2-factor authentication for login
complete
Anthony
complete
We've come up with a custom solution and have added the safety lock feature (https://highrise.helpshift.com/a/highrise---your-avatar-community/?s=account-settings-and-security&f=what-is-safety-lock&l=en) instead of 2-factor authentication.
This feature gives our players the additional security they had requested but does not hinder their gameplay.
T
Tounni
Can we set it to okay this IP address? If we have multiple devices or a trusted friend that uses our accounts, can we have like an “Okay device” list?
D
Dominique
Will this be optional though because I log out of my account all the time to use my backup account to buy blocks and It’ll just make the process s lot longer having to use a phone number or email, also I’d prefer to not give my phone number in cox I don’t want to get random ppl calls etc.
Anton @ Highrise
Dominique: It'll be optional :)
N
Nightiy
Anton @ Highrise: hey so will I get my items back if polices your under reviewing are changed?
Anton @ Highrise
N
Nightiy
Hey is this linked with the hacking thing bc I want to win my items back which someone guessed my password
Anton @ Highrise
under review
Anton @ Highrise
Merged in a post:
CHANGE POLICIES!
J
Jess
Right now when someone is hacked and unfairly taken advantage of and steals items, hr is "unable" to retrieve the items. Meaning, the person or hacker who has done the cruel action only gets away with it.. aside from being banned. But this does nothing if the player had no intentions of playing further anyways...
Also meaning, they are being supported by hr staff by them not doing anything in regards to retrieval of items.
It would logically make sense, that, if the items were returned back to the original player, the hacker has nothing to gain from completing such a terrible action.
There are many players this has happened to and affected. I now worry if I will be the next victim of someone trying to hack me for my items.
I can gaurentee I do not want to continue playing or putting money into an app that does not want to offer proper support or justice to their players paying money towards this app.
I truly hope that by explaining my concerns, some change can be made. I know I am not alone in this.
LNbridgette
get rid of the garden and make it unable to “delete” or “sell” the items. Maybe i’m wrong cause I don’t use it, but once a item goes in the garden can’t be “returned”. that way the hacker can’t make a video of them deleteing it, and would rather trade it so the chances of it still in the game is high. if Highrise really “48 hours return it “ from the trade or whatever :/ Just an idea don’t hate 🙏🏻
THIA
LNbridgette: this is a one time thing just because someone posted a video of them selling items at the garden doesn’t mean it’s going to happen again. many people including me use the garden all the time for bubbles and unwanted items that would be not fair to just get rid of it.
Anton @ Highrise
Hey everyone - thanks for flagging this. I totally understand where you're coming from, and I'd love to find a way to resolve this issue.
First, here's why we can't simply reverse trades:
1 - very often, by the time trades would normally be reversed, the items or currency have been traded many times. If we did reverse trades, many users who were not affected by the account tampering would have their transactions reversed. This would cause an even more serious issue than the account tampering to begin with.
2 - 100% of the time, the "hacking" was a password being shared and/or someone's trust being breached. I totally understand that this is frustrating. This is why we emphatically tell people to never share their passwords. We cannot be responsible for accounts where passwords were shared.
Our proposed solution:
1 - we will implement optional 2-factor authentication for accounts. That way, any time you log in to your account, you must authenticate the login via your phone number or an authenticator app (like Authy).
2 - we will continue to give folks who tamper with accounts 48 hours to return the items. However, if they do not return the items, we will ban their accounts and not reverse any trades, as usual. This is because of the first issue above.
Happy to hear your thoughts below. Thanks!
Jasmine Bennett
Anton @ Highrise: I’m vv upset that y’all do this , y’all don’t ever do anything about when people take stuff yet you can giveaway items hr pretty funny soon no one will play this game ik so many better CHEAPER games like Imvu and MSP I’ll never buy gold or trust anyone cuz y’all ain’t got my back if something bad happens y’all think we gonna move on from it and buy gold hell no
N
Nightiy
Anton @ Highrise: you do understand when I was hacked they guess my password AND they were happy to get banned I lost my items and it’s mot fair the guy who hacked me is probably still playing on a different device so why can’t you get my items the hacker is happy that I don’t have them and he can continue playing My items should be given back to me or what he trades them for And none of the hacking was my fault yet i still don’t have my items Which is really unfair
N
Nightiy
Anton @ Highrise: Yes the item they got from the hacking can be traded away In a trade to a innocent person but give what’s left of the stolen items from the account to the victim it’s better then nothing and you can tell if the account is a alt to one account or not
Phail
Anton @ Highrise: we understand that but what about items that weren’t sold? Some people got banned with the items on their accounts I feel you guys should return those items to people that haven’t been sold cause majority of the time the items arnt being sold but transferred to the scammer/ hackers alt account, also the person this post was made for her items got refunded to the garden? Why is it to hard for y’all to just return them back to her? They weren’t sold to anyone they were sold back to the game
THIA
Anton @ Highrise: people don’t understand that lowhla shared her password with a friend that’s why her items weren’t returned back
A
Arroz
Anton @ Highrise: looking forward to Two-Factor authentication that’s truly the best solution. 🙏🏽
Mike T
Phail : Nope, you can't do that. Then you'll have people get items back sometimes and others not, it's not fair. You know what you can do:
- Take account security seriously
- Set a 8 character minimum password, with punctuation and random capitalization. You can even use an app to generate and store secure passwords for you: https://www.lastpass.com/
- Don't share your email or re-use old passwords. They can run it into database leaks from old sites and find your password.
