Posted on January 31, 2008,

Square Enix Responds to Final Fantasy XI Account Phishing


Recently, a fairly large number of Final Fantasy XI players have been causing a fuss over their game accounts being stolen. As someone who had his Diablo 2 account hacked and looted (three accounts, in fact.. with quite a lot of level 90+ characters… but I digress), I know how awful it is to lose something that you’ve invested so much time and effort in. Of course, it pales in comparison to any losses suffered in real life, but in the gaming world, it’s tragic.

Not satisfied with the ‘Special Task Force Report’ posted on PlayOnline’s website, 1UP’s resident hardcore FFXI enthusiast, James Mielke, hunted down Square Enix Global Online Producer Sage Sundi and North American Online Producer Yasu Kurosawa for some answers that go beyond the copy/paste PlayOnline statement.

1UP: People are all nervous that their accounts, which have been vulnerable to keylogging programs, are at risk. Besides the blanket statement that SE issued shortly after a virus was discovered on FFXI fansite, what can you say to reassure gamers that their log-in info is safe?

Square Enix: We understand that several players have had accounts compromised recently. As announced earlier, we have already begun working to return the compromised accounts to the rightful owners. Also, for the numerous callers that previously reported similar matters to us, it is now possible for us to return the accounts to them as well. We will also continue to work with our community to ensure that issues, such as the fansite incident, are addressed.

1UP: Would you say that one effective precaution would be to check FFXI-related info sites on a separate computer than the one used to play FFXI?

SE: Although this would be an effective precaution it may not be feasible for all users. We recommend that only trusted sites are visited, such as those listed on our Community Sites link, as well as ensure that the latest virus protection software is installed and active. Please remember, however, that Square Enix cannot ensure that any websites not owned and controlled by Square Enix are 100% protected from malicious hackers.

1UP: Lastly, what sort of security advice do you have for players concerned about future login-info hacking.

SE: Again, we recommend that only trusted sites are visited and that the latest virus protection software is installed and active while browsing the internet. If you feel that a site is phishing for your user information or is installing malicious software on your machine please report it to us at

They confirmed that players on Xbox 360 and PS2/3 aren’t at risk, and this only is something PC players have to worry about. Read the full interview over at 1UP for more information regarding the situation, and just ensure that you’re careful with what websites you visit.

Join the Conversation   

* required field

By submitting a comment here you grant GameFront a perpetual license to reproduce your words and name/web site in attribution. Inappropriate or irrelevant comments will be removed at an admin's discretion.

11 Comments on Square Enix Responds to Final Fantasy XI Account Phishing


On February 14, 2008 at 1:21 pm

I just read this article and for someone who supposedly lost a LvL 90 job why not try asking the hard questions instead of the easy fluff questions

The recent actions by SE to return accounts was not an admirable act by SE to help the community as much as they would like it to seem that way. The hard cold truth of the matter is that SE had well over 2500+ reported cases since early Dec.2007 to the begining of Jan.2008 (still growing btw).

Part of the hackers M.O. was to change the password and Credit Card info effectivley locking the rightful owner out and SE’s response was because the Credit Card info did not match that you could not be the righful owner…no reg codes, previous billing info only what was currently entered could be used for account validation.

So guess what happens in early Jan. when SE goes to bill…that’s right the Credit Card info is invalid…Suprise Suprise and now SE wants to get the accounts back..why? so they can bill of course. Of course the gotcha with this is you recieve back an account stripped of all currency and gear.

When pressured about doing a rollback of charcters to a date when the account was not compronmised SE stalls for weeks and then they finally announce on Jan.31 a new policy…instead of item restoration for only dropped or lost now they can restore items that were lost thru a compromised account…catch is that it has to have happened within the last seven days.

It takes at least one day to report…then the account is locked for investigation this takes anywhere from 3-5 days, you now have to make a Senior GM call to request item restoration which is a 72 hour wait normally 2 days before they respond…guess what you went passed seven days.

You want to ask questions ask the hard ones:

“Why is it that if I want to return to the game after leaving six months earlier you can restore my charcter information but you can’t do this for someone who was compromised?”

“Why can you not modify your software to tie a security question before credit card info, passwords and other sensitive information can be changed to help prevent this in the future?”

“How does SE justify having the paying customers that had their accounts moved to a different server by the hacker, ask the returning customer to pay to transfer the charcter back?”

“How does SE ask the returning customer to pay late fees for the time the account was under hacker conntrol?”

These are all tough questions….for someone who was previously hacked I would expect you would have asked them since the answers we all recieve “These are decsions being made from way up…..I don’t see it going much higher than who you spoke to

Donald Lewis

On March 11, 2008 at 2:13 pm

:evil: yeah well why not ask them now are they even doing anything about it no……they say they are but there not my account has been gone for 2-3 months and all there worrying about is taking care of the updates there not worried about the matter of hacked accounts


On March 23, 2008 at 7:28 pm

Im worried about my credit card information being stolen. I dont remember the play online screens. Is there a possibility for identity theft because today I went to logon successfully did then midway an update i got a message in the lower right corner that someone logged in from another place. when i tried to log back on it said invalid password. please tell me if my credit card info can be stolen or identity theft is possible???????????????????????????????????????????????


On March 27, 2008 at 10:38 am


On June 19, 2008 at 3:29 pm

:arrow: :smile: :? ?? :idea: :eek: :


On June 19, 2008 at 3:29 pm

:arrow: :smile: :? ?? :idea: :eek: :

Ian retire from ff11

On August 9, 2009 at 12:08 pm

Yes i had my 2 accounts clean out and gm = men dont do crap and i never had 1 roll back on my 1 account and now they say you cant get unless it was locked down or you can only get 1 roll back per account my other was hacked before few years ago.So you get hacked 1 or 2 times its game over.Squre dont do crap to help there players that been hacked and i’m sure FF14 will be no different.Word to the wise dont get FF14 the costumer help will sure to suck and suck bad.Sure FF11 was fun but the costumer help was the worst i ever seen in all my life for any game and i give squre a be fat F ing zero in the customer help field.And i hope you get your a** sue for the poor costumer support.R.I.P. my players 6 years of my life down the tolite thanks.All i want was 1 roll back to dec 6 2008 before my linkshell leader rob the Ls and took all my crap that to much to ask for.I will not be getting FF14 due to this kind of poor costumer support.

Ian retire from ff11

On August 9, 2009 at 12:12 pm

Well squre dont care about its players so i will tell you this dont support squre ok and dont play ff11 or buy ff14 the support is poor and all they care about is money and not there costumers.Thanks.And x box and ps2/3 accounts have been hacked to so dont let them lie to u peace.


On November 21, 2009 at 4:08 pm

Costumers?? It’s not hallowe’en you dirty hick it’s spelled Customers, , get an education.


On February 20, 2011 at 8:13 am

square is the one behind all this crap,its the truth.square doesnt give a rats ass about us.the occult is what runs these games and the world infact.when they want to impliment some new security mesure they know they need a reason first.laugh if you want but its account was just hacked on 2/20/11,and i play on xbox 360 so i cant see any other way for someone to hack me but se doing it or giving hackers the info.oh well,i needed to stop playing that game anyway but just remember the ones presenting you the solutions are probably the ones causing the problems in the first place.