How AccountShark Verifies Every Listing: Our Trust & Safety

What Account Verification Actually Means

Account verification in the secondary gaming market isn't one thing — it's a layered process designed to answer a single question: *is this account what the seller claims it is, and is the seller entitled to sell it?* Every reputable marketplace runs its own flavor of this process, but the underlying problems they're solving are universal. This guide walks through the full landscape: why verification matters, what it protects against, the core techniques used across the industry, and how AccountShark specifically handles it.

If you're shopping for a gaming account — or selling one — understanding this process matters. The difference between a smooth transaction and a stolen-card disaster often comes down to whether the marketplace actually checks what it says it checks.

Why Verification Is the Whole Game

The gaming account secondary market moves hundreds of millions of dollars a year. A widely-cited 2021 Stanford Internet Observatory report identified RMT (real-money trading) as one of the fastest-growing grey markets online, and the volume has only increased since then. Big money attracts fraud, and fraud in digital marketplaces has two main flavors:

Seller fraud. The seller doesn't actually own the account, or they do own it but plan to recover it via password reset after the sale. The buyer pays, gets access briefly, and watches the account get reclaimed within days.

Payment fraud. The seller lists a legitimate account but is paid with stolen credit cards. Weeks later the chargeback hits. The marketplace eats the loss, the original cardholder gets refunded, and either the buyer or the honest seller is left holding the bag depending on how the platform handles it.

Verification exists to catch both. A marketplace that doesn't verify either side is just a payment processor with a vague reputation — the job isn't to move money, it's to move it safely. The FTC has published guidance on online marketplace fraud that applies directly to this space, and most of the best practices below map to their recommendations.

The Verification Stack

Think of verification as a stack of independent checks. Any one of them can be defeated by a determined scammer; the combination is what makes fraud expensive enough to not be worth attempting.

1. Identity Verification (KYC)

Know Your Customer checks pull the seller out of anonymity. At minimum this means a verified email and payment method tied to a real person. At the higher end, it means government-issued ID matched against a live selfie — the same process banks use for account opening.

The trade-off is friction. The more invasive the ID check, the more legitimate sellers walk away. Most marketplaces land somewhere in the middle: tight payment/identity linkage without requiring a passport scan. Services like Stripe Identity and Persona have made enterprise-grade KYC affordable enough that even small marketplaces can run it for high-value listings.

2. Account Ownership Proof

This is the technical core of verification. The seller has to prove they control the account right now. Common methods:

Inline challenges — change a character name to a specific string provided by the marketplace, set a specific piece of text in a profile bio, or take a timestamped screenshot inside a private game area
Email/password review — the seller temporarily hands over credentials and the marketplace logs in to verify
Armory/API verification — for games that expose a public API (WoW's Battle.net armory, OSRS hiscores, FFXIV Lodestone), the marketplace can pull live data to cross-reference claims

Each method has weaknesses. Credential sharing creates a liability window. Screenshots can be faked. API checks only confirm the account exists and has certain stats — not that the person submitting it owns it. Serious marketplaces combine at least two of these. Blizzard publishes the full Battle.net profile API used for WoW verification, and community tooling like Raider.io exposes the same data in reviewer-friendly form.

3. Account History Review

An account can be legitimately owned but still carry baggage that would burn a buyer: prior bans, suspensions, appeals in progress, attached payment disputes, or subscriptions that auto-renew under the seller's credit card. Good verification digs into history:

Ban status. Every major game has its own system. Blizzard's Battle.net Account Management shows penalty history to the account holder. Riot provides a similar view in its account dashboard. Jagex publishes OSRS ban appeals publicly. A marketplace with mature verification will request these pages as proof rather than trusting the seller's word.
Previous resales. Accounts that have changed hands multiple times carry exponentially more risk. Each prior owner is a potential password-reset vector. Some marketplaces track this internally; others rely on the seller's disclosure.
Linked bans. Some games (especially Fortnite and Valorant) punish hardware IDs as well as accounts. A formerly-banned player's new account can be instantly banned when logged into from their PC. This is often invisible during verification and only appears post-transfer.

4. Payment Method Verification

On the seller side, the question is: can we pay this person without laundering money for them? On the buyer side: is this card actually theirs? Both sides matter.

Most marketplaces use Stripe Radar or similar fraud-detection layers to flag suspicious buyer payments before they complete. For sellers, verified PayPal accounts with matching identity data are the industry baseline. Crypto payouts complicate this — some marketplaces accept them; others ban them specifically because they make KYC unenforceable.

5. Original Owner Verification

This is the single most important check for account security, and the one most commonly faked. The "original owner" is the person who first created the account and registered the email/security questions/recovery phone. Non-original-owner accounts are vulnerable to recovery attempts from the original owner forever — Blizzard's account recovery process and most others don't time-limit these requests.

Verifying original ownership typically means matching:

Email registration date vs account creation date
Original IP geolocation (if the seller still has access to account security logs)
Historical billing records matching the seller's identity
Answer to security questions that only the creator would plausibly know

This check is expensive to do well. It's also where most marketplaces cut corners — and where buyers get burned.

Automated vs Manual Verification

The cheapest way to run a marketplace is to make verification self-service — let sellers upload documents, run them through an automated ID checker, and list the account. This works at scale but misses the majority of sophisticated fraud. Gamers specifically are good at faking screenshots and navigating automated systems.

