Eaorzean bank?

[MPNZ]

So, there was a thread recently about an FC that had one of their members accounts hacked, and It really point to the fact that we may need a bank of sorts that would basically act as a layer of protection against hacking or outright theft to fraudulent spending, and even invest in funds that would lock that gil for a period of three months to acrue gil before players could touch it. Even an option to store an extra back-up or a more frequently archived version of our account data would be a totally great QOL improvement to think about.


Do you guys think this would be a good idea for players?

[Sanghelios]

Hmm, am i wrong when i think 99% of the time someone gets hacked, its their own fault by falling for obvious phishing mails and things like that.

[YatoShishi]

if you have a big fc with x members in it, and put xx amount of gil in your fc chest, you should always consider that someone might get "hacked" or just simply steals it. what you can do to prevent it is pretty simple, give the amount of money to a retainer and only pick out what u need for ur fc. thats how i would handle 190mil gil in a fc with over 100+ members.

[Niqote]

We have something. It's called a Security token. My physical 1.0 token is still working even with years of almost daily use!

[Mew_FC]

I aint paying those bank fees, screw that.

[Bonbori]

I don't believe it's a problem widespread enough to warrant such a huge feature to be created just for it. It's also not within SE's sphere of responsibility or even ability to compensate for players' mismanagement of resources, trust and security.

I feel that the game already provides a lot of tools to prevent such incidents. FCs have the ability to set permissions for company chest access, roster management, house management and other administrative functions. Responsible leadership would share those very sparingly, only with trusted people, preferably as few as possible, and only on a temporary basis when there's a good reason to.

And players themselves can avoid getting hacked by: not participating in RMT, not falling for phishing scams, using the authentication app, not hooking up one's account to any third party services, not sharing login information with anyone ever under any circumstances, the list goes on and all of it is common sense.

Of course, there are also cases of "hacking" and there isn't a reliable universal way of detecting whether someone is a prospective thief... but if a person like that somehow acquired enough trust to be granted access to the FC funds, a banking system wouldn't stop them either. What with the keys that the FC leader voluntarily handed them over in the first place.

So I guess the moral of the story is... An FC leader who delegates too many administrative functions compromises their FC's security, and the responsibility for any potential breach lies mostly on them.

[Iscah]

I can't see an "in-game bank" providing any more security than is already in place. The hacker is already in your account and has all the same rights you do to withdraw money from the bank.

If there was any mechanism that might provide better protection, it would probably be requiring a second approval for FC withdrawals - but even that would be vulnerable to the hacker-controlling-your-character inviting another character under their control to the FC, promoting them to have approval rights.

[Fhaerron]

Don't even need a security token.



Use something else then '123' for your password and don't go to scam links.
For example my password is 15 characters long, has multiple upper & lower case, numbers and symbols in it.

I use a similar password for other MMO's, the password for my email though is entirely different.
I should also note that I have 2-factor authentication for my email and by default is set to not receive any and all emails from every source. The only email that get's trough is from the addresses I personally put in the whitelist.
Doesn't even take long to setup, the only thing you have to remember is to whitelist the emails if you sign up to a new online game or service.
The other thing I use is a script blocker in my browser, and this in my own opinion is the best protection you can ever get.

Some may find this a little overboard but I've never been hacked since I've been using this over a decade ago.
I actually got hacked once and that was my Guild Wars 1 account back in 2007 when I was a kid. Since then I started doing the above and I never got hacked again.

[MPNZ]

Hmm, am i wrong when i think 99% of the time someone gets hacked, its their own fault by falling for obvious phishing mails and things like that.

It's about offering a better way protecting and restoring digital property, and possibly giving admins and GM an easier method of tracking it's movement et cetera. All security measures will have weaknesses

if you have a big fc with x members in it, and put xx amount of gil in your fc chest, you should always consider that someone might get "hacked" or just simply steals it. what you can do to prevent it is pretty simple, give the amount of money to a retainer and only pick out what u need for ur fc. thats how i would handle 190mil gil in a fc with over 100+ members.

