Another nail in the coffin from EA?

To go back to the original topic of this thread -

"chertosha;d-261664" wrote:
In the last couple days I heard from lots of people, just playing the game as usual, receiving these kinds of messages:

"We have reset your EA Account password. We know this is an inconvenience, and hope you recognize that we take the safety of your personal information seriously.

What happened?
After detecting potentially suspicious activity associated with your EA Account, we reset the password to protect your personal information. At this time, we do not think the suspicious activity is the result of unauthorized access to EA databases. We think the activity may be related to issues like phishing, using weak passwords, logging in from shared connections, or using the same password on multiple websites."

This happens repeatedly, for no consistent reason I could discern. One hypothesis is that people login the same account from different ip addresses and then this happens. But that is not always the case. Probably some ips or combinations of ips EA treats as more suspicious than others. Seems completely random to me.
Are we now supposed to always login from one IP to avoid this constantly reappearing?"

Security matters aren't discussed - other than in general terms. But as this isn't happening for a consistent reason then the hypothesis may be false. The 'rules' allow logging in from different locations and computers.

How often are we supposed to change passwords now?

Good account security of all accounts in all contexts (not just on EA or for the game) would indicate that passwords should be changed regularly and not reused.

This is extremely inconvenient!

Yes, it's very inconvenient, but don't blame the messenger, blame those with nefarious intentions who try to guess and hack their way into accounts.

By the way, lots of accounts are not even associated with any emails to start with and have never changed passwords. This shuts down the game for those accounts altogether.

This isn't the first time it has been raised that dormant or inaccessible accounts are being used. Life on the internet has changed over the years, 'free' email accounts from (in the UK) the internet service provider become inaccessible when changing broadband supplier. Part of the responsibility of those playing a game and using a login which is an email address is that the email should be kept up-to-date. It's a common issue.

Note that this password reset happens even for the same person logging in from two different places (work and home). Can I only play from one computer now?

That's never been publicized and I doubt it is the case as recently I've logged in from different countries with different computers.

Think about collaboration within alliance. Collaboration and backup within alliance requires sharing logins. Is this meaning people cannot share their logins anymore? How are people supposed to do pvp and fight back during attacks in the middle of the night?

As already discussed in this thread, the sharing of login details has been against the rules of the game for many years and those playing a long time know it whether the rules are visible or not.

This makes the game completely unplayable!

The best alliances will adapt.

We demand that either this feature is removed, or an explanation is made about what this "protection" is supposed to protect against and how it works and whom it applies to, so that the community can adjust.

Removal of any security feature (if that is what it is) is unlikely be done on the demand of 10 000 players!

Finally, I agree with you that some indication of the rules that they are applying (or appear to be applying) would assist in the community to adapt, but it will allow hackers to adapt too!