Quote Originally Posted by Alcyon_Densetsu View Post
Happened just a few days ago, lots of people being hacked while in-game. They shutdown the servers because of that. There are glaring exploits server side in this game, sadly. Security is nowhere near acceptable for AAA MMORPG from one of the biggest companies in the gaming industry.
—> http://forum.square-enix.com/ffxiv/t...ountermeasures
(sticky topic by Yoshi on this very forum)

Complemented by this player-made topic: http://forum.square-enix.com/ffxiv/t...hile-logged-in

Also, authenticators are useless when the SQL/server side is badly secured, and the memory/exe on the client side wasn't even encrypted at all (sessions ID were written in plain without protection for instance, dunno if they changed that yet). An authenticator is just one layer of security, certainly not the be-all and end-all of protecting data or access.
While it is true regarding SE's end of things. I have yet to hear about an authenticator account being hacked. Assuming there was no session id jacking going on.