Trion on Account Security

General Feature Image

CM Ocho has made a post on the RIFT Forums about the latest increase in compromised accounts being reported on the forums.

Briefly:

  • Several users (noticeably higher than usual) have been reporting that their accounts have been used to make unauthorized purchases of ArcheAge Founder’s Packs or RIFT-based purchases.
  • CM Ocho has indicated that “Trion Worlds’ security has not been compromised in any way. There has been absolutely no breach of Trion’s servers”.
  • CM Ocho suggests the likely culprits are “bots [that] obtain user credentials from various unprotected sites around the Internet, build lists of login and passwords, and try them on Trion’s servers”.
  • Hundreds of millions of such attempts have been occuring from over a million IP addresses in the last few weeks due to the hype around ArcheAge’s upcoming launch and RIFT’s upcoming expansion this year.

All those with unauthorized charges will be provided with refunds automatically.

[On top of the bots mentioned by CM Ocho, the latest surge in compromised accounts could be as an additional result of the 1.2 billion usernames and passwords stolen by a Russian crime ring as reported earlier this month.]

What Can Be Done To Increase Security?

Firstly, starting this Thursday, Trion will be adding in a new security feature to the Glyph client where you will be forced to verify your log-in by entering a code sent to your e-mail (or your authenticator’s code) should you end up trying to log into the game from a new computer or a different location from usual. This is like RIFT’s coin-lock system.

Other measures:

  • Keep usernames and passwords different across accounts you own online;
  • Change passwords every so often;
  • Don’t make your password too obvious like ‘qwerty’ because bots are bound to give those a go;
  • Do not save payment details on any site. When purchasing from – say – the RIFT Store, remove your payment details after every purchase to prevent unauthorized purchases.

Check out CM Ocho’s full post here.

Tags: ,

Categories: Archives

No comments yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

<span>%d</span> bloggers like this: