Two factor autenthication

[Elevenswords]

It has come to my attention this game has no form of two step autenthication in order to log in.

This , if it existed, would prevent any attempt of hacking into accs or protect accs from data base leaks.

An example of this is a player name issa who 1 day ago before this post is being made got all of his 3 accs stolen with emails changed and passwords changed aswell (note they all had different passwords) and the person who stole reset all of his accs so it would be impossible to get any progress ,the orginal owners made ,  on those said accs back

Another player named @oreo got his acc stolen and name changed for some odd reason.

All of these players claim they got hacked and they never shared accs.

I simply suggest 2 step autenthication should be added into the game to prevent such cases to even exist because an acc with 2 step authentication can never be stolen because the user who tried to hack the acc would also need the original owners phone number to get access.

[star]

a little extra security never hurt anyone. <3

[Crusade]

I totally agree, I don't think it's a hard system to implement, instead of having accounts leaked out of the blue, and then having to be chased around by players in support tickets and discord DMs, wasting more time than the former. Make this happen!!!

[Extravagant]

Add this rn

 

[Elevenswords]

The best part about this is that it shouldnt be that hard to implement and its also very crucial to avoid these kind of situations.

1 hour ago, Double said:

I totally agree, I don't think it's a hard system to implement, instead of having accounts leaked out of the blue, and then having to be chased around by players in support tickets and discord DMs, wasting more time than the former. Make this happen!!!

 

[Balcoin]

I've played games where you sign in and you have to put I a 4 digit code after to confirm the  being yourself tho it all comes down to people being able to remember those 4 digit codes if they he players made or automated lol or Rory could also just do security Questions 

 

Or if you sign in from a different ip address you have to supply the security code.

[Elevenswords]

27 minutes ago, Wanheda said:

I've played games where you sign in and you have to put I a 4 digit code after to confirm the  being yourself tho it all comes down to people being able to remember those 4 digit codes if they he players made or automated lol or Rory could also just do security Questions 

 

Or if you sign in from a different ip address you have to supply the security code.

this is exactly what i feel like nin needs. a simple code input after trying to log in would fix these issues.

[Elevenswords]

35 minutes ago, Enver said:

The amount of Support tickets it will create of people forgetting their code.

it could be a system like steam guard which generates a random code in your mobile device every 30 seconds or something like that

[Anna Primal]

i play swtor i use a  app that is link to my account and generates a codev ever 15 sec

[Ninjutsu]

We need this asap, RIP Issa E/F we were gonna go crazy in CE  

[Leiting]

This should've been a thing already when the first case of an Account getting stolen/hacked happened.

Google two step Authorization would be a nice extra security feature Nin needs to stop such cases from happening again.(At least on forums so emails and passwords can't be changed by not anyone else but only the owner.)

[Zabuza Momochi]

Yep, game needs this desperately, please add 2fa on sign in from any device not used in the past.

[Hageshi Date]

I'm not sure how it'd work but it's definitely a needed addition. 

[Hinokami]

The dark side of the force is strong, but not even we can pass 2FA.

Add 2FA and secure everyone's accounts.

[Elevenswords]

Just now, Hageshi Date said:

I'm not sure how it'd work but it's definitely a needed addition. 

something like a code generator would be ideal since it makes randoms codes every min or every 30 seconds.

[Nej]

Optional 2-Factor authorization would be really nice!

[Krem]

Thats a wonderful idea, i also had some friends that were hacked multiple times, first time usually all their skills werre deleted , then after a time same accuonts hacked again and reseted. The worst of it is that they were gold, bought many items, such kid of things should not happen in games where people spend real money as well. there shold be a little bit more of security,

[Ueda]

We've had no cases where a person who has gotten hacked did not get hacked because they either shared accounts, gave out their password, tried to sell an account.

Yes, our forum software comes with 2FA so that will help with them not getting their passwords changed. I can add that.
But it also comes with the new problem of people losing access to their 2FA and in turn their account - we'll have to manually verify people in those cases. I foresee that to be a much more common problem than being hacked.

[Ueda]

Added optional 2FA

https://www.ninonline.org/forum/settings/account-security/

[Elevenswords]

On 3/15/2021 at 6:36 PM, Ueda said:

Added optional 2FA

https://www.ninonline.org/forum/settings/account-security/

THANK YOU SO MUCH KING !

[Zabuza Momochi]

On 3/15/2021 at 6:27 PM, Ueda said:

We've had no cases where a person who has gotten hacked did not get hacked because they either shared accounts, gave out their password, tried to sell an account.

Yes, our forum software comes with 2FA so that will help with them not getting their passwords changed. I can add that.
But it also comes with the new problem of people losing access to their 2FA and in turn their account - we'll have to manually verify people in those cases. I foresee that to be a much more common problem than being hacked.

So 2fa would only be for the forum not for the actual client?
Just asking as the client is what most people are worried about, changing password can be reversed however reset accounts appear to be final.