Manual review catches what automation misses. A human reviewer who's seen thousands of listings knows what a legitimate WoW armory page looks like vs. a photoshopped one. They notice when a seller's gameplay screenshots are dated days after the listing was created. They catch subtle discrepancies in billing addresses vs IP geolocation. The OWASP fraud prevention guidelines lay out the general framework, but game-specific expertise is what actually catches scams.

The AccountShark approach leans heavily on manual review for high-value listings and automated prescreening for volume. Both tiers exist because both kinds of fraud exist.

Buyer Protection: What Verification Enables

Verification is upstream — it filters which accounts get listed. Buyer protection is downstream — it handles what happens if something goes wrong anyway. The two work together:

Escrow. Payment is held by the marketplace until the buyer confirms access. The standard window ranges from 24 hours to 7 days depending on the platform. Escrow.com documents the general mechanics for any online marketplace, though game-account escrow is typically handled in-house rather than through third parties.

Delivery verification. Before payment releases, the marketplace confirms the buyer has full access — not just a password, but control of the recovery email, security questions, and 2FA. This is the step that actually kills most post-sale reversal attempts.

Warranty periods. Some marketplaces offer 30-90 day warranties against specific failure modes (bans that weren't disclosed, account recovery by the original owner, undisclosed account history). The fine print varies wildly — always read it.

Chargeback protection. Credit card payments are reversible for 180 days under Visa's chargeback rules and similar Mastercard policies. Reputable marketplaces either self-insure against this or use payment methods like verified wires, crypto, or gift cards for high-value transactions to limit exposure.

Red Flags: For Both Sides

If you're a buyer evaluating a marketplace or a specific listing:

Too-low price. An account priced at 50% of comparable listings almost certainly has something wrong with it — an undisclosed ban, a prior owner still has access, or the seller knows something the buyer doesn't.
Instant delivery with no verification window. If you can buy and immediately get credentials, the marketplace isn't doing meaningful verification. Legitimate high-value transfers take hours to days.
No escrow. Direct seller-to-buyer payment with the marketplace as a listing board only is not a marketplace — it's a forum. The risk falls entirely on you.
Vague warranty terms. "Satisfaction guaranteed" isn't a warranty. Look for specific scenarios covered and specific timeframes.

If you're a seller:

Buyers asking to move off-platform. "Can we just do this on Discord?" means they want to bypass chargeback protection. Don't.
Rush requests. Urgency is a fraud pattern. Legitimate buyers aren't in a hurry to beat the escrow window.
Suspicious payment methods. Any marketplace that lets buyers pay with gift cards, prepaid cards, or unverified crypto wallets is shouldering fraud risk on your behalf — and if they fail, that risk lands on you.

How Competitors Handle It

Every major marketplace in this space has a different philosophy, and buyers should understand the tradeoffs:

PlayerAuctions runs what they call a PowerSeller program with tiered verification. Established sellers with transaction volume get lighter review; new sellers face heavier manual checks. Their trust and safety documentation is public and reasonably thorough.

G2G leans heavily on automated verification with user rating systems. Lower prices, lower friction, but more variance in account quality. They publish their policies publicly.

Eldorado.gg operates closer to AccountShark's model — heavier manual review, tighter seller vetting, generally higher prices but lower fraud rates. Their documentation is spread across multiple help center pages.

Direct Discord/forum sales have no verification layer at all. OwnedCore and similar forums facilitate introductions but disclaim responsibility for transactions. This is cheap but high-risk; the entire verification burden falls on the buyer.

AccountShark's position is: we'd rather list fewer accounts at higher verification standards than chase volume at the cost of fraud rates. That's a deliberate business choice, and it's reflected in the verification process below.

Game-by-Game: What Verification Actually Looks Like

Verification is not a single playbook. Every major title exposes a different amount of public data, enforces a different ToS stance on account sales, and runs its own anti-cheat stack. A checklist that works for WoW fails outright on Valorant. Below is how the process adapts per game, what endpoints exist for cross-referencing a seller's claims, and where the blind spots are.

World of Warcraft (Retail + Classic variants)

WoW is the easiest major MMO to verify because Blizzard runs a fully documented public profile API. The Battle.net Profile API returns live character equipment, achievement points, mount collection, reputation standings, and raid progression in structured JSON, and community sites like Raider.io and Wowhead surface that data in reviewer-friendly form. A seller's mount/achievement/ilvl claims can be confirmed in seconds.

What the Profile API does *not* expose: gold reserves, banned-status flags, subscription state, or original-email metadata. For those, the seller has to walk through their Battle.net account management page. Classic Era, TBC, Wrath and Cataclysm Classic all share the unified Battle.net account, so a penalty on any progression server carries across the whole account — that's how we catch sellers trying to pass off a "clean" Classic account when the retail side is locked. Listings: retail WoW accounts, Classic Era, TBC Classic, MoP Classic, plus boost and gold services.

Old School RuneScape (OSRS)

Jagex runs the cleanest public endpoint in the MMO space: the OSRS Hiscores. Any character name returns every skill level, clue-scroll count, minigame rank, and total XP — the OSRS Wiki hiscores entry documents all the tables. A seller's claim of "maxed combat, 99 Slayer, completed Inferno" is verifiable in seconds, and spoofing requires actually training the account, which makes fabrication uneconomic.

What the hiscores don't expose: bank value (the primary value indicator for many OSRS accounts), trade restrictions from past rule violations, or authenticator/email binding. For those, sellers walk the reviewer through the bank UI with a verification phrase in chat and demonstrate email access. Jagex's stance on account sales is in their terms and conditions. Listings: OSRS accounts; sellers submit via sell OSRS account.

