RuneScape Brand New Security Option Whimsy: What Else Can Prevail Against SMS Confirmation In Intercepting Hackers?
Hackers' Capability
RuneScape, for sure, has a steady and die-hard player base more than any other games does in the world. As one of the oldest and most-updated games that even have made it into the Guinness Record, the game is now a renowned title in the game industry and its 2013 nostalgic version, Old School RuneScape, serves at least 50,000 concurrent players every day. However, like any other with unfailing fames, this game has been haunted by an online illicit group made up of hackers, scammers and spammers for all these years. Undoubtedly, security measures called for higher-level and more efficient protection over all RuneScape accounts by its players has been rolled out by Jagex, the game publisher, since the day one with spotting the first crime scene. For the illegal business and their practitioners, the technology has been evolved and the modus operandi upgraded too, however, it's a bit hard to ask for this game and its creator following suit with that, not even mention exceeding it or a clean sweep.
So let's take about how this kind of hacking works in the way that some of RuneScape couldn't even take notice of:
I have recognized the most important ways to get hacked and/or get your account stolen. Each of these methods is of common knowledge, and I will list them here:
1, phishing links via twitch Facebook Reddit
2, malware software downloaded via Facebook Reddit
3, third-party clients with little to no protection and/or fake plugins
1, phishing links via twitch Facebook Reddit
2, malware software downloaded via Facebook Reddit
3, third-party clients with little to no protection and/or fake plugins
If you put your info in Option 1, I'm sorry but the attackers already are on your account, and you have lost everything.
If you download malware software the attacker may be watching your screen so a bank pin won't prevent you losing your items, the authenticator may prevent their access UNTIL they learn how to access your email because it is stated here:
If you download malware software the attacker may be watching your screen so a bank pin won't prevent you losing your items, the authenticator may prevent their access UNTIL they learn how to access your email because it is stated here:
The authenticator is not a Jagex product. is supported by the email account of the user so I'm sorry again you have lost all your items.
New Security Option Whimsy
So again I have come to a solution I think it will prevent every option stated above, and I will, of course, make clear that is not mandatory, same as pin and auth, you can have it or not is just a plus, of course it will take money to Jagex, time, and probably it wouldn't be easy, but its the only way to ensure hackers don't get money thanks to Jagex and/or users with poor security.
Solution: Enable a phone number option to receive a notification everytime someone tries to access your account. How would this work and how would Jagex recognize a possible hijack? Easy if I had logged every day from the same devices and suddenly one day it has access from 2000km away of my devices THAT is 99% sure to be a hijack THE WHY is not relevant at this people all that matters is ensure my security.
Solution: Enable a phone number option to receive a notification everytime someone tries to access your account. How would this work and how would Jagex recognize a possible hijack? Easy if I had logged every day from the same devices and suddenly one day it has access from 2000km away of my devices THAT is 99% sure to be a hijack THE WHY is not relevant at this people all that matters is ensure my security.
So how is this mechanism working?
When a person/attacker try to log in I will receive a phone notification VIA SMS that an unrecognize log in has been detected, it would ask me if I recognize this log from X location and that to proceed I should tap
HERE. Previous option was that it may give me a randomly generated code but people don't seem to like that idea...
Now that I explained that method lets test its security.
Option 1, I by whatever reason didn't realize it was a phishing site and introduce my pass and bank pin into a phishing site, by enabling the new option, when the attacker tries to log in I will be suggested by Jagex my account has been breached and I, of course, would realize its a phishing site but since I didn't authorize all my items are safe
Option 2, I download some malware, and sadly an attacker can see my email my pass my pin etc., but when they try to log in to change the password or to steal items, what will happen? Automatically I will receive a message to my phone that notify me of that. So all my items are safe.
Option 3, I'm seeing a plugin that offers double XP through a third-party client of my choice so I will give it a try, oh.. it was false they now have access to everything but wait for thanks to having SMS confirmation enabled my items are safe because I didn't recognize the log.
As you see with this option, every account items are safe when my foolishness have exposed my data.
Why this has worked?
Because it doesn't work with the internet because the attacker can have access to my email to my screen to my keyboard, but they can't hack Orange Vodafone or whatever provider you have.
So finishing up, of course its my fault if I click bad links, download fake stuff, or use not authorized clients, but is Jagex duty to protect me from my own foolishness because that's why we pay the membership, to be able to play whether I'm an idiot a super smart or just some really normal person unaware of internet dangers...
Well, that's all, I hope everyone reads everything and say their opinions, and of course the idea could need improvement so I would love that with the help of all we can make Gielienor safe again, and of course, prevent hackers to gain insane amounts of money through stealing people items.
As with Jagex is jubilating for Runescape "coming-of-age ceremony", as one of the most-loved and widely praised OSRS Gold dealer, MMOAH also is cheering for a unique sales promotion in Runescape transaction area for all consumers. From now on, every order on MMOAH regarding RS Gold, especially OSRS Gold, will be given freely with exclusive coupon code "RS6" - Anyone can use this code in the checkout page to save your payment 6% off when you place an order of Runescape Gold order on our website. And more importantly, for anyone who yearns for substantial OSRS Gold with fast and secure delivery, our website guarantees that all of our Runescape order will be completed within 30 minutes otherwise a full refund will be issued immediately. Now we gladly inform you that One Million OSRS Gold on our site only cost $ 0.99! Plus there are a variety of Runescape accounts, power leveling services, and Fire Capes in the store for your selection. We are dedicated to improving every customer's purchase experience and enhance the credibility of our service in the long run. Choose MMOAH, no one can top our services in Runescape and you will get more than what you ordered!
评论
发表评论