PSA: Real Money Traders and Account Security

[Zeblade]

dude.. your not helping. You keep bumping something as if SE is clueless here and has not done a good enough job in the past or now and needs a "professional IT technician". Sorry but you are wrong on some things. Cracking passwords 8-35 and so on with the right tools can take a day or less. This is if they want in, you clearly never hung around, did any kind of hacking or studied very hard on this but copy and paste. Most gold sellers are not just waiting for someone to come to their site so they can then script or hack or download blah blah. That is a billion dollar biz. Its opening emails from some so called mmo telling you your account has been hacked and ask you to CLICK THE LINK is one simple way.

Anyway

[Endy]

Please refrain from stating falsehoods about security. This post exists for the sole purpose of describing what the user can do on their end to protect their accounts to the best of their ability and does not concern itself with Square Enix's own security, as that is beyond the user's ability to influence.

If you cannot read, then I'm afraid no one will take your claims seriously. Please move on.

[ZohnoReecho]

Also avoid any dictionary word for your password. If it's a simple word, it can be 30 characters long but it will be easy to figure out. Crackers have a list of common words/dictionaries.
Always try to mix multiple words, acronyms, alternate case and put some numbers and symbols in there too if possible. The more complexity you add to it the harder it will be to crack.

[Deadra]

These are good points but I would also like to bring up some important points you missed when it comes to online gaming.

SE does address this the same way Origin does with SWTOR, and Blizzard with WoW. Security tokens. You can purchase a physical token or use the Android or Apple software version. So there is FREE protection out there to deter the would be "Hacker"

If you pay attention to the spam in game, most RMT advertise power leveling as well. Certain individuals want to be cap and in the best gear without actually doing anything, so they are enticed by this. Why? /shrug. They give away their information and actually PAY for it.

Keep in mind these RMT are in business because there are a lot of lazy people out there. So yes they can hack, but why bother when people are giving it to them? Also, what is the big deal of having your character name , server and lvl in these forums. Who cares, all the other MMO's do the same sheesh. I mean if you go buy services from RMT, You're giving it to them anyway.

I work in computer security myself. So you received an email supposedly from SE or any other game you play, but it was actually a fake? Again 13 years gaming, only emails I get, come from the actual company. So if you are getting emails, its either a giant coincidence, or you're being tracked. Check you security and cover yourself.

Another thing, people who played previously as well as new players. I imagine that some V1 players sold off there accounts, if they haven't played or had interest, how were they hacked? No they sold them, I would bet money on it.

New players distraught over issues, scramble to get ahead after missing 2 days of play time, have to get ahead, have to buy my fun and adventure in a new game...........

If you visit an RMT site, well........... Hate to say it, you made your bed.

I've been playing MMO's for 12 years, I've been "hacked" one time. My ex apparently sold his account to some site and they gathered all information from his computer and got mine. BUT since then I've had security tokens on everything I play and have had no problems since I don't buy or trade with these people.

Remember, SE has a task force dedicated to all this. They have always been hard on those who don't play buy the rules. As of the 6th, 518 accounts Banned. Also remember, if you are buying services you're as guilty as the RMT. Remember the selling OR buying of SE virtual property is against their user agreement. So buyers face the same punishments.

Keep away from the sites, download and use the security token or buy the physical token. You will be safe.

[Endy]

Also avoid any dictionary word for your password. If it's a simple word, it can be 30 characters long but it will be easy to figure out. Crackers have a list of common words/dictionaries.
Always try to mix multiple words, acronyms, alternate case and put some numbers and symbols in there too if possible. The more complexity you add to it the harder it will be to crack.

This was for the most part true, though terribly dated. In reality the online standard is to use complex passwords and we are told most everywhere we make a password to do so. Most crackers therefore do not actually use dictionary attacks anymore, and due to the way dictionary lists are formatted, stringing words without spaces is all the complexity one would need until the base programming of cracking software changes across the board. Also, complex passwords offer no additional security against the more common brute force techniques used today.

[Endy]

I work in computer security myself. So you received an email supposedly from SE or any other game you play, but it was actually a fake? Again 13 years gaming, only emails I get, come from the actual company. So if you are getting emails, its either a giant coincidence, or you're being tracked. Check you security and cover yourself.

Being completely honest, I too work in the security industry. However, I also play many games and am careful with where and how I supply information, and yet (despite never actually having one) still get the occasional email about my non-existent Battle.net account. Yes, we must practice security, but we must also be aware that sometimes breaches of our information can occur outside of our control (as was the case with the Sony hacks mentioned in previous posts). One can be perfect about their security and still be vulnerable due to blind luck, so layering defenses as you've said is always the best plan.

Either way, whether an expert or not it is best we not speak as though we know for a certainty that certain things happen or don't happen, as such a view easily leads into arrogance and complacency.