Something that Blizzard does that I think SE should look in to.

[Hed]

First off this is not a bashing thread This is about security of accounts.

Ever play WoW? I abashedly admit that I did for 3 years. However there is one thing that they did that was brilliant.

If you logged out from one IP address. Then someone tried to log in say, the next state/country ocean away they would automatically lock your account until you went in and changed your password. There was no investigation and no backlash to honest players. Except that you might lose some items or money that were loaded off your character while your account was accessed.

It's certainly a more sound tactic than suspending your customers for nothing.

Se needs to find something like this to do instead of banning their paying customers to the point that anyone who heard about this sort of thing would completely avoid the game. It certainly makes more sense than letting someone log in to an account that is NA based from China or where ever these bastards hail from. It may be a hassle if it happens repeatedly but I would rather this then locked out of my account for the next 12-18 days for something I didn't do.

Since I keep seeing people say that they already do something similar let me state it here. THEY DO NOT! My account was accessed as I slept. Stayed on long enough to spam for RMT sites. Apparently enough to have players report it. I NEVER received an email from them until 2 days after the fact and my account was already suspended. In fact I just made another point. What good does a "in time key" do you if you're say asleep? At work with no access to your key. Or if they fail to notify you?

[Elegance]

More games need to steal trions coin lock system imo, the moment your account is accessed from a location far from usual, your character gets "coin locked" and you get sent a code via email,lock is removed upon entering the code.
They can log in, but are unable to shout, mail, drop items etc.
All they can really do is earn you money O_o

[Zozorozo]

More games need to steal trions coin lock system imo, the moment your account is accessed from a location far from usual, your character gets "coin locked" and you get sent a code via email,lock is removed upon entering the code.
They can log in, but are unable to shout, mail, drop items etc.
All they can really do is earn you money O_o

I agree with this.

I also think they need to take a page from Atlantica Online. You have a 4 digit code when you log in from a different computer. Its input by Mouse (so a little more difficult for key-loggers)

[Maneki-neko]

More games need to steal trions coin lock system imo, the moment your account is accessed from a location far from usual, your character gets "coin locked" and you get sent a code via email,lock is removed upon entering the code.
They can log in, but are unable to shout, mail, drop items etc.
All they can really do is earn you money O_o

I agree, TRION's method is very good. Square Enix should copy it!

[Remn]

Good idea, i see a lot of MMO did that. It help prevent account hacking a bit, but not really help fighting RMT. (I think that what people are being banned for.)

[sasakusaku]

Rift Coin Lock was an elegant and seemingly simple solution for account security for sure.

Under impression GW2 does the same thing.

There is other ways to stop theft as well by making it pointless to hack accounts, steal gold, and re-sell it. Best way is to have SE regulate/sell their own currency and cut the criminal element out entirely. If RMTs can't make a profit and or encounter to many road blocks to do so, then they WILL move on; I guarantee it. If a game currency has RL value and there is a large demand for it, then the hacking will continue. Sadly this might mean pay to win, but I see no real good alternative.

[Amyas]

They already do this. Well, I know they send out warnings of suspicious activity and make you change your password, anyways.

[thoughtless]

They already do this. Well, I know they send out warnings of suspicious activity and make you change your password, anyways.

They sent out an automated email stating the termination of my account two days after I discovered I was hacked. No warning. No notice of a pending investigation. No evidence against me on their part. No instructions for me to contact anyone if this termination was done in error. Just an outright lifetime ban. I had to go on this forum to find a contact number since the email did not provide any way to contact Customer Support. I never visited any unofficial FFXIV sites since I only am available to play a couple hours per week. And I am aware of security measures since the agency I work for has about a dozen or so logins per employee which expire every three weeks, and require us to contact a call center with a supervisor on the line, as we state a secret hash ID, sing the star spangled banner, and hop on one foot.

If SE put even a fraction of the effort my agency has us go through in regards to security this thread would have no reason to exist. Instead, you see legitimate players get suspended for an economy SE created while the real culprits: the bots, spammers, and hackers continue on their merry way with no course of action.

[JayvirDeforte]

It's weird, because I tried to let my buddy log into my account during beta (he lives in WA and I live in MI) and an error popped up and SE locked my account until I changed my password. Do they not do that anymore?

As far as I was aware, this was supposed to happen until you manually disabled the option. One person I know that got hacked had actually disabled this, and as such, had no idea his account was accessed.

[Hed]

Good idea, i see a lot of MMO did that. It help prevent account hacking a bit, but not really help fighting RMT. (I think that what people are being banned for.)

You get suspended if someone obtains access to your account and uses it to shout for RMT. That is currently what I am going through.

They already do this. Well, I know they send out warnings of suspicious activity and make you change your password, anyways.

I recieved no email from SE until 3 days after my account was suspended. So I would have to say no, they don't.

It's weird, because I tried to let my buddy log into my account during beta (he lives in WA and I live in MI) and an error popped up and SE locked my account until I changed my password. Do they not do that anymore?

As far as I was aware, this was supposed to happen until you manually disabled the option. One person I know that got hacked had actually disabled this, and as such, had no idea his account was accessed.

My account was recently accessed by an unknown person and used to shout for RMT. I didn't change settings as far as security goes. Unless they somehow managed to mask their IP as mine. Suppose it's not beyond the realm of possiblity.