Quote Originally Posted by Raim View Post
This is why you should use a OTP in the first place too. Makes it nigh impossible to be hacked. Even if you flat out told someone your credentials and current OTP, it would prompt them with a different OTP they don't have access to. And trying to remove OTP is impossible without that one secret key.
As I mentioned above, the fake forum sites have the OTP on the same page as the username and password, and the way those things work is it automatically enters it into the games login page to get onto your character right away and start sending the scam tells/steal your gil. Only the official sites have the username and password on one page, then when those are verified as authentic does it take you to the OTP page. Because of how the scam sites are, giving the current OTP to it still makes it work for the scammers. OTP is a good line of defense for people trying to brute force a password, but other than that, the scams where it is asking for it still get to those who don't watch for the tell tale signs of a scam.