Preface:
I am not saying at any point that Mihoyo's Account Security is good with this post.
I've been advocating for months that they should improve their security and especially add 2FA.

However, I find it ridiculous that certain YouTubers try to get views through these Clickbait titles with their unnecessary panic, scaring away clueless gamers in the process.

By the way, I would like to apologize for my previous thread that could be viewed similarly.

___________________________________________________________________________________

Reading Network Traffic in COOP:
First of all, I want to show you that neither your IP addresses nor any of your private data such as Numbers, Passwords or connected Emails can be read by other players while in COOP using Programs.

So I joined my second Account which is connected to a different Router now reading the Traffic.



Incoming Traffic:
There are certain programs for this purposes with which you can redirect and read out the network traffic. The data you can intercept is the following:

1. This is the Source Addres (Server IP from Mihoyo)
   
   
2. This is my local Address (Local IP)
   
   
3. This is encrypted Data I receive while in COOP
   

Well, maybe you have already noticed at my point "1." that I wrote "Server IP from Mihoyo".
This means, If you join someone in COOP you won't connect to his own local server which would us allow to get his IP Address but we connect to Mihoyos official Server.

This means:

• the data we receive won't be data from other players and
  
  
• this data is encrypted so it would be difficult or even impossible to read
  

Outgoing Traffic:
By the way, the only information about your Account that is sent unencrypted to Mihoyo's server when entering COOP is the following:

1. Your combo_token which is basically useless
   
   
2. your region (os_euro)
   
   
3. your uid which is public anyway
   

In summary:
There is no exploit, no hack and no program that could allow someone to exploit the server data so that you could get hacked by another player in COOP just because you are in the same lobby.

And even if there would be, only unimportant information is sent plain to the server which would not give hackers the possibility to hack you.

___________________________________________________________________________________

How they could Hack you:
People warn that when you join players in COOP your Username and your User ID are visible.

This could indeed give a very low possibility to hack your account.
But why I say here "very low" more about this below:

Well this information only is not enough to hack an Account directly with any Tool or Exploit.
Especially the UID is totally useless. You won't be able to hack an Account with just the UID.
But your Username can be used to search for your Account in leaked databases.

If you were hacked on another Website before where you used the same Username and Password, the Hacker could try to log in to your Account with the same information.

In Summary:
This means that if you use the same Username and Password in Genshin Impact on several other Websites, there is a small chance that you could get hacked (only if your data has been leaked).


___________________________________________________________________________________

Why it's not that bad:
For the whole thing to work, however, your Account Name, i.e. the Name you use to log in, would have to be the same as your ingame Username. Otherwise, hackers are also powerless here.

And here the chance of being hacked is just as high as in any other multiplayer game.

Every other game where you enter an Account Name also shows your Username in Multiplayer.
Now any Player online can search in leaked databases for your Username and find out if you have been hacked before. So Genshin Impact is no more and no less affected than any other game.

So to say, "Oh my god this is such a big security problem, Mihoyo has to fix this" is inappropriate.

In Summary:
Genshin's COOP mode is as safe as any other multiplayer game.

___________________________________________________________________________________

Why it is very unlikely to get hacked because of COOP:
A Hacker who can hack thousands of Accounts at one day with publicly leaked databases wouldn't bother and waste his time to search several COOP servers ingame for users with good items, and then hope that their Accountinformation were leaked on a Website.

I estimate that 0.1% of all Genshin Impact players will have Accountinformation about them leaked somewhere on the Internet. For the Hacker to find exactly one of the 0.1% players in COOP who also has good stuff, uses the same account name and password and has not verified his phone number and email is almost impossible.

So it is simply not profitable for hackers to search for account data in COOP while they have a safe "source of income" with already leaked data.

So to say you can't brag about your 5 star charackters anymore because then you become a potential target of hackers is nonsense. You would have to be super unlucky to get hacked for that.

In Summary:
Sorry but a Hacker won't waste his time on your single Account while they can Crack thousands a day by just using leaked databases.

___________________________________________________________________________________

But I got Emails and SMS asking me for Verification Codes does someone Hack me?:
If you get such an email or sms, it doesn't necessarily mean that someone really hacked into your account. You can also get this email if someone enters your account name in the password forgotten function and then uses your phone number or your email reset option.

This way many people trolled already some players just by using their forum Usernames, entering them into the password forgotten function and then those people receiving those SMS and Emails were scared that they got hacked but in the end none of these people got hacked, they were pranked by users entering their Accountnames into the Password forgotten function.

In case you got hacked but also got those verification codes:
That's great news, that means that the person who tries to "hack" you

1. doesn't have the 2FA "bypass", because if he had one you wouldn't get a code
   
   
2. most likely can't steal your account as long as he doesn't have access to your email.
   

So all you have to do in that case is change your Password and the Person will be locked out.

___________________________________________________________________________________

How to protect yourself against that:

• Do not use the same Player Name as your Account / Login Name
  
  
• Do not use passwords that you have already used somewhere else
  
  
• Just play as you normally would and have fun, don't let that scare you off
  
  

___________________________________________________________________________________

TLDR:

• There are no exploits that can get you hacked just because you are in the same COOP lobby
  
  
• in COOP your data is encrypted and not streamed to other players and is therefore safe
  
  
• The only way you can be hacked is through your account name
  
  
• Genshin's COOP mode is as safe as any other multiplayer game
  
  
• It is very unlikely that a Hacker will waste his time with your Account in COOP