So, basically someone you can trust or a separate account with it's own individual security systems, individual identity for cover, and passwords?

We have something. It's called a Security token. My physical 1.0 token is still working even with years of almost daily use!

Very true

I aint paying those bank fees, screw that.

LOL, I really love banking and investment systems in games like Xenosaga and Majora's mask, so being able to like invest in Aljmina and sons (sp?) and clan centurio for thing like materials and decreased centurio seals costs for items. And, the ability to invest in psuedo-mutual funds/IRAs, stock&bonds, et ceterais something that would be really cool to introduce in MMO's, imo

I don't believe it's a problem widespread enough to warrant such a huge feature to be created just for it. It's also not within SE's sphere of responsibility or even ability to compensate for players' mismanagement of resources, trust and security.

I feel that the game already provides a lot of tools to prevent such incidents. FCs have the ability to set permissions for company chest access, roster management, house management and other administrative functions. Responsible leadership would share those very sparingly, only with trusted people, preferably as few as possible, and only on a temporary basis when there's a good reason to.

And players themselves can avoid getting hacked by: not participating in RMT, not falling for phishing scams, using the authentication app, not hooking up one's account to any third party services, not sharing login information with anyone ever under any circumstances, the list goes on and all of it is common sense.

Of course, there are also cases of "hacking" and there isn't a reliable universal way of detecting whether someone is a prospective thief... but if a person like that somehow acquired enough trust to be granted access to the FC funds, a banking system wouldn't stop them either. What with the keys that the FC leader voluntarily handed them over in the first place.

So I guess the moral of the story is... An FC leader who delegates too many administrative functions compromises their FC's security, and the responsibility for any potential breach lies mostly on them.

I can't see an "in-game bank" providing any more security than is already in place. The hacker is already in your account and has all the same rights you do to withdraw money from the bank.

If there was any mechanism that might provide better protection, it would probably be requiring a second approval for FC withdrawals - but even that would be vulnerable to the hacker-controlling-your-character inviting another character under their control to the FC, promoting them to have approval rights.

The responsibility of securing and protecting the funds within a bank is the responsibility of said bank, and because they are keeping watch of their gil within the system: they are more apt to keep tabs on the movement of said gil by design, in theory at least

Don't even need a security token.



Use something else then '123' for your password and don't go to scam links.
For example my password is 15 characters long, has multiple upper & lower case, numbers and symbols in it.

I use a similar password for other MMO's, the password for my email though is entirely different.
I should also note that I have 2-factor authentication for my email and by default is set to not receive any and all emails from every source. The only email that get's trough is from the addresses I personally put in the whitelist.
Doesn't even take long to setup, the only thing you have to remember is to whitelist the emails if you sign up to a new online game or service.
The other thing I use is a script blocker in my browser, and this in my own opinion is the best protection you can ever get.

Some may find this a little overboard but I've never been hacked since I've been using this over a decade ago.
I actually got hacked once and that was my Guild Wars 1 account back in 2007 when I was a kid. Since then I started doing the above and I never got hacked again.

I've actually had to explain why people install adblocking programs and such, so I totally get this

[Kaethra]

Hmm, am i wrong when i think 99% of the time someone gets hacked, its their own fault by falling for obvious phishing mails and things like that.

It may just be 99% of the time. I had a WoW account hacked once after not playing the game for over 30 months. Password on that account was old and not used for anything else. Didn't even know it was hacked until I got an email from Blizzard saying the account was suspended for suspicious activity. Decided to put in a ticket and tell them that I hadn't logged in in nearly 3 years. They restored everything back to the way it was on my last login but let me keep some of the things the hacker obtained. As well as the expansion they paid for. The Blizzard rep even congratulated me on getting the free expansion out of it. Didn't take terribly long for them to respond and rectify the situation.

But anyway yeah I agree that most cases people simply need to take better care of their browsing habits.