News

[Important]Warning Regarding Phishing Emails/Messages

As we have informed you previously, we have confirmed that certain individuals are attempting to direct players to a fake log-in page for the Square Enix Account Management System in an attempt to steal (also known as “phishing”) their Square Enix ID and password, as well as other sensitive information such as birthdate. Please be very cautious as the contents of the fake websites and fake emails are being cleverly disguised.

In addition, we have also recently confirmed phishing attempts that direct players to fake pages imitating Square Enix's Support Center, as well as Lodestone.

In order to keep your personal information and game data safe, we urge you to exercise caution to avoid these emails and websites.

[Characteristics of the fake websites]

- The “s” is missing from “https” in the URL of the login page The fake website will display http:// in the URL

- The hyphen symbol is missing from “square-enix”
The fake website will display “squareenix” in the URL

- The letter “I” is replaced with either “l” or “j”
The fake website will display “square-enlx” or “square-enjx”

- The “com” in “square-enix.com” is replaced by various domains

* There is a possibility that these same scammers will continue to change their methods in their attempt to steal personal information. The above characteristics are examples we have confirmed.

[Characteristics of fake emails]

- The email will contain a message stating that a user agreement violation, suspicious activity, or billing issue has been confirmed and will ask the recipient to go to the fake website.
* A legitimate email from Square Enix may contain the same content, as the scammers copy and paste the text from our emails in most cases.

- The fake URL is hyperlinked to the body text
* The email will contain the official URL for the Square Enix Account Management System (https://secure.square-enix.com/account/ ) in the body text, but it is actually hyperlinked to the fake website.
* This disguise can be especially easy to miss, so please be very careful.

- The senders disguise themselves by using an official email address
* The scammers have been confirmed to use our official email address like the one below.
autoinfo_na@account.square-enix.com

In some cases, the sender will assume the identity of the Square Enix Account Management System or Square Enix MEMBERS representative and use the Japanese names for these services.
(Example: スクウェア・エニックス アカウント管理システム / メンバーズ事務局)

* There is a possibility that these same scammers will continue to change their methods in their attempt to steal personal information. The above characteristics are examples we have confirmed.

[How to detect a fake website]

Before you access the website:
- If you need to click on a link included in an email or website, please confirm that the URL is legitimate.
* The official URL for the Square Enix Account Management System is https://secure.square-enix.com/account/

- Check that the link displayed is not hyperlinked to a fake URL
* Mouse over the link in your internet browser or email program to display the URL contained in the link and confirm that it is legitimate.

If you already accessed the website:
- Confirm that the website is legitimate
*The Square Enix Account Management System website complies with EV SSL certification. If you access a legitimate website, your browser’s address bar will turn green and you will see “SQUARE ENIX CO., LTD.” as the website administrator on the right or left hand side. Before you ever enter personal information such as your Square Enix Account number or password, please make absolutely sure to confirm that the website is legitimate by checking to see whether the green “SQUARE ENIX CO., LTD.” is displayed as the website administrator.

*At these phishing sites, players will be prompted to enter their Square Enix Account number and password. Please be aware that on a legitimate site which shows “SQUARE ENIX CO., LTD.” as the website administrator, there will be no other pages apart from the login page that require you to enter password information, nor will any of our staff ever ask you for your password.

*For more information on EV SSL certification, please visit the website below.
https://www.symantec.com/page.jsp?id=how-ssl-works

*URL to the official Square Enix Account Management System
https://secure.square-enix.com/account/

*URL to the official Square Enix Support Center
http://support.na.square-enix.com/
http://support.na.square-enix.com/main.php?id=5382&la=1

*URL to the official Lodestone
http://na.finalfantasyxiv.com/lodestone/

If you have accidentally entered your Square Enix ID and password into the fake website or simply clicked on the false URL, you should run your anti-malware or anti-virus software and change your password immediately.

Changing your password
http://sqex.to/xPt

Also, we strongly recommend players to use a Square Enix Security Token which will vastly improve account security.

About the Square Enix Security Token
http://www.square-enix.com/na/account/otp/

Please also refer to the following article entitled "Warning Concerning the Security of Your Account":
http://na.finalfantasyxiv.com/lodestone/news/detail/7360774bfa00f42c1264a0d58b41eaefc2aeef7b

Keep your personal information safe! Keep your Square Enix ID and password secure!

Community Wall

Recent Activity

Filter which items are to be displayed below.
* Notifications for standings updates are shared across all Worlds.
* Notifications for PvP team formations are shared for all languages.
* Notifications for free company formations are shared for all languages.

Sort by
Data Center / Home World
Primary language
Displaying