Greetings Cosmonauts! I have received numerous messages from people who are asking for information on how to better keep their accounts safe. Here are some friendly tips from an Admin that will help you Passwords Do not reuse passwords (make sure anywhere you log in is different) Your forums password should not be the same as your minecraft or twitch or twitter passwords for example Do not use real words (keep the passwords random numbers letters and characters) Passwords should be a minimum of 8+ random numbers letters and characters This means use upper case and lowercase letters as well as numbers and characters like * or @ If you're worried about remembering your password you can use a password manager like LastPass it's free and available on your computer and mobile device Change your passwords after some time Cosmic has implemented password expiration on the forums to help you remember this and to help you keep your account secure /2fa (2 Factor Authentication or 2 Step Verification) Cosmic will be implementing an upgrade to their /2fa in the next short bit. /2fa should be active wherever you can such as: Minecraft servers that offer it (like all Cosmic Servers and other large MC servers) Forums Your email providers Your social media accounts (twitch, twitter, instagram) Online providers that deal with any money (like paypal or online banking) Do not share your account information Do not share your logs Do not allow people to "test screen sharing" you I'll be in the teamspeak for the next little bit if you have questions about the above tips and tricks! Feel free to join if you need an app suggestion or the like Some Questions I have been asked over the last 24 hrs: Was the Cosmic Client affected? The developers have double checked and assured me that CosmicClient.com was not affected. The unauthorized access was able to access the server support for the CosmicClient (the part that let's you roam for example). This is different and separate from CosmicClient.com and the CosmicClient you use and we do not have any concerns about anyone using the CosmicClient. Does the CosmicClient store our minecraft account information? Absolutely not. None of your login information is stored centrally by Cosmic. Cosmic doesn't even store session keys. Should I change my account information? I can understand feeling a bit nervous and there's no harm in changing your minecraft/2fa/forums account information if it will make you feel better. I personally do this every few weeks just because I'm very cautious. As a community, this incident is a good opportunity to reassess our individual security practices and ensure we use all the tools at our disposal to keep our information and accounts safe online.