Switch owner? Go enable two-factor authentication for your Nintendo account

    
8
Switch owner? Go enable two-factor authentication for your Nintendo account

Multiple sites are reporting this afternoon that Nintendo accounts appear to be under siege. Following a Eurogamer piece yesterday chronicling Nintendo account holders and Switch users who’d found their accounts were being coopted to purchase ditigal items. Today, while Nintendo has not specifically admitted to a breach, it told Eurogamer that it was “aware of reports of unauthorised access to some Nintendo Accounts and [is] investigating the situation.”

Nintendo has further recommended users enable two-step verification for their Nintendo accounts and then go through the account recovery process if they notice suspicious activity on their accounts. Hopefully it’s just a matter of people being careless with their passwords and not a larger-scale breach, but either way, taking the few seconds to set up 2FA is probably wise.

No posts to display

newest oldest most liked
Subscribe to:
Reader
Kickstarter Donor
Loyal Patron
Jack Pipsam

I did mine yesterday when I got an email saying my account had been accessed from Russia and Thailand.

The running theory like Arktouros said seems to be the issue is actually with the old Nintendo Network accounts. I use my Nintendo Network account as the method to log into my Switch Online account (or the new Nintendo account system).
I don’t know if that is the case or not, but if there’s a breach, it might be where Nintendo wasn’t putting all their attention, which would be the older system.

For those who don’t remember, Nintendo Network was/is the account system used for the 3DS & Wii U, a glorious few years when you didn’t need to use friend-codes. But Nintendo being Nintendo decided to scrap this perfectly fine system and make a brand new account system for the Switch, proving they don’t know what they’re actually doing with this stuff. But you could link them for a few cross-benefits, which I did and so many folks still use their Nintendo Network as their active login to the Switch Online.

Considering Nintendo I’m actually surprised this hasn’t happened sooner, or it has been and they didn’t know about it.

Random MMO fan
Reader
Random MMO fan

This is always a good idea to use 2FA for any account which supports it. And you do not need Google Authenticator like the article suggests, it is a very limited app which cannot even restore data from backup should you switch phones. Microsoft Authenticator should be able to generate same type of keys and their app can restore data from backup if you are switching phones.

Reader
Kickstarter Donor
Loyal Patron
Jack Pipsam

I could only see a prompt for Google Authenticator, is there a method to swap all that over to the Microsoft Authenticator I’m not aware of? I’ve only ever used that for my Microsoft Account with login stuff.

Random MMO fan
Reader
Random MMO fan

Microsoft Authenticator should accept same type of keys and QR codes as Google Authenticator, they use same standards. If you already added Google Authenticator – you need to remove it and repeat adding process but by using Microsoft Authenticator app instead. The other apps which support same standard might also work, I thing Authy might work.

Reader
Arktouros

Reading the article over at Ars mentioned that there was a twitter questionnaire that a lot of people had indicated it could be tied to the Nintendo Network ID.

Reader
EmberStar

The problem is, I don’t have a smart phone that could run the app. I have an ancient Kirk-style flip phone (that I barely use.) I suppose I will double check and probably change my password again though, it’s been about two months and my current one is only twenty characters long.

Reader
angrakhan

Pretty sure Google MFA can be configured to send a text to your phone so you shouldn’t need to have the app installed

Reader
Arktouros

Aren’t there also Android emulators that people run mobile phone games on?

Could those be used for other programs too?