Final Fantasy XIV

Square Enix publishes The Lodestone (and the EU Lodestone for EU datacenters) as an official armory for every character. Job levels, equipped gear, minion/mount counts, free company affiliation, achievements, and Ultimate clears all display publicly. Community tooling like FFXIV Collect and XIVAPI restructure Lodestone data for programmatic access.

FFXIV accounts sit on top of Square Enix logins, and the SE account management page is where subscription, email, and Mog Station entitlement history live. A reviewer needs that page — not just the Lodestone — to confirm the seller controls the SE account behind the character. Listings: FFXIV accounts, submit via sell FFXIV account.

Fortnite

Epic provides no official public character API, and third-party locker trackers like fnbr.co are best-effort at best — locker data can be stale by weeks. Verification leans on (1) locker display-name lookup on fnbr.co for inventory overlap with claims, (2) a short unedited video logging in and navigating the Locker, and (3) Epic account linkage state (console crosslinks, phone binding, 2FA).

The hard problem: Fortnite uses hardware-ID enforcement via Easy Anti-Cheat. A clean account logged in from a machine with prior violations can inherit those bans. This is the dominant post-sale failure mode in the Fortnite market, which is why the *buyer's* machine history matters as much as the seller's. Listings: Fortnite accounts.

Valorant and League of Legends

Riot runs the most restrictive public data surface of any major publisher. The Riot Developer Portal exposes League and Valorant APIs for match history and rank, but access is gated by a developer key and the ToS forbids using it to facilitate transfers. Third-party sites like op.gg, u.gg, and Mobalytics expose the same data without a key.

Skin inventory — the primary value driver for both titles — is *not* on op.gg. Live login is the only way to verify it, and Riot's Terms of Service explicitly prohibits account transfer. Valorant's Vanguard is a kernel-level anti-cheat with the same hardware-ID problem as Fortnite, only deeper — post-sale bans frequently trace to the buyer's machine having prior violations. Valorant and League listings reflect this reality: every one is live-session verified, never API-only.

Diablo 4

Diablo 4 uses the same Battle.net account system as WoW, so account-management verification is identical: walk the reviewer through account.battle.net, confirm 2FA, check region settings. There's no public profile API for paragon/uniques/seasonal progress, so character verification is live login plus in-game screenshots. Season rollover compresses value — reviewers time-check claims against the official D4 site season schedule before listing. Listings: Diablo 4 accounts.

Path of Exile 2

PoE 2 inherits most of its account infrastructure from PoE 1. GGG runs the PoE 2 trade site and PoE 1 trade, which are authoritative for item listings tied to a character. Reviewers cross-reference claimed items against trade-site history plus ladder standing on poe.ninja and poe2.ninja. Profile pages are gated by a "hide my account" toggle many players enable, so when the profile is private, live login is the only option. The GGG position on account trading is documented in their forum policy. Listings: PoE 2 accounts.

Lost Ark

Lost Ark is Amazon Games-published in the West and sits on Steam. Verification is two-layered: the Steam Subscriber Agreement governs the underlying login, and the Lost Ark account sits on top. No public character API exists; skin, pet, stronghold, and roster checks all require live login. Region-lock (NA West/East, EU Central/West) matters — Korean-region accounts can't migrate — so reviewers confirm region in Steam purchase history before listing. Listings: Lost Ark accounts.

Across the Stack

Ease of verification tracks directly with how much official public data the publisher exposes. WoW and OSRS are easiest. FFXIV is close behind. LoL, Valorant, Fortnite, D4, Lost Ark, and PoE 2 all require heavier live-session proof. No game is verifiable from screenshots alone, which is why every listing on AccountShark — regardless of title — goes through live-session verification before it goes live.

A Deeper Look at Payment Fraud

Payment fraud is where marketplaces bleed money quietly. Unlike account-recovery fraud, which usually surfaces within days of a sale, payment fraud lags. A buyer pays today, gets the account, plays for six weeks, then issues a chargeback claiming the purchase was unauthorized. By the time the dispute lands, the seller has been paid out and the marketplace is net-negative. Understanding how this works is why safer platforms aggressively steer buyers toward specific payment methods.

The Chargeback Lifecycle

When a buyer disputes a card charge, the card network initiates a chargeback against the merchant. The CFPB's summary of chargebacks is the plain-English version; Stripe's dispute documentation covers the merchant-side mechanics. Key points:

The merchant is debited immediately when the dispute opens, plus a non-refundable dispute fee (typically $15-$25).
Evidence submission has a tight clock — usually 7 to 21 days — and the bank, not the merchant, decides whether the evidence is sufficient.
Win rates on "goods not received" or "fraudulent transaction" chargebacks are structurally low for digital goods. Physical delivery carriers provide tracking; digital account handoffs don't.
Regulation Z gives U.S. cardholders up to 60 days from the statement date to dispute a charge under the Fair Credit Billing Act, and networks extend that further in practice.

Friendly Fraud vs Criminal Fraud

*Criminal fraud* is straightforward: stolen card, unauthorized purchase, legitimate chargeback. The cardholder is the victim and the chargeback is valid.

*Friendly fraud* is the harder case. The cardholder themselves made the purchase, received the goods, and then filed a chargeback anyway — either because they forgot the purchase, regretted it, or cynically realized the marketplace can't prove delivery in a way the bank will accept. Gaming account chargebacks skew heavily friendly fraud because the goods (an account) can't be "returned" and the buyer keeps the value whether or not the chargeback wins.

