Mobile Authenticator
At the very least they’d need the key stored in your account info on the website – which once enabled requires the MA to view.
I’ve had the authenticator for a while now, just wondering how much more it does.
(Seeing all these “hacked” threads makes me paranoid)
While it’s not impossible to get hacked with it enabled, the hacker would have to gain access to your phone and GW2 web account to get around it. Not saying some super-hacker couldn’t figure out a way, but if the NSA wants into you GW2 account, they will likely be able to swing it.
Fate is just the weight of circumstances
That’s the way that lady luck dances
ArenaNet Communications Manager
I think that mobile auth is a good idea, personally. Each person needs to make that decision, but I do believe it’s a good security measure, especially if there’s any chance that your credentials are known or may be gleaned by someone else (roommate, friend, use on other media like fan forums, other games, etc.)
Communications Manager
Guild & Fansite Relations; In-Game Events
ArenaNet
As long as you don’t respond to a phishing email by giving a malicious person your 6-digit number either via email or web site or sms or anything else (I’ve seen that happen with a different product at a company where I used to work), the mobile authenticator is a great service to use. I’d not go without it.