HACKED!

[ShannaraAK]

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

[lordjoosie]

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

If you really feel like getting a token and the other things that have been suggested aren't going to keep you from getting hacked, why would you have any interest in this game at all? A game where you're going to lose all your progress at any time and there's nothing you can do about it isn't worth playing.

I'm of the opinion that with the right steps you can take responsibility and control of your own account security. Get a security token Make a good password and don't use it anywhere else. Make an email account that doesn't use your character name and that you give out to nobody but SE. Don't buy gil. Don't visit RMT websights or open phishing emails. Get a good antivirus and keep it updated.

It's true that even with all of this, a talented hacker could still get into your account. But if you think someone is going to go through the time, effort, and expense to crack SEs security and totally overrun their systems, or circumvent all antiviruses and take control of your PC, rather than grabbing the literally THOUSANDS of accounts that could care less about security, and do none of the things I mentioned, you're out of your mind. They're running a business and the best business decision is to pick the low hanging fruit. Unfortunately there's a lot of it hanging low.

If you have really used a token and done all of the things I mentioned and still got hacked, I'm truly sorry and I suggest you do what I'll do if I ever get hacked. Run like hell, because if there's no way to keep your progress in a game there's no sense playing it.

[Zeronic]

No, she did not use a token, since we didn't knew that there was one for Iphone/android.
However, her accountname was picked for this game, and she doesn't have a small or easy password. She didn't have 1 specific mailaccount for a game but she does have 1 mailadres for games, thus only used before by ultima. She didn't buy anything from goldsellers (why would someone even do that?) And the only mail she got from square was one that said that she just payed for 1 month. No link in there, and she didn't click on any other kind of link like that.
Also for the above poster, so does this account to everything? I should assume that if I play sorta safe ( and not totally covered in ANY kind of security) that I can just play normally. If I don't give my information to anyone I should assume that I should not be breached.

[LamiaTrucido]

The "token is safer" myth is just that. A myth. You will get hacked with and without it. As my account has.

You aren't getting hacked without doing something wrong.

If you don't have a token and you get hacked - without having a virus, keylogger, or other malware on your computer, it was because you used the same username and password on your SE account as you did on another account/forum/etc and THAT was compromised, therefor your SE account got compromised. In this situation, you were hacked because you used poor judgement and used the same password on multiple sites (or alternatively used a incredibly simple password that was easily cracked). In this situation, it was your fault for using duplicate information.

In the case that you got hacked using a token, you had a piece of malware on your computer that interrupted your session, stole the one-time password, and then the hacker used it to log in and strip your account/use it to RMT/change your password/etc. In this situation it was your fault for having malware on your computer.

Both situations are the fault of the user.

Unless, of course, you would like to propose that someone stole the kernel to all the Digipass one-time passwords (like happened to RSA when China broke into Lockheed-Martin last year) and as a result have the ability to replicate your one-time password.

Of course, they would still have to know which of the (hundreds of thousands? millions?) of one-time password kernels are yours.