Guild Wars 2

Just tried to login today and was greeted with a message telling me my password was incorrect. Checked my e-mail, couple of password reset requests, one new login location verification request (Address: 114.37.250.197 City: Taipei Region: 03 Country: TW).

Nothing was taken from my account so I’m going to guess that location email stopped them. If my email had been compromised I would assume they would have accepted the new login.

Either way, my password is 100% unique to GW2. I have never used it for anything else, I don’t write my passwords down, and I have never told it to anyone.

This leaves only a few options as to how this could have occurred that I am aware of which I will leave to your imagination…

So, props to ANet for the verify login location security step, probably saved my 20 gold.

BUT, given that my password is unique to gw2… I would consider changing your password if you haven’t done so recently.

change youe email AND GW2 account password NOWWWWWWWWWWW!!!!
in few more hours OR tomorow your account will be strip naked…i experince it before

oh and remember to add aunticater….if not the hacker will add that for u

I’m not sure you finding a authorization email in your email account means your email account wasn’t compromised. If they had access to your account, they can easily access Account Security and delete any approved IP addresses. I have plenty of authorization emails in my email account from traveling and playing. But I no longer have any of the approved IP locations, because I have moved on from those hotels, and I delete them from the list on the Account Security page.

Sometimes account are compromised long before they are stripped. They may only use it for spamming Gold-selling, or as a bot farming, for a while.

Your assumption that your are no longer compromised is NOT valid just because your stuff is not gone.

1. CHANGE your email password NOW.
2. Check with your email provider to see if any unusual log ins have happened (note that YAHOO told me there had not been when I have proof at least one that I did not send came from my account). If the account has been compromised, abandon and close it ASAP.
3. Open a ticket with support to verify if your account was accessed from an unknown IP. If so, change your associated email immediately.

I wonder. Phishing emails can easily spoof the sender address. Maybe hackers spoof the sender’s email address when contacting CS, at times. Hmm…..

It is possible, but spoofed email addresses are pretty easy to spot and any decent spam detection system would (or should) immediately kick out spoofed emails. I would certainly hope Anet Support does something like that (but you could have a point).

On a side note, your theory would not be difficult to test….