At Nexon Europe, we take your privacy and security very seriously. Therefore, we've prepared some basic security-related information on how to keep your account safe and secure.
There are few things you should always be aware of in order to keep not only your Nexon account secured, but also any other personal accounts you hold.
How to make your password
- Do not use only words or numbers.
- Do not use recognisable words.
- Do not use words in foreign languages.
- Do not use hacker terminology.
- Do not use personal information.
- Do not invert recognisable words.
- Do not write down your password.
Make your password at least 8 characters long. The longer the password, the better. The minimum length of a Nexon Europe account password is 8 characters and the maximum is 12. Here are a few suggestions to greatly increase the security of your account:
- - Mix upper- and lower-case letters to enhance the strength of the password.
- - Combine letters and numbers, especially in the middle of your password (not just at the beginning or the end).
- - Include characters that are not alpha-numeric.
- - Special characters such as ! @ # $ % * ? can greatly improve the strength of a password.
Remember to pick a password you can remember. The best password in the world does little good if you cannot remember it. Use acronyms or other mnemonic devices to aid you in memorising your passwords.
With all these rules, it may seem difficult to create a password that meets all of the good criteria while avoiding the bad. Fortunately, there are some steps you can take to generate a memorable, secure password.
Avoid using the same password for multiple online accounts.
By following these rules, if one of your accounts becomes compromised, you should be able to retrieve your account. It is very bad practice to have the same password for your email and Nexon accounts. This way you may lose both of them without a chance to get your account back. All attempts to reset your password will be seen only by the person who stole them.
Use secure, hard to guess passwords. Avoid using standard, dictionary passwords.
By using standard, easy passwords like for example “qwer1234” you are greatly increasing the risk of your password being guessed and your account stolen. This is also why we require passwords to contain only letters and numbers.
Change your password frequently.
- Don't use only letters or only numbers.
- Don't use names of spouses, children, girlfriends/boyfriends, or pets.
- Don't use phone numbers, Social Security numbers, or birthdates.
- Don't use the same name as your username, or any variation of it.
- Don't use any word that can be found in the dictionary — including foreign words.
- Don't use passwords with double letters or numbers.
About account thefts
If you suspect that somebody has gained access to any of your online accounts, change your password immediately.
Is something missing in your account? Items? Nexon Cash (NX)? Experience points changed while you were on holiday? You were logged out by another session? This is clearly the sign of someone messing with your account. You should change your password immediately!
Avoid using untrustworthy devices to log in to your account.
Any public places like Internet Cafés, public HotSpots, unknown networks, Internet Kiosks, or even your classmates' devices are considered to be untrustworthy sources. Even connecting with a trusted device to an untrusted network is unsafe. Your account details can easily be compromised by using these.
Never share your account details with anyone.
Sharing your account details is against our ToU, but most of all it is the most common way to lose your account by either theft or abuse. With each person who knows your account details, and each device used to log in, the risk of your account being comprised significantly increases. In any case where you are account sharing, we will refuse account retrieval, so we strongly suggest that you avoid this.
Do not trust websites offering free/cheap Nexon Cash Items. When visiting links related to our services make sure they are not fake or phishing websites.
Any website not defined as an official Nexon Europe domain, such as, "nexoneu.com," offering cheap/free items and/or Nexon Cash (NX) and/or Gold should be considered unsafe and reported to our Customer Support. Such websites may imitate Nexon Europe pages, trying to lure potential victims into their trap. These sites are known as “phishing” and/or “scamming” websites. The only purpose of them is to steal account logins and passwords. No matter how great the offer they have for you, you should never give out information/log in to such websites.
Official Nexon Europe Domains:
How to protect your computer
Secure your PC by using AntiVirus, AntiSpyware, and Firewall software.
Even if no AntiVirus software is 100% secure it may still protect you and your PC against known threats. This is your first line of defence against all kinds of rogue software and malware.
Security Issue Reporting Guide for Users
However, we are aware that sometimes our users may unintentionally find unique vulnerabilities/exploits in our systems (website, game, etc.). Therefore, we would like to work together with our community to narrow down potential dangers and fix them as soon as possible. This means that users are still not allowed to deliberately attempt to test/hack any of our services, but instead are encouraged to contact us and let us handle the issue, avoiding potential legal dangers for the user.
What kinds of issues should I report to Nexon Europe?
Any kind of vulnerability in software, hardware, operating systems, websites, etc. that provides a potential to attack the system. An example of a vulnerability would be the hacking technique called “SQL injection”.
I think I have found a vulnerability. Am I allowed to further test it (penetration test)?
If you think that you have found a possible security issue, please contact our Customer Support and describe it in detail, right away.
Under no condition are you permitted to run penetration tests on any of our services. Doing so is forbidden and is not considered testing/security research, rather, it is considered to be hacking, and is therefore illegal and might result in a legal case. Using either known or unknown vulnerabilities (exploiting) may be considered illegal.
If you suspect or have any information about existing vulnerabilities in any of our services, you are encouraged to contact us via our Customer Support
. Our Security Team will research the issue and fix it as soon as possible.