Thought this was pretty comical

Guy dares someone to get access to his account

Come hack my account for 100mil • r/2007scape

Gives email details + runescape account details.

They were both authenticated. Looks like nobody got in.

While it's not a 100 percent surefire way of protecting your account, since if someone recovers an account the authenticator gets auto-disabled (I believe), you're still susceptible. Jagex should really change this...

But this really shows how taking the extra 5 minutes of effort to secure your accounts with authenticators is a very good security practice.

Really makes me wish all games would offer authentication programs. League of Legends should have one IMO.

 

How were they authenticated? Using the app on your phone? "google authenticator?"

 

Good way to test if you're account is hackable.

Funny stuff.

 

Good question, I'm not sure.

I think the scope of his lesson was that almost nobody actually gets "hacked". Most people are careless, use same passwords for websites that become leaked in databases, or emails that get leaked in databases and aren't two factored. Your runescape account is only as secure as your email account. For some reason that fact eludes a lot of people.

Pretty interesting social experiment. I think a lot of people underestimate the value and power of authenticators. Sure, they're not infallible, but the average person trying to "hack" is going to be too lazy to try to bypass one nor are they going to be intelligent enough to.

 

The idea is pretty much if someone links your reddit history to something else you can be exposed in seconds.

 

I'm surprised how many people use real information for recoveries and account details and whatnot. I usually make up details.

 

Cool idea google chrome did this to "Hack me for 1 million".

 

Yeah this is very good IMO, authenticators are the ultimate security for rsps and rs nowadays.

 

yeah a really nice idea xD