I got this mail earlier today, at I recognized the e-mail address but didnt check the link when i clicked it and nothing pop up, so I quickly went to the forums using the bookmarked link I use and went ahead and changed my password to a longer and harder one. Should I be concerned or did changing the password correct the problem? I looked under my Security and there wasnt any current logins or authorized accounts I didnt recognize.
And I just checked the A Note about e-mail things and it was one of them ><. So did changing my pw to both my e-mail and GW2 accounts helped prevent anything before any damage was done?
Probably, but I would run a security scan and check for keyloggers. After that I would change the password again and probably the email, just to be sure.
A lot of people are getting those emails, including people who have never played Guild Wars 2. The would-be phishers are casting a w-i-d-e met, so getting such a mail doesn’t mean they know your credentials, or even that they know you have a GW2 account!
What I am concerned about is the emails that say “Someone is trying to access your account from [insert someplace not yours, usually Asia].” That usually indicates that the would-be account thief does know your credentials and is only being stopped by your having used e-mail authentication. (Good call on using that, btw!)
So phishing? Delete, but definitely it’s not a bad idea to change credentials. Authentication email from Outer Mongolia? Change your credentials, do not verify the remote IP (of course), and contact Support if you have continuing concerns.
Thank Gaile for your response. Please let someone know to get a physical authenticatior in the works that I could buy. I like alot of others dont have a smartphone so I’m not able to use the app as an added protection. I used one from Blizzard back between my GW1 and GW1 again/GW2 playing day of WoW. Have one similar from Ebay also but I would be really relieved knowing I had something like this as an extra layer that I only physically can touch, and keep on my desk and not some app that smartphones can be hacked too these days.
And yes thats a GW2 mouse and mousepad in the pic, I bought all the mousepads and the headset also. Eventually will get the Steelseries keyboard that was recently announced too
What I am concerned about is the emails that say “Someone is trying to access your account from [insert someplace not yours, usually Asia].” That usually indicates that the would-be account thief does know your credentials and is only being stopped by your having used e-mail authentication.
I’m so glad GW2 has this kind of forced authentication. It certainly helps to prevent accounts from being stolen. I can remember one of those emails when I had my account for just a couple of months. Someone tried to access my account from China… while I live in Europe, go figure… you can imagine what I went through at that moment.
I don’t know how they had gotten my password, but then again… it was a password I had used more frequently in the past on other sites (not so smart). Thankfully the password of my email was different, otherwise I had lost my account (and my email for that matter…).
Since then, I’ve changed my password to a more longer and difficult one. It’s a wonder I can remember it myself. But yeah, you definitely don’t want to have the same passwords for your GW2 account and email. Also, you can change your passwords once every x months, just to be sure.
Having had my original GW1 account hijacked, And I felt I had a pretty strong passsword on it. I highly encouage everyone to use any and every available safe guard anet has allowed us to have. Yes some of it can be annoying. But a few seconds is worth more than losing your game even if its for a week or two.
Having had my original GW1 account hijacked, And I felt I had a pretty strong passsword on it. I highly encouage everyone to use any and every available safe guard anet has allowed us to have. Yes some of it can be annoying. But a few seconds is worth more than losing your game even if its for a week or two.
Quoted for truth!
We all care far too much about our accounts, our characters, and our history to risk it. Use any security feature you can, and keep those nasty phishers and account thieves crying in the dark!
Thank Gaile for your response. Please let someone know to get a physical authenticatior in the works that I could buy. I like alot of others dont have a smartphone so I’m not able to use the app as an added protection.
I don’t want to derail this thread more but did want to point out you can get a “cheap” Android phone on eBay ($20 or $30 US dollars) and just not hook it up to any phone service. Simply use wifi to connect a Google account, then download the Google authenticator app to the phone and register it with your GW2 account. There would be no monthly fee, just the cost of the phone. It can be heavily scratched if you don’t care about appearance, and that would likely lower the cost. All you have to make sure of is that the device has an Android OS that can run the authenticator app.
Just think of it as big hardware token that happens to have an unused phone inside.
And if you’re concerned about someone hacking the phone, you’d greatly reduce that chance by only using it with wi-fi and not installing any other apps.