- Don't share your password with friends for any reason.
- If you fail to do any or all of the above and it results losing your item, take personal responsibility and don't expect someone to clean up the mess you've clearly caused yourself.
When I was 15 i had this happen to me, know what I did? moved on, learned my lesson, took responsibility, researched how to be more secure. Know what I didn't do? blame everyone but myself and cry. You guys are 20+ and act like babies, my generation saddens me to no end.
N
Nightiy
Mike T: the game is not like how it was and my password was guessed and I had a pretty hard password my items are on the account not getting used and the guy who hacked me has messaged me saying he’s back so I lost my items and he gets to stay how is that fair and I think they should auto trade back trades if the item is sold then give what’s left if the item was giving for free then you have to let that one go I played this game for 3 years it’s very hard to get where I was and I want something done about my problem
pluto
Anton @ Highrise: but until 2 factor is actually implemented, this helps nobody. Also, USUALLY the items get transferred to another account first so reversing that trade wouldn’t do anything. In fact, reversing all trades wouldn’t hurt anybody because they should be refunded whatever they paid for said scammed item, correct? Again, this makes no sense. It sounds more like y’all just don’t want to take the time to do this when someone’s items get stolen. However, this would EXTREMELY reduce someone’s reason to scam in the first place, if they end up with no profit and the person they tried to scam gets justice. And of course they would still be banned for scamming in the first place.
THIA
highrise isn’t going give lowhla back items because she gave her password out to a friend in the game, there could be endless ways of how another person ended up “hacking” her account. All those free items she has gotten wasn’t fair to the person who was donating.
Mike T
THIA: Exactly. They'll never learn the consequences of their actions. The first thing they do is complain like an entitled whiner and blame everyone but themselves, when that's the only person they should be blaming. Then to accept donations for an issue you caused yourself? pitiful.
Raquelx3
THIA: She didn’t ask for donations and no one was forced to donate? How is that not fair?
Mike T
Raquelx3: Because she whined and misrepresented what happened, blamed everyone else but herself to garner sympathy, then accepted donations from those people she misled? not a hard one is it.
Raquelx3
Mike T: She got her items taken without her permission. She didn’t lie about getting scammed just to get free items. Like I said, no one put a gun to someone’s head and forced them to help out another player. Not a hard one... is it?
Raquelx3
Mike T: I just wanna say that I was scammed almost a year ago and not once did I ever blame HR or beg or ask HR for my items back because yes, I read the guidelines/rules and I know that to a certain extent, it was my fault so I never expected for my items to be returned or thought HR was responsible for that. I let someone I trust borrow items and they ran off with them. I think what hurts me the most is how HR support handled the situation. It took them weeks to take action, and everyday I would log onto HR and see my scammers change accounts and sell my items which of course made it a harder job for HR to eventually take action. I remember they asked me for proof, I sent them tons and tons of screenshot proof and then hours later they answered me back saying something like, “Thanks! Would you be able to send proof?” like some sort of bot answering back to me, which made me really frustrated and upset. As much as I would love for HR to be able to give back people’s items, I do understand why they won’t. Also, this was before Anthony worked for support but it seems as if this is still happening. They’re taking too long to take action. I definitely do think that they need to fix the support system, and bring in more support so that justice can be served faster and more efficiently. But going back to the donations, I think it’s wrong to say it is unfair for people to help out others. As wrong as you think the person was to get scammed, they are still a person with feelings that are hurt they lost items because of a decision they made. So, if someone wants to be kind and help them out, I think it’s an amazing thing. I’ve seen you and others argue on some of the other posts on here, but I wanna have a respectable conversation with you because I’m done with this BS going back and forth. I hope you understand where I’m coming from, even if it’s a little bit.
N
Nightiy
THIA: a “friend” new me enough to guess my password what about me
N
Nightiy
Mike T: someone knew me enough to guess my password am I entitled to get my items back
Mike T
Nightiy: Nope, that's 100% your fault for setting an insecure password. How hard is it to take personal responsibility for your actions? Why didn't you have an 8 character minimum password with random capitalization and punctuation?
The password: nightiy557 is easy to guess. NiGhtiY55!7@ isn't. You've just changed a password that's guessable to one that would take a computer months+ to brute force.
Now explain to me how it's Highrise's fault you didn't take account security seriously?
N
Nightiy
Mike T: I’m not sure if you want to help people of Highrise or not seems you don’t want to but my password was pretty decent and shouldn’t i get my items back? They are on a serparate account and Ik which ones
Load More
→