The FTC tracks this pattern and explicitly warns merchants about it in their consumer guidance on billing disputes. Marketplaces counter with evidence packages — session logs, IP match, delivery confirmation, email exchange — but the bank still holds the final vote.

3-D Secure 2 (3DS2)

The strongest single defense against card fraud is 3-D Secure 2, a card-network protocol that shifts liability for authenticated fraud from the merchant to the issuing bank. When a 3DS2-authenticated transaction gets disputed as fraudulent, the issuer absorbs the loss, not the merchant.

The tradeoff is friction — 3DS2 requires the buyer to complete an issuer-hosted authentication step (app tap, SMS code, or biometric) at checkout. A meaningful percentage of buyers abandon when prompted. Marketplaces balance this by only triggering 3DS2 on high-risk transactions flagged by their fraud engine (Stripe Radar has this logic built in).

Payment Method Safety Ranking

Not all payment methods carry the same fraud profile. Ranked roughly from most to least buyer-favorable and most to least merchant-risky:

Credit card (no 3DS2) — buyer has up to 540 days of chargeback rights in practice; merchant is fully exposed. Worst for marketplaces, best for buyers seeking reversal.
Credit card (with 3DS2) — buyer retains chargeback rights for non-fraud disputes (e.g., "goods not as described") but loses the "unauthorized" angle. Liability shift to issuer on authenticated fraud.
PayPal Goods & Services — PayPal's Purchase Protection covers buyers for "item not received" and "significantly not as described" for 180 days. Critically, digital goods and intangibles have carve-outs in PayPal's user agreement — coverage for account transfers is spotty in practice.
PayPal Friends & Family — no buyer protection, no seller protection. F&F for a commercial transaction is itself a PayPal ToS violation under the acceptable use policy. Reversals are rare but possible via PayPal fraud team escalation. Marketplaces that accept F&F are offloading fraud risk to whichever party is less sophisticated.
Bank wire / ACH — difficult to reverse once settled. Bank-initiated reversals exist but require fraud-department investigation. Popular for high-value accounts because the risk profile flips — buyer takes more of the risk, which is priced into the discount many buyers demand for wires.
Crypto (on-chain) — irreversible. No chargeback mechanism exists. Whichever side fails to deliver first absorbs the total loss, which is why crypto transactions require escrow through a trusted middleman.

The structural asymmetry matters: a marketplace that only accepts methods 1-4 is insulating buyers from risk at its own cost. A marketplace that pushes hard toward methods 5-6 is shifting that risk to buyers, often while marketing it as "security." Read the fine print on who eats the loss when something goes wrong, because that tells you everything about whose incentives are aligned with yours.

Why Stripe's Fraud Engine Matters

Modern marketplaces don't evaluate transactions on their own — they feed every order into a fraud scoring engine that aggregates signals across the entire merchant network. Stripe Radar (and competitors) score each payment against hundreds of device, behavioral, geographic, and velocity signals. A credit card used for gaming account purchases across ten unrelated merchants in a single day is flagged globally, not per-merchant. This is the single largest improvement in marketplace fraud prevention over the last five years, and it's quietly responsible for most of the drop in chargeback rates at reputable platforms.

The merchant-side evidence-submission process is documented in Stripe's dispute response guide — for account transfers, the successful evidence packet usually includes the buyer's IP at purchase and at login, 2FA rebinding timestamps, the support-channel transcript, and the delivery-confirmation receipt signed by the buyer.

Fraud Patterns: What the Playbook Looks Like

Every fraud pattern below is a real recurring category in the gaming-account market. These aren't specific incidents — they're the underlying playbooks that the verification stack is designed to defeat. Understanding them helps buyers recognize what they're being protected from (and why the verification friction exists).

Pattern 1: Original-Owner Recovery

The most common high-dollar fraud in the MMO space. Sequence:

Seller lists a legitimate, valuable account they originally created.
Sale completes. Buyer rebinds email, 2FA, security questions. Marketplace releases payment.
Two to eight weeks later, seller contacts the game publisher's support as "original owner, account was stolen." They provide CD keys, original billing records, early IP addresses, and security-question answers from creation.
Publisher runs the recovery — almost always in the seller's favor because their proof is deeper than the current user's.
Buyer loses the account. Seller keeps the money. The marketplace is left holding the warranty claim.

What defeats it: original-owner verification at intake. If the seller can't provide original billing records, first-login IP, and creation-date correspondence with the registered email, the account is flagged as non-original-owner and either declined or listed with a clear "flip" warning and compressed warranty. The reason this attack works against weak marketplaces is that most verification only confirms *current* control, not *original* ownership. Those two things are not the same.

Pattern 2: Layered Chargeback Fraud

A more sophisticated payment attack. Sequence:

Buyer A purchases a moderate-value account using a credit card registered to a real person (buyer themselves, or a complicit party).
Buyer receives the account, uses it for a while, then files a chargeback claiming "unauthorized charge."
The marketplace produces evidence — IP match, delivery confirmation, login logs from the buyer's own device.
The bank still sides with the cardholder, because "unauthorized" disputes have high cardholder-favor rates on digital-goods purchases with no physical delivery.
The marketplace loses the funds, plus a dispute fee.

The "layered" part: sophisticated fraud rings do this across multiple marketplaces simultaneously using the same card, accumulating thousands in accounts before any one merchant flags the pattern. FTC consumer alerts on billing disputes describe the upstream consumer side of this behavior.

