devtrackers.gg
[deleted]
We can't share the details, but all the required security procedures are in place.
[deleted]
We can't share the details, but all the required security procedures are in place.
I have a suggestion for jagex support. You should make players set up a 2 factor authentication when players sign into the game. For Example if a player signs into the game there should be a notification stating that (please set up a 2 factor authentication before playing) and if the player removes the 2 factor authentication from their account they won't be able to play the game without having a 2 factor authentication on their account.
We'd certainly be interested to hear how we can encourage auth take up, if we can incentivise it or have some other creative solution that increases auth take up that would be great, and we'd be interested to hear your thoughts on how best to approach that.
Live support needs to be added. They didn't even mention it in this post. Also ip tracking would make it trivial to tell if someone is the actual owner.
You are right, but this blog is about account security. Live support is a massive undertaking and a complex process if we are to ensure people are not held waiting in long queues, and we need to consider what type of support can be offered through a live chat system where user verification is challenging. One approach is to look at answer bots that can guide people to help in a 'live' experience, but still offer a traditional contact route to a human support channel if needed. We haven't scoped this yet but it's certainly something we have in mind when considering all support options we might introduce in the future.
[deleted]
Yes, that would be one element of allowing complex passwords to be set
I have done that For months now, Stew :(
OK .. you should get a response, ping me your account name and I'll check what's going on!
Please consider a better version of Jagex Account Guardian, that was amazing tbh.
Thanks for your comment, I recall from the days of JAG that it was actually quite problematic, people forget their answers, typo the answers, use spam answers (jelly1, jelly2 etc.) or set answers that can be easily guessed or obtained through social engineering. At the same time, I also hear people (like yourself) saying it worked well ... as mentioned in the blog we are looking at account security overall so it's good to have that context and feedback and we will explore all options.
So those of us that were banned for being “hijacked” (i dont believe this, that is just what i have been told) will we be able to get our account back?
If your account has been banned by the actions of a hijacker, you can already submit a ban appeal - there are a few outlier exceptions but as a general principle we side with the owner and remove the bans in these situations
I have a main account however about two years ago my friend logged into it and it was locked and I'm unable to recover it. If I tweet a jmod would that help in recovering the account? I have picture evidence of the multiple names the account used but yeah recovering is quite difficult =(
Nope, to recover an account we need to verify you are the owner and we just can't do that over Twitter - when your requests are denied does that happen quite quickly or does it take a while to hear back from us? If you are being denied quickly it means that very little (or none) of the base information you are submitting matches up, if it takes longer it's actually quite good news, it just means you need to improve the info a bit - and we usually let you know the specific areas to improve to strengthen the next request
Bank PIN is useful mainly because Jagex never asks for it outside of the game. If a website or email asks for your PIN, you immediately know that it must be a scam. Jagex should emphasize that when setting a PIN because it's a good way of spotting phishing sites.
That's a great point, I'll see if we can build that into our advice/comms. Edit: We've updated the Bank PIN Support Article to include this specif tip, thanks again :)
As a company it would be in your best interests to promote dialogue, however imflammatory it may be and "retaliate" with professionalism and transparency.
Instead, you're choosing to ignore serious security flaws in your game, silence those who speak out or flat out ignore them and then do your best to PR your way out of it.
Instead of demodding the player moderator, you could've messaged them and opened a dialogue about how you plan on tackling account security, instead you demodded them and are promising to post a blog in the future. This is just the wrong approach.
The blog was planned a while ago, and includes plans on improving security. It's not in response to this current situation. To reveal the contents of it to a P Mod ahead of other players doesn't feel right although I get your sentiment. Be assured, we are not ignoring the community or issues and nobody has been 'silenced'.
It’s understandable that this is the reason you removed his mod status, but it would be nice if Jagex would even COMMENT on the actual issue that everyone is angry about.
It sucks this dude lost mod sure but the reason the community is so volatile over this is because account security is a f**king joke and joggaflux does nothing but ignore it, redirect criticism of it, or start gaslighting other things like banning a mod for unmodly behavior. Please give us a break from the corporate facade and address the problem.
You are right about the account security sentiment, the next blog addresses this in far more detail than I could offer in a quick comment here though.
Thanks for the response. I understand as an ambassador for the company you have to support them. I think the community is being insane and overreacting especially considering they taunted all over the post to get a reply, and when you give it to them they shit all over you. You deserve a better community. But we also deserve better account security. I'm looking forward to reading the dev blog coming up
.
Now, the topic that triggered this demod is clearly emotive, and nobody (including my team) wants to see a player hijacked. It annoys us
Someone losing hundreds of hours of work "annoys" you. Omegalul
My internal voice would use another word, but trying to keep things professional.
Typical PR bullshit that's all talk with no action. Seen it a million times.
Also, are you trying to align yourself with that of a charity? f**king WEW LAD!
No of course not, it was an analogy of an organsiation and a volunteer relationship.
Hi everyone,
I wanted to offer comment on this topic. This discussion is about removing P Mod status from a player who had said in a social post that Jagex Support had 'showed a middle finger' to one of their customers. Many of the comments on this thread are based around account security, as the original social post was in relation to a player being hijacked.
I'd like to address the topic of the P Mod being demodded.
Firstly, this person did not get demodded for speaking up about account security, all P Mods have access to a private set of forums and meet with us from time to time, and in those situations they can be very forthright in their opinions, and we welcome that. P Mods are also welcome to offer constructive criticism on public platforms. This issue was not about the opinion being offered, but how it was expressed.
Part of the context missing from this current situation is that P Mods have guidelines that they agree to, and within those gu...
Read moreHey, your recovery attempts look OK but they are from an ISP/IP that has never been used on the account, and a lot of the info is compromised. You are not trying to set the email address that was used to unban the account as well. That said, other info looks pretty good, I've asked an account security expert to review it - no guarantees but if they are happy they will send a pass reset link to the email address you wish to set in your recovery form.
Can we DM, the problem is I set those questions a long time ago. I was a child and lived with my parents. I think I can get close to the previous password. The account has no value and the stats are not good. Runescape is just a big part of my childhood and modern say life and id like to recover my original account.
Sorry but I can offer far less help through DM than you using the recovery process, checking passwords for example - try the recovery route
I still cannot recover my super old account, made in 2005, Richkid1012
I've had a courtesy look for you, in your latest recovery request you didn't match a single password or recovery answer. Your request is not coming from an ISP that has ever been used on the account and your geo location has no matches. The creation ISP you are providing is also incorrect. The only thing that links you to the account is that you live in the same country. We are happy to help if we can, but we need a bit more than that as I'm sure you can understand.
I thought it was meant to be inquiries.
Ah right, I think they are fairly inter-changeable, inquiries may be more American-English but I'm not an expert!
First paragraph under “Email Responses” first sentence spelling error just so you’re aware. Love the closer interaction on these very important issues though
I don't see the error .. what is it?