Help End Hacked Mc-Market Accounts

Status

DeletedUser372845

Deactivated
Feedback score
13
Posts
677
Reactions
109
Resources
0
Hey my name is scubadiverkitty1! I have seen to many mc-market accounts get hacked into since the time I've joined. I propose we should add something discord has, if you log into an account in a new location you must verifie the account on your email. This will make it harder to hack into mc-market accounts.
 
Type
Suggestion
Status
Denied
PebbleHost
High performance, consistent uptime and fast support. Minecraft hosting that just works.

Dad

MCMCon Entrepreneur
Supreme
Feedback score
62
Posts
2,404
Reactions
1,706
Resources
0
Hey my name is scubadiverkitty1! I have seen to many mc-market accounts get hacked into since the time I've joined. I propose we should add something discord has, if you log into an account in a new location you must verifie the account on your email. This will make it harder to hack into mc-market accounts.
That's pretty much already a thing. Just enable 2fa lol
 

Landon

wow!
Supreme
Feedback score
111
Posts
1,590
Reactions
2,040
Resources
7
Yeah, but I think this should be forced.
User security, is well, up to the user.

Two-factor authentication can be enabled here:
https://www.mc-market.org/account/two-step

Either via Authentication Apps, or via Email Codes. It's the users' responsibility to secure their account not only using strong passwords, but by having other layers of security. Users who don't secure their account via 2FA are susceptible to being hacked, but they are always held accountable in the case a user is scammed by the hacker.

I don't believe we should force 2FA on people, as some users don't like the extra work it takes when logging in, and it can deter newly registered members.
 

Sloth

Feed Me
Supreme
Feedback score
6
Posts
4,369
Reactions
2,660
Resources
0
2FA and the new location security measure that you can enable are more than enough to protect your account. If a user chooses to not enable these security measures and their account eventually gets compromised that's 100% their fault and they will have to pay whoever gets scammed back or receive a ban.
 

DeletedUser372845

Deactivated
Feedback score
13
Posts
677
Reactions
109
Resources
0
It should be auto installed for users that join, and they can have an option to remove this. I think that would help a lot, tbh.
 

Mick

BuiltByBit Owner
Management
Feedback score
28
Posts
6,413
Reactions
7,704
Resources
0
I think that a much better solution to this issue is for us to automatically set all accounts that have not been logged into for over a few months to require email confirmation before logging in again.

If you have any concerns with the security of your account, please enable 2FA.

Denied, thanks for the suggestion.
 
Status
Top