What defeats it: 3DS2 authentication at checkout, network-wide fraud scoring (Radar et al.), and — for high-value listings — bank wire or escrowed crypto instead of card. Marketplaces that offer "100% card accepted" on $5,000 accounts are either absorbing the losses or about to learn a painful lesson.

Pattern 3: Phishing-Acquired Resale

Sequence:

Scammer runs a phishing campaign (fake Blizzard launcher, fake OSRS login page, Discord-delivered malware link) and harvests credentials.
Scammer logs in, changes email and 2FA binding, locks out the original owner.
Scammer lists the now-locked account on a marketplace.
Marketplace verifies *current* control — the scammer is in fact logged in and has 2FA — and lists it.
Original owner discovers the theft, files support tickets with the game publisher, and sometimes recovers the account even after it has been resold. Buyer loses the account.

What defeats it: original-owner verification (same defense as Pattern 1) plus identity verification on the seller. A scammer willing to upload a government ID linking their real identity to a stolen account is rare because publishers cooperate with law enforcement on verified identity leads. The ID-verification layer isn't about validating the ID itself so much as making the seller choose between abandoning the fraud and personally attaching themselves to it.

Phishing-acquired accounts are disproportionately listed at steep discounts, because the scammer wants to exit before the original owner's recovery claim lands. Aggressive underpricing is a known signal for this pattern.

Pattern 4: Hardware-ID Ban Transfers

Specific to games with hardware-level anti-cheat: Valorant (Vanguard), Fortnite (Easy Anti-Cheat), Call of Duty (Ricochet), and some League of Legends enforcement.

Sequence:

Seller's *primary* account gets hardware-banned for cheating. The anti-cheat fingerprints their machine.
Seller creates a new, clean account, levels it up, sells it.
Buyer purchases the clean account and logs in from their own machine. All looks fine.
Weeks or months later, the new account gets retroactively banned because the anti-cheat flagged the *seller's* earlier activity on the account (from the banned machine) during a retrospective sweep.

The mirror of this: the *buyer's* machine has prior hardware bans, and the clean account they just bought inherits the ban upon first login.

What defeats it: on the seller side, a verified history of the account being played exclusively from the seller's current hardware with no prior account associations. On the buyer side, an honest disclosure conversation — marketplaces that ask "has any account ever been banned on this computer?" before sale are protecting the buyer from themselves. Neither side can be perfectly verified, which is why hardware-ban warranties are intentionally short (30 days is typical) on titles with kernel-level anti-cheat.

Pattern 5: Subscription / Recurring-Charge Trap

A seller leaves the account on auto-renew via their credit card or PayPal subscription, completes the sale, then disputes the next billing cycle as "unauthorized." The reversed charge lands back on the publisher as a failed payment, and the account ends up locked pending buyer re-billing — often with extra security review that the buyer has to wait through.

What defeats it: verifying every active subscription at intake and requiring the seller to cancel before listing, with the cancellation confirmation as part of the verification bundle. This is one of the cheapest patterns to catch and one of the most commonly missed on automation-only platforms.

Pattern 6: The Long-Con "Gradual Handoff"

Seller pushes for a staged transfer — "I'll change the email first, 2FA a week later, security questions after that." Payment releases against partial access, seller retains enough recovery vectors to reclaim the account later, and does so once the warranty window has closed.

What defeats it: no staged handoffs. Payment only releases after *full* security migration — every recovery vector (email, phone, 2FA, security questions, authenticator app, backup codes) is rebound to the buyer in a single session. Marketplaces that allow partial handoffs are allowing this pattern.

The Seller Side: What Submission Actually Looks Like

Most content about gaming-account marketplaces is written for buyers. Sellers deserve a clear picture of what they're walking into, because the submission experience materially affects which platform a legitimate seller should choose.

What You Need Before Submitting

A prepared submission moves through review in hours. An unprepared one drags on for days. Have ready:

Identity proof. Government-issued photo ID (driver's license, passport, national ID).
Payment method. Verified PayPal matching your ID name is the baseline; bank wire and verified crypto accepted for higher-value payouts.
Armory or profile URL where applicable — WoW Battle.net armory, OSRS hiscores, FFXIV Lodestone, PoE profile (if public), op.gg link for LoL/Valorant.
Account history summary — creation date, whether you created it or acquired it, ban/suspension history, active subscriptions, and any linked game licenses (Overwatch 2 on a Battle.net, COD on a Battle.net, etc).
Original registration email access. This is the single most important piece — many rejections are because the seller no longer controls the email the account was created with.
Screenshots or screen recordings as requested. A short unedited video navigating the account usually beats a batch of screenshots.

Submission Flow and Timeline

Submissions route through the sell form and into game-specific sub-flows (sell WoW account, sell OSRS account, sell FFXIV account), each asking for the data that actually matters for that title rather than a generic form.

Review timelines:

Standard listings (under $1,000) — initial review within 12-24 hours, listed within 1-2 business days.
High-value listings ($1,000-$5,000) — 1-3 business days, with a second reviewer cross-checking.
Premium listings ($5,000+) — 2-5 business days, full KYC, and a scheduled live call for final ownership confirmation.

Common Rejection Reasons

In order of frequency: (1) seller doesn't control the original registration email; (2) undisclosed suspension history — we always check, and misrepresentation is the disqualifier, not the suspension itself; (3) active subscription not cancelled (fixable); (4) ID/payment mismatch (usually fixable via alternate payout method); (5) hardware-ban risk flags on titles with kernel-level anti-cheat; (6) pricing out of range — not a rejection, we send pricing guidance and relist.

