up
          3
          ·
          2 years ago

          As of 8½ years ago, you can’t buy keys from Steam, although they still allow developers to generate keys for use on other sites that still use them.

          How would requiring keys to be declared help? The people using the keys are all innocent (or at least largely ignorant) buyers. Steam can already see who those are, but that doesn’t stop the sale or say who sold them.

  • lazynooblet@lazysoci.al
    link
    fedilink
    English
    arrow-up
    9
    ·
    2 years ago

    Does the negative opinion of key resellers point to G2A and Kingpin that seem to put you with an unnamed reseller, a bit like eBay? Or does it also include discount resellers like cdkeys and instant-gaming?

    • dog@suppo.fi
      link
      fedilink
      English
      arrow-up
      22
      ·
      2 years ago

      Any site that allows customers to resell is a culprit of supporting the grey market. Even if they vet their resellers, you’ll get the occassional hacked accounts, and legitimate resellers “turning” rogue after reaching their target reputation.

      Use https://isthereanydeal.com to find actual discounts. Or buy on Steam. Or pirate it. Never support grey market.

      • Dymonika@beehaw.org
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        2 years ago

        Fanatical is not a reseller, right? That’s what I’ve used and it’s never failed on me once so far, across years. I’ve never touched G2A, etc. due to used-key concerns.

        • dog@suppo.fi
          link
          fedilink
          English
          arrow-up
          3
          ·
          2 years ago

          Fanatical is listed in ITAD, so it’s fine. Albeit I dislike their lootbox monetization these days.

  • NightOwl@lemmy.one
    link
    fedilink
    English
    arrow-up
    7
    ·
    2 years ago

    What is the reason some don’t sell their games only through Steam, GOG, Itch, Ubisoft, Origin, or Epic instead of generating keys? Seems like that way games purchased would at least be tied to accounts or rely on gifting to people within their region.

    • megahbite@dataterm.digital
      link
      fedilink
      English
      arrow-up
      8
      ·
      2 years ago

      What G2A is selling is usually Steam keys. They’re not always stolen through credit card fraud but also through pretending to be game media for review copies.

  • alehel@beehaw.org
    link
    fedilink
    English
    arrow-up
    5
    ·
    2 years ago

    How does this work? How are the keysellers able to make keys that cost the developer money?

    • freundTech@feddit.de
      link
      fedilink
      English
      arrow-up
      10
      ·
      2 years ago

      Many of the keys sold on key reselling sites are bought with stolen credit cards. It usually works like this:

      1. Someone obtains stolen credit card data (can be easily bought on the dark web)
      2. The stolen credit card data is used to buy keys from official key sellers (or directly from the developer of they offer them)
      3. Those keys are then sold on key reselling sites
      4. The credit card owner notices that his credit card data was stolen, contacts his credit card company and does a charge back. 5.The official key seller has to pay back the money + a charge back fee.
      • alehel@beehaw.org
        link
        fedilink
        English
        arrow-up
        8
        ·
        2 years ago

        Oh. Now I feel bad. I’ve bought keys a few times from such sites assuming they just bought them in bulk for resale ☹️

        • Crotaro@beehaw.org
          link
          fedilink
          English
          arrow-up
          5
          ·
          edit-2
          2 years ago

          You and me both. Maybe it has changed since then, but when I found out about this, I was told that there are a handful stores that operate legally. Apparently the ones that are listed on isthereanydeal.com are legally operating businesses?

          Other than that, Humble Bundle is also working legally.

        • ByteSorcerer@beehaw.org
          link
          fedilink
          English
          arrow-up
          2
          ·
          2 years ago

          There are several those keys can be obtained, and most of them don’t involve fraud:

          • Purchasing keys in a region where they’re cheaper, and reselling them in regions where the game is more expensive

          • Purchasing keys during a sale, and reselling them after the sale

          • Claiming keys from giveaways and selling those when the giveaway is over

          • Buying a bundle (such as Humble Bundle) and selling the keys you aren’t interested in or you already have

          • Buying games with stolen credit card and reselling those keys

          Only the last one is illegal and costs the developers money. Digital storefronts have made it harder to obtain raw, transferrable keys and have introduced region locks to try to combat those top 3 methods, but they all were very common in the past.

          Key resellers like G2A are pretty much just an eBay for keys. It’s not an illegal organisation, they just provide platforms on which people can sell their game keys, but they don’t know (and probably don’t care) how those keys are actually obtained. The majority of keys on those platforms are actually legit (iirc by far the biggest category is games purchased out of region).

          HOWEVER,

          The legally obtained keys sold on the platform are all obtained in such a way that the developers get little to no money from it, so chargeback fees from a few fraudulent purchases easily outweighs the small amount of money they get from the legit keys there. So even though the majority of keys sold on such platforms are not illegal, the few illegal keys that do exist are enough to make the developers still lose money on average with keys sold there.

    • ram@lemmy.caOP
      link
      fedilink
      English
      arrow-up
      9
      ·
      2 years ago

      If I steal your credit card and buy a key to the new FNAF that costs $60, I can sell that key on G2A. Let’s say I make $50. That $50 is mine, the third person has the key and thus the game, the developers have your $60.

      But your CC was stolen. You shouldn’t pay for that. So you contact your financial institution and are like “hey wtf I don’t wanna pay for this.” They respond “yes sir/ma’am, sorry sir/ma’am” and return the funds to your credit card.

      Now your financial institution isn’t just gonna take the hit. So they’re like “well, this money is with the weird dude who made FNAF, so let’s take that money back.” They issue what’s called a chargeback, reclaiming the $60. But that’s not enough, right? Because “We don’t want them putting their products in sketchy places that might make us do this more, so we’re gonna add a punitive fee.” These punitive fees range from $30 to $100 depending on your institution.

      So now, I have the G2A user’s $50, you have your $60 back, the third person has the key, and the FNAF developers? They had $60, but after the chargeback that turned to $0, and then there was a punitive fee. They now have -$30.

      Epilogue:

      After losing the money, and in fact paying for someone else to have the game consider their options. They’d be right to revoke the key as the person who used it didn’t actually pay them for it. But if they did, they’d get bad reviews, the G2A customer might be mad at the FNAF devs, and you may just go and buy another key from G2A. So in all likelihood they just cut their losses and let you keep the game as it causes less problems that way.

    • Bazz@feddit.de
      link
      fedilink
      English
      arrow-up
      4
      ·
      2 years ago

      They buy keys with stolen credit card credentials. Owner of the card blocks the payment, devs have no money and in addition have to pay for the chargeback.

  • DaSaw@midwest.social
    link
    fedilink
    English
    arrow-up
    2
    ·
    2 years ago

    Reminds me of the days when you would buy a physical copy on Ebay and get a pirate copy with black and white photocopied manuals and even cd art, only it’s worse: the dev is actually getting charged for selling to credit card theives.