Why do you leave it on then? It's optional. And if you have to begin with because of the added benefits of security why not fix the cookie leak or whatever issue you might? IP address I can't explain but I run with dynamic IP address which changes regularly and I never get that e-mail from my home computer.

It's not really a problem. No other site I use but Steam has this issue and I very rarely access Steam via anything other than the client. If there was a problem I'd address it. But unless GOG introduces the same thing I've got no reason to.

reaver894 answered that question some time ago.

An option to verify the cell phone for account recovery would be nice. Like Blizzard does with battle.net. The user can choose to link their phone with their account. Battle.net sends a code to the phone, user enters it into the account to verify the link. Never have to touch the phone again until one day they can't log in. Account recovery sends a code to the phone to verify it's the right person.

I guess this is a feature only people who spend a lot of money on GOG would care about. If you've only got $50 in games on here, you wouldn't care because if your account is hijacked you've only lost $50. But if you have $5,000 on here, it would be option you'd like to have.

Choose a strong password for your GOG account. That all you need to do. GOG's password system is flexible enough to create strong and secure passwords.

Also, DO NOT use same password for your website accounts and your email. NEVER. Your email account must have a unique password, because if you use same password everywhere and someone finds your pass, then you're DOOMED.

Exactly why it should be here and why it should be optional.

I would at least want email verification before someone could change the email address of my account. Other than that there is very little someone could do if the got access to a GoG account.

I woulnd't mind if GOG.com would implement a system like using Google Authenticator. Not mandatory of course. :)

this sending out a verify code or something when a password change or email change is attempted would be a nice measure

As would I, I'm in Rural Murica, where reception bars can be hard to find

You do realize you're asking for online security from the same people who can't deal with a simple spam attack that's been going on for 3 days now?

If they take the step to do as steam does with email verification, they better check their speed of sending email to various location - my steam email verification comes instantly but on origin I have to wait 1 or 2 hours for it........

Why would a hacker want to hack GOG account?

Steal money? GOG don't store your credit card information so what's to steal?

Steal games? There are tons of illegal games out there that does not require hacks

So why we want security to make ourselves difficult in the first place? Anything wrong just show our email receipt to GOG support and that will solve it, if there is a hacker stupid enough to hack for GOG account......

They did added the new 2 step verification so thats a plus! On why they would hack an account when no payment information is stored is beyond me.

Once gog connect is ready..