i got a security email from my ubisoft account saying someone from germany had logged into my account. i contacted support and they were less than helpful. i enabled 2 factor on my account. few days later, someone from france has logged into my account, support still unhelpful. anyone else got security issues with ubisoft?

Are you sure the emails you got are from Ubisoft? They aren't phishing emails?

Have you got Siege on your account? Most accounts holding games like Siege, CS GO, Apex, Fortnite etc on their respective tend to be targeted by those wanting to flog your accounts. Just reset your password via their official sites (don't click any links emailed to you) and boom, nothing to worry about

the emails don't appear to be phishing emails but i don't have 100% proof and the account has no real value. just freebies and free weekends more than anything else.

The same thing happened to me (but I have absolutely nothing in this account, I didn't even know I had one), and the emails were real, because I could see that someone from this location did indeed log into my account at this time, and also a few months before that. But no new emails since I enabled two factor login.

I went through a period of this too. But if two factor is enabled, it shouldn't be an issue. Just don't click any links etc on the emails.

Um, "had logged into" or "had TRIED to log into"...? That's a vital difference.

- The former means that your complete credentials have been breached and you should change the associated e-mail and passwords ASAP!
- The latter just means that your e-mail is floating around the interwebs and some "1337 haxx0r" is trying to brute force a login by going through a list of weak/common passwords ("12345", "password", etc.). As long as you're using a strong unique password this shouldn't worry you too much.

Geolocation is far away from being good.
Could be the case, that your ISP is using unusual IP-blocks for your country, so that Ubisoft is locating you far off.
Happends to me all the time in another game. Times are right but far off from my position.

i told ubisoft but they weren't able to tell me. i'm guessing their emails are attempts. i have no reason to believe they are actual log ins

ok i'm following up because this hasn't been resolved. except now twitch is in on it too. with 2FA, users need a code sent to the email account, codes do not exist yet people are still logging in?

try this (also feel free to look it up first on tech sites etc), as a LOT of emails and associated info have been leaked / ahcked etc over the last few months by a variety of companies - and more in the long run.

https://haveibeenpwned.com/

Christ. Time to let loose this filthy e-mail address. Been around the block way too many times. I'm exposed!

My old email which I got rid of, was associated with gamestop and epic (Before the game store) and both places were getting hack attempts daily towards the end of that email.

I didn't get hacked because I use strong passwords, but obviously a database with that email got leaked somewhere where people try to get free games from hard working honest people.

It's possible your accounts might be from that database. That was about 8 months ago, and it takes them a long time to go through the whole database. I ended up deleting that email and setting my accounts up with multiple other emails. I know, I'm weird, but I'd rather have 5 email addresses I can go through in case one gets leaked.

Ubi I think I was getting phishing emails and they weren't actual attempts. You can usually tell if you mouse over the "From" or if you click "Reply" and it has gibberish in the To field, or when you mouseover the To address.

I got a lot of phishing attempts to that email tbh. And my poor family member gets penis enlarger emails daily even though she hasn't looked at porn in her whole life, much less gone to a suspect website.

Most people are just dicks, Timmy. I would change the email the ubi and twitch accounts are associated with, to either a new one, or an alternate one. I bet you still get "log in attempts" to the original email.

Uplay gets hacked all the time!

just use 2 factor

Don't use googles authenticator because it is a POS

just get the emails with the passcodes copy and paste the passcodes and DELETE the email completely even from deleted emails that's what I do they can't get my bloody account then can they?

I should be good - I'm using 12346.

Pretty clever, I'd say.