My account was hacked and how it's been handled so far.

[PeppinoTuna]

I can assure you I have not visited a single site that is fishy or having anything to do with Gil. I also blacklist every Gil seller that I see spamming so I have no clue how they obtained my information in that little of a window from when there was no token to when the hacking began.

I felt exactly the same when I was hacked on Final Fantasy 11. After being helped a 2nd time and the GM literally refusing to assist me, I ragequit and never looked back with hopes of returning. If you are still able to have interest in playing this game after the service you've experienced I can only hope that we meet one day in-game. You've got to be a great player if you're sticking through all this.

To this day, I still have no idea how I was hacked in FF11 (different computer)... My best guess, was that I used the same password and email for an account on a totally unrelated website.

[ThricebornTony]

Perhaps the OP also is one of the many people who log in and check things from their WORK computers when they should be working. (not accusing)

You see so many people always posting "Yeah, I'm at work now" and giggling that they are getting paid for doing nothing. The funny thing is they don't think that logging in from generally poor security places like a job or surfing around third party sites is also a way to get their pwords ripped.

My advice? If you're supposed to be working... work. That's one less avenue a hacker will have to get to you as well.

edit: also, keep a little notebook with your pwords written in them at home. That way you don't have to be lazy and just write the same one for every game and every fansite you check, which we know many people do as well.

Only takes 10 seconds to write it down and forget about it.

[FayeOrikasa]

Thankfully...that's, sadly, why I'm happy about the maintenance. That will completely kick then out right? As in they will have to re-log back in? I just want to make sure the hacker can't just sit at character selection and wait until maintenance is over with.

They don't have to sit there. They have programs running, attempting login on numerous accounts at the same time, not just yours.

Reached my daily limit, so hopefully you see this. I suggest running numerous pieces of scanning software (5+), and attempt to find that potential keylogger. Like I said, I ran a number of them when I had a problem in the past, and only one picked it up. Use anything, like those specific to scanning malware or trojans, or others that do a complete, overall scan of cookies, temporary files, system folder--everything. If there is a keylogger, hopefully it is solely used for FFXIV, not other private information. The WoW one I had, many years ago, ran only when WoW was launched. Tricky bastard.

[Ryujin_Ketu]

How are you here posting on the forums with a hacked account exactly?

O Noes It's the Hacker posting in third person about being hacked.

Who'd ya give your info too?
This was is the cause of many "hacked" accounts.
I hack my daughters ffxiv account every time she doesn't log out and put her in Gridania since she despises the place for some unknown reason.

You are joking about me being able to post on the forums...right? If not then I just...I don't even...

[Ryujin_Ketu]

I agree. The naivety and ignorance saturating this thread, unaware of how private information can be, and easily, stolen on the internet, is abysmal. These kind of people (no offense to the OP) tend to be the most vulnerable to attacks. They tend to occur unexpected because you think you kept your self "safe" and avoid those "questionable" websites. Those arguments are fallacious.

No offense taken. I know none of them would say it to me in person if they took the time to crawl out of their parents basement.

[Ryujin_Ketu]

They don't have to sit there. They have programs running, attempting login on numerous accounts at the same time, not just yours.

Right. What I'm mainly asking is:

After the maintenance is over, they are going to have to attempt to log in completely again (weather they have people's info or not) If so, then in fully covered, thankfully.

[Silverwalk]

...
I FINALLY got to activate the mobile token app and everything was good. Again...I was wrong.

On my lunch break from work, I went home to log on to see the damages to my character. Again I got the 3102 error saying I was still logged in. Panic again set it and I noticed the other character the hacker created was still there, so I tried to delete it and when the counter finally ticked down, it gave me the 3102 error for that, too. SO...I start calling SE customer service again.
...

Wait wait. The hacker was able to log in to your account AFTER you associated the mobile authenticator to it?

Can you please confirm that is what you're saying here, because that would make the authenticators worthless.

Even if a hacker had your login name and password they should NOT be able to log in to your account without the one-time code.

edit: In version 1.0 whenever my IP address changed the game would not let me log in until I had put in a new password in account management. This was a PIA but it should make it impossible for hackers to log in using your information.

Has that changed in 2.0? (I haven't been able to test it yet).

Also brute forcing a password should not work if the login server applies normal security practice of locking an account after 20 or so failed attempts. Is this not happening?

Something smells very fishy here. RIFT had the same problem at launch and everyone blamed the players. It turned out there was a flaw in their software which allowed hackers to log in without your username or password (using the session ID apparently).

[Overon]

OP should have never posted this , there are people who are sick of cheaters and RMT .........and there are those for some ""Unknown Reason"" keep getting hacked and hacked and hacked and hacked and hacked and hacked and hacked and hacked.

Hard questions have been asked with no reply what so ever to answer it . Again OP does not have to answer us , but he should have never posted this in the first place.

I am 4 years shy of 20years of MMO playing , and yet have not been hacked once .
Simple Rules to follow
Do not use Third Party Tools
**Do not go to RMT sites**
Change your Passwords , write them in a Book if you cannot remember
**Do not go to RMT sites**
Keep off Sites that have RMT ads
**Do not go to RMT sites**
Clean your PC , keep anti Virus up to date
**Do not go to RMT sites**
Do not log in other PCs not owned by you
**Do not go to RMT sites**
DO not give out your Password and ID to nobody.....
**Do not go to RMT sites**

[Tsuneo]

Wait wait. The hacker was able to log in to your account AFTER you associated the mobile authenticator to it?

Can you please confirm that is what you're saying here, because that would make the authenticators worthless.

Even if a hacker had your login name and password they should NOT be able to log in to your account without the one-time code.

It sounds like the game doesn't kick you even if a token is added to the account or if the account password is changed which in turn means if the person who compromised the account doesn't log out they don't have to go through the new security measures.

[Kahlane]

[QUOTE=LordMaitreya;1240876]Most of them are gil buyers and are getting key logged on the rmt websites. Just like every other game............................[/QUOTE

I disagree. They are getting us another way