Once listed, the account is actively monitored. Password changes from outside sessions, recovery attempts, or other "re-taking" behavior pulls the listing and flags the seller. Payouts follow a holdback schedule — typically 50% at escrow release, 50% after warranty — which is how the marketplace absorbs warranty claims without running negative on individual transactions. Serious sellers prefer that math over 100%-upfront platforms that vanish on disputes.

The Legal Landscape

Gaming-account sales sit in a strange legal region. The practice is widespread, publicly visible, and on most major titles explicitly prohibited by the publisher's terms of service. Understanding where the lines are is important for sellers and buyers alike.

Terms of Service: What the Publishers Say

Most major game publishers explicitly prohibit account sales in their terms. Full citations:

Blizzard — the Blizzard End User License Agreement reserves all rights to the account to Blizzard and grants only a personal, non-transferable license. The Blizzard legal hub carries the current version of all enforcement policies.
Riot Games — the Riot Terms of Service explicitly prohibits transferring, selling, gifting, or trading accounts. The Valorant support portal is where specific enforcement actions are documented.
Jagex (RuneScape / OSRS) — the Jagex terms and conditions prohibit account sharing, selling, trading, or giving away. Jagex has been historically more aggressive about enforcement than most publishers.
Grinding Gear Games (Path of Exile) — PoE's forum policy thread on account trading establishes GGG's stance.
Square Enix (FFXIV) — the FFXIV terms / prohibited activities include RMT and account transfer clauses.
Epic Games (Fortnite) — covered under the broader Epic terms of service (Epic's public-facing ToS page is CDN-gated and inconsistently accessible; consult the in-launcher agreement for the current text).
Electronic Arts — the EA User Agreement similarly prohibits account transfer.
Valve (Steam) — the Steam Subscriber Agreement prohibits transferring Steam accounts, which matters for Lost Ark, PoE, and anything else sold through Steam.
Sony (PlayStation Network) — the PSN Terms of Service are similarly restrictive for console-linked accounts.

Practically, these clauses mean two things: (1) the publisher reserves the right to terminate accounts caught in transfer, and (2) the publisher is not a party to any transaction and will not mediate disputes between private parties.

Enforcement Patterns

Publisher enforcement is targeted, not comprehensive. No publisher has the bandwidth to chase every account sale. The usual enforcement triggers:

Chargeback activity tied to the account — the easiest signal to action.
Support ticket mentioning a purchase — a buyer or seller contacting support and admitting the account was bought is the fastest way to a ban.
Login pattern anomalies — drastic IP/geolocation changes followed by purchase-adjacent behavior patterns (gear dumping, gold siphoning).
Reported accounts — third parties can and do report accounts they suspect of being sold, especially in PvP-competitive games where rank integrity matters.
Original-owner recovery requests — by far the most common. The publisher's position in these cases favors the original registrant, regardless of how long the new owner has been playing.

Marketplace-level litigation against publishers is rare but not unprecedented. The legal shape of these disputes usually revolves around whether the account is a "sale of software" (potentially covered by first-sale doctrine) or a "license" (clearly not). U.S. courts have mostly sided with publishers; the digital licensing framework under 17 U.S.C. § 1201 and associated case law has consistently held that EULA-limited licenses are enforceable.

Player-Vs-Platform Liability

If an account is recovered by the original owner or banned by the publisher after sale, the buyer has no recourse against the publisher. Their only recourse is against the marketplace and/or the seller. This is why the warranty and escrow architecture of the marketplace matters so much: the marketplace is the only backstop between the buyer and a worst-case outcome.

Some specific liability points:

Chargeback fraud is a crime in most jurisdictions — U.S. federal law treats a knowingly false chargeback as wire fraud in some circumstances. The FTC and FBI coordinate on larger rings. Small individual chargebacks rarely get prosecuted, but the theoretical exposure exists.
Account theft (phishing, credential resale) is clearly illegal — the Computer Fraud and Abuse Act and state-level equivalents cover unauthorized access. Publishers routinely cooperate with law enforcement on stolen-account rings.
ToS violation is not itself a crime — selling an account in violation of the ToS is a contract breach between player and publisher, not a criminal act. This is the key distinction that keeps the marketplace industry legal even when the underlying activity is ToS-violating.

For consumers, the practical implication is: you can buy an account, and the most serious legal risk you face is having the account terminated — not criminal prosecution. The marketplace you choose determines whether that termination costs you the full purchase price or whether it triggers a warranty refund.

What to Examine on a Listing Page

Buyers routinely underestimate how much signal a listing page gives off. The difference between a safe listing and a sketchy one is usually visible before you message the seller, if you know where to look.

Photos and Screenshots

Resolution and UI consistency. Real in-game screenshots have consistent HUD elements, shadow direction, and anti-aliasing across images. Composite or photoshopped images almost always have at least one giveaway — a font mismatch, a misaligned UI element, or a character model that doesn't match the item shown.
Timestamps. Real screenshots often have a system clock, a chat timestamp, or seasonal environmental cues. A "Season 3 Mythic clear" with a Winter Veil UI on a character wearing gear that came out in Season 4 is a lie.
Full UI vs cropped UI. Sellers who crop tight around a single mount or achievement are hiding the rest of the UI. Usually that's fine — but ask for an uncropped version. A seller who won't provide one is a red flag.
Armory URL match. If the listing claims specific gear and links an armory URL, actually open the URL and compare. The number of listings where the armory and the screenshots don't match is higher than you'd expect.

