How to keep your Hytale account secure

Securing your Hytale account is essential to prevent unauthorized access. Please follow each step meticulously to ensure the protection of your account and personal information.

Account Sharing

First and foremost no account sharing. The only person who should have access is yourself and no one else. Any actions which occur on your account are your responsibility. It is also your responsibility to secure your account and avoid becoming compromised.

Two-Factor Authentication

Sites and common companies offer Two-Factor Authentication (also referred to as 2FA or Multi-Factor Authentication). This security method uses a secondary device to generate a code you input before logging into your associated account. If your password is discovered by someone else, they will be unable to log in as they cannot generate the required code.

There are various ways for Two-Factor Authentication to send a code; the common ways are via a phone application such as Google Authenticator or a text message to your phone. We recommend you have Two-Factor Authentication on all your important accounts, such as email accounts.

Hytale offers Two-Factor Authentication, which you can activate here.

Passwords

All accounts online have passwords. We have some general tips to help you keep those passwords secure.

Password Security Tips

Using long passwords

Use passwords with at least 12 or more characters where possible - longer ones are better. This helps make your password harder for a person or machine to guess or brute force.

Using a range of characters

Use various character types, including letters (upper and lowercase), numbers, and special characters (e.g. !, @, #, or &). Avoid changing words with numbers, such as “P4aS5W0rd!” is still not a secure password.

Unique passwords for each account

This ensures that if one password becomes compromised, no others will be, and reduces the damage to your information.

If you struggle to remember passwords, you can use a password manager application; some managers come with built-in strong password generators when creating accounts online.

Email Address

Creating an email address or changing a current one by adding extra letters before or after the main part of your email address, such as "example+randomcharacters@email.com." Making the email address harder to crack for a person or machine.

Avoiding Becoming Compromised

When using the internet, remember not to give out any personal information. To help you with this, we have developed a list of ways to keep your information secure while browsing the internet.

Things to keep in mind when online

Always check the URL (address bar)!

When clicking on any links on the internet, always check the link to ensure it is what you expect. If it is anything else, it is likely a phishing link with the site designed in such a way as to steal your personal information, such as your login details.

For example, all of Hytale's official sites are linked below. Any site that is not one of these has no affiliation to Hytale, even if it claims otherwise, and should not be trusted.

• Website – https://hytale.com
• Store - https://store.hytale.com 
• YouTube – https://www.youtube.com/@Hytale
• Twitter/X – https://x.com/Hytale
• BlueSky – https://bsky.app/profile/hytale.bsky.social
• Instagram – https://www.instagram.com/hytalegame
• TikTok – https://www.tiktok.com/@hytale

If it’s too good to be true, it is!

A generally good principle to use everywhere. It almost certainly is if something seems too good to be true online. If unsure, avoid communicating with the person or people if something seems suspicious.

Never give out personal details or credentials!

This is the most crucial part. No one should ask you for any personal information or account details online. This information should be kept to yourself and not be shared with anyone.

Please remember that our team will never ask for your information!

One of the most common scams is to send you an invite to an unofficial Discord server and ask for verification with your email and verification code. 
Please report these users to our team immediately.

Data sharing with games and services.

Make sure only trusted apps and services have access to your account and associated data. Granting access to untrusted apps and services can compromise your personal information and be used for malicious intent.

Do not click on sketchy links!

If you are unsure whether a link is safe, you should not click it. 

Do not use third-party websites

Do not claim or buy tokens or versions of Hytale, it is probably a scam. Third-party websites are not authorised to sell Hytale versions or usernames without our consent, and any account purchased through it may be blocked. 

Do not respond to direct messages on Discord.

If you don't know the user, it's better not to respond to direct messages. Especially if they send you a link to another Discord server or a third-party website. Be sure to set your privacy options to avoid direct messages properly. 

Continually update passwords!

To stop unwanted visitors from accessing your accounts or information, changing your passwords throughout the year makes it harder for a person or machine to gain access if the information gathered is incorrect.

As a general tip, if you get a site asking for you to log in and you’re suspicious of it, try entering random details such as “username” and “password.” If it lets you “log in,” it’s there to steal your details. That said, don’t treat this as a reliable test either.

I may have been hacked; what do I do?

If you believe someone has gained access to one of your accounts, do not panic. We recommend you do the following:

1. Change the password for the associated email account.
2. Change the password for the associated account.
3. Attempt to recover the account.
4. Contact the Support of the service you are using.
5. Add extra security measures, such as 2FA.

Please contact directly our Support Service if you believe that your account has been compromised.