What's the problem?
Current Account Security controls do not provide protection for Remote access trojans (RATs) which allow an attacker to remotely watch and control an infected computer.
Examples
Bankpin is displayed on screen when an unknown attacker could be watching.
Authenticators will be bypassed if accessing from a trusted device that has been remembered or the session has not yet closed.
Why is it a problem?
Remote Access Trojans are becoming increasingly popular.
The Malicious actor can gain access to an account and trade all it's wealth.
What's the solution?
Introduce a means of binding an item(s) to an account. A suggestions would be to use a permanent item lock-key and/or a temporary item lock-key.
The permanent key locks an item to your account! cannot be undone.
The temporary key can only be undone with a pin-code (with no option to reset pin).
Why is it the best solution?
players will never lose their items EVER again.
Why is this a higher priority than anything else?
Enabling this will ultimately result in less support ticket claims for lost items and greater user satisfaction.
07-Jun-2023 16:19:25
- Last edited on
07-Jun-2023 16:20:00
by
Miss Alexis