Language Patterns in the Description

Generic descriptions. "Good account, many mounts, must sell fast" on a five-figure account is either a scam or a spam template. Real sellers write about what makes *this specific account* valuable.
Grammar shifts mid-description. Descriptions that start in fluent English and shift into translation-tool-quality prose midway through are often copy-pastes of legitimate listings with a few lines changed.
Overuse of "guaranteed" and "100%". Legitimate sellers describe what the marketplace guarantees. Suspicious sellers emphasize that *they personally* guarantee things.
Emotional urgency. "I'm quitting gaming and need to sell today" — urgency language correlates with fraud. Real quitters aren't in a rush.

Seller Profile Signals

Account age on the marketplace. A seller who registered 48 hours ago and is selling a $3,000 account is higher-risk than one with 30+ completed sales. Not necessarily a scam, but worth extra diligence.
Review consistency. Read the lowest-rated recent reviews, not the highest. Patterns show up at the low end.
Response time and tone in messages. Sellers who answer complex technical questions with template responses are often working through a list.

Pricing Outliers

50% of comparable listings is the classic fraud price point. A genuinely motivated seller might take a 15-20% discount; below that range, something is usually wrong.
Round numbers well below market. "$500 for a $1,500 account" is a fraud signal in a way that "$1,199" isn't. Scammers pick clean round numbers for speed.
Prices that don't scale with claimed content. A level-capped WoW account with Cutting Edge raid achievements and 400+ mounts priced at $300 is impossible — that account has $300 of subscription time *in its cosmetic entitlements alone*.

Claimed vs Verifiable

The single most powerful check a buyer can do: take every specific claim in the listing and try to verify it. For WoW, pull the armory. For OSRS, pull the hiscores. For FFXIV, pull the Lodestone. For LoL/Valorant, pull op.gg. If anything the seller says doesn't match what the public data shows, either ask for a clarification or walk away.

Glossary

Escrow — payment held by a neutral third party (usually the marketplace) until both sides complete their side of the transaction. Funds release to the seller only after the buyer confirms delivery.
Chargeback — a cardholder's formal dispute of a charge, escalated through the card network. The merchant is debited immediately and must submit evidence to reverse it. Distinct from a refund, which the merchant initiates voluntarily.
KYC (Know Your Customer) — identity verification (government ID, live-selfie) required to prove the seller is a real person with a matching payment method.
2FA (Two-Factor Authentication) — a second login step beyond password — authenticator app, SMS, or hardware token. Rebinding 2FA to the buyer is a critical account-handoff step.
Recovery Email — the email on file that can initiate password resets. Whoever controls it ultimately controls the account; full handoff requires changing it to the buyer's.
Original Owner — the person who first created the account and registered the original email, security questions, and payment method. Distinct from "current owner." Publisher support historically favors original-owner recovery claims.
Hardware ID Ban — a ban that fingerprints and blocks the player's physical machine, not just the account. Common in games with kernel-level anti-cheat (Valorant, Fortnite, COD). Future accounts on the same machine can inherit the ban on login.
Shadow Ban — a non-public restriction that silently reduces account privileges (matchmaking isolation, muted chat, lower competitive visibility) without a formal ban. Hard to detect during verification.
RMT (Real Money Trading) — any exchange of in-game value for real-world currency: gold buying, item sales, account sales. Most publishers prohibit it explicitly.
Warranty Period — the post-sale window during which the marketplace remediates specific named failures (bans, recoveries, undisclosed history). Industry standard is 30-90 days.
Dispute Resolution — the marketplace-internal process for buyer/seller conflicts, separate from card-network chargebacks.
3DS2 (3-D Secure 2) — a card-network authentication protocol that shifts fraud liability from merchant to issuer on authenticated transactions.
Holdback / Payout Delay — a portion of the seller's payment held past initial release to cover warranty claims (typically 50%/50% split at escrow release vs warranty expiration).
Region Lock — an account bound to a specific geographic region (NA East, EU West, Korea) that cannot be migrated. Region-locked accounts are worth less cross-region.

Frequently Asked Questions

Can the original owner recover the account after I buy it? If the seller wasn't the original creator, yes — indefinitely in most cases. Publishers accept recovery claims from anyone who can prove original registration, regardless of how long another party has had access. This is why original-owner verification is the single most important listing-level check; warranties exist to cover this scenario during a defined window.

What happens if the account gets banned after transfer? Depends on the cause. Bans for pre-transfer behavior (undisclosed suspensions, retrospective anti-cheat sweeps on the seller's prior activity) are covered by warranty. Bans for your post-transfer behavior (unauthorized tools, ToS breaks) are not. Read the specific warranty language before buying.

Is buying a gaming account legal? Buying is not criminal in most jurisdictions — it's a contract-law issue between you and the publisher. The publisher's ToS prohibits transfer, which means they reserve the right to terminate the account if they detect it. Criminal exposure only appears in cases involving actual theft or payment fraud.

How long does verification take on AccountShark? Standard listings are reviewed within 12-24 hours. High-value listings (over $1,000) take 1-3 business days because they involve a second reviewer cross-checking the work. Premium listings (over $5,000) can take up to 5 business days because they include full KYC and a scheduled live call.

Why is the escrow window 72 hours instead of instant? Instant release means the marketplace can't meaningfully verify that the buyer has full control of the account — only that they received credentials. A 72-hour window gives buyers time to change recovery email, rebind 2FA, reset security questions, and confirm the full handoff took before the seller gets paid. It's a buyer-protection measure, not a seller-punishment measure.

What happens if I pay by credit card and the transaction gets disputed? If you dispute a charge you actually made, you've committed friendly fraud. Marketplaces respond to disputes with full evidence packages (IP logs, 2FA timestamps, support-chat transcripts) and usually win legitimate dispute responses eventually, but the short-term impact is that your account on the platform gets locked pending resolution. For legitimate disputes — fraudulent charges made without your authorization — work with the marketplace directly first; they can usually resolve faster than the bank.

Can I sell an account I bought from another marketplace years ago? You can submit, but expect additional scrutiny. Non-original-owner accounts are higher-risk regardless of how long you've held them, because the original creator retains recovery rights indefinitely. Some marketplaces decline second-hand accounts outright; others list them with compressed warranty terms and clear disclosure.

How does AccountShark handle hardware-ID ban risk? For titles with kernel-level anti-cheat (Valorant, Fortnite, COD), we verify that the seller's account has a clean play history from their current machine and no prior associations with banned accounts. We also disclose hardware-ban risk in the listing because the *buyer's* machine history can trigger a post-sale ban independently of the seller's history — that's a risk we can warn about but can't eliminate.

What payment methods does AccountShark accept? Credit card via Stripe (with 3DS2 on higher-value transactions), PayPal Goods & Services, bank wire, and verified crypto payouts. Payment method affects both risk exposure and fees — cards are fastest but carry the highest chargeback risk; wires and crypto are slower but irreversible after settlement.

What's the difference between a "warranty" and "buyer protection"? Warranty is a time-bound promise to remediate specific named failure modes (account recovery, undisclosed ban, etc.) with a clear process and timeline. Buyer protection is a broader, often vaguer marketing term. A marketplace with a specific warranty policy and refund policy is making concrete commitments; one with only "buyer protection" in its marketing copy is often making none.

Can I see the account before I pay? No serious marketplace allows pre-payment live access — the seller would simply lose control of the account. What you can see before payment: armory URLs, Lodestone pages, op.gg profiles, live unedited video of the seller navigating the account, timestamped screenshots with a verification phrase. That combination is usually enough to confirm the account is what the listing claims.

What if the seller disappears after the sale? Sellers don't control post-sale support — the marketplace does. If the account has issues within the warranty window, you contact the marketplace, not the seller. Sellers are paid out through a holdback schedule specifically so that warranty claims can be resolved even if the seller becomes unresponsive.

How AccountShark Verifies Every Listing

Our process is deliberately more involved than automated-only competitors. Here's what actually happens between submission and listing:

Step 1: Initial Submission

Sellers submit through our sell form with game-specific details: server, character names, armory URLs, estimated value, account history disclosures. The form requires verified contact information (email + Discord) before submission is even accepted.

Step 2: Seller Identity Check

Before any listing work begins, we verify the seller's identity through payment method (PayPal verified, matched to submitted name) and — for high-value accounts — government-issued ID via secure upload. This isn't optional for five-figure listings. We've seen too many cases where that extra friction prevented obvious fraud.

Step 3: Account Ownership Proof

The seller demonstrates live control through one or more of:

Armory URL that matches claimed characters (WoW, OSRS, FFXIV all have public profile endpoints)
Time-stamped in-game screenshot with a marketplace-provided verification phrase
Temporary credential review with 2FA reset proof
Recovery email access demonstration

Multiple methods are required for accounts above a certain value threshold. One method is never enough.

Step 4: Account History Review

Our team manually reviews:

Ban/suspension history via the seller's account management pages
Original owner status via email registration records and billing history
Linked account status — for games with hardware bans, we verify the seller's account isn't linked to previously banned accounts
Active subscriptions and recurring charges that would survive transfer

Accounts with unresolved appeals, recent suspensions, or original-owner uncertainty get flagged and disclosed in the listing. If a seller tries to hide known issues, we decline to list.

Step 5: Pricing Validation

We compare the seller's ask against current market rates for similar accounts. Dramatically underpriced accounts get extra scrutiny — they're one of the strongest fraud indicators we see. Dramatically overpriced accounts get pricing guidance before listing.

Step 6: Ongoing Monitoring

Listed accounts remain under periodic review until sold. If a seller's status changes — verified identity gets revoked, payment method gets flagged, account shows signs of recovery attempts — the listing gets pulled proactively before a buyer can get burned.

Step 7: Transfer & Escrow

Once a buyer purchases, payment sits in escrow. The buyer gets initial credentials, completes the security handoff (recovery email change, 2FA rebinding, security question reset), and confirms full control before escrow releases to the seller. The standard verification window is 72 hours for standard listings; longer for high-value. Our buyback policy and warranty terms document what's covered post-sale.

Step 8: Post-Transfer Support

For the first 90 days after transfer, our team is available via Discord for any issues — recovery attempts, unexpected bans from prior owner actions, account recovery by the original owner, or anything else that falls under warranty. Most issues never happen because the verification stack catches them before listing. When they do happen, we handle resolution directly rather than leaving buyers to fight customer support alone.

What's Changing in 2026

Account verification is evolving fast. A few trends worth watching:

AI-generated fake screenshots. Image generators are now good enough to fake armory pages, ban appeal screens, and in-game content convincingly. This is actively changing what manual reviewers look for — metadata checks, cross-referencing with live API data, and session-based verification are replacing screenshot trust.

Blockchain-backed ownership. A handful of marketplaces have experimented with NFT-linