please get the hacker off my account

[Pronsolo]

I really dont think this has anything to do with SE in most cases.......

[Reinheart]

I really dont think this has anything to do with SE in most cases.......

Reason why I'm asking to provide those informations in the 2nd post of the thread so devs can further investigate.
All these related posts mentions their account got hacked but there isn't much information to go by to figure out which sites to avoid or what to expect from these hackers.

For the most part if there was a simple IP check, I don't see this issue happening as often as I'm seeing recently on this forums. I do understand some have Dynamic IP and their IP changes frequently so there needs to be some extra security there, which can be the Security Token. I remember the IP check being there before, dunno what happened there.

However, from reading threads on this forums, right now you can bypass that passign some simple session_id information which doesn't expire...

If it was me, I would rewrite the code so that when a Security Token is used, it passes through the initial login THEN record the current IP address and if any one tries to login from outside the IP using sesssion_id it shoudl flag. Security Token is unique code that is updated every time it's used so unless the hacker is quick enoug hand is doing the man-in-the-middle hack at that exact timing, this should make it much much harder to break. Using the security token will update the IP every time so it won't affect the players with Dynamic IP or playing from different locations from time to time.

[fixitman]

If websites can obtain your general location from your IP address, SE should be able to do it as well. A basic location check (instead of just an IP check) would likely do wonders for slowing down these issues, until they are able to do something about the session ID concern.

[Yoohre_WildRiver]

If websites can obtain your general location from your IP address, SE should be able to do it as well. A basic location check (instead of just an IP check) would likely do wonders for slowing down these issues, until they are able to do something about the session ID concern.

SE does a location check , i know this because i went to seattle to visit my brother, tryed to log on my account and it was frozen immediately for suspicious activity.
i live in miami

this was the ingame login.

[necrosis]

SE does a location check , i know this because i went to seattle to visit my brother, tryed to log on my account and it was frozen immediately for suspicious activity.
i live in miami

this was the ingame login.

You don't have a keyfob. Get one.

[Avurach]

Greetings all,

We understand that you are having trouble with a compromised account. However, we are not able to resolve any account issues through the forums. Based on the information you provided, this support article on the Support Center may help to resolve your concern. If it does not, it should help you get started in contacting the Support Center to resolve your concern directly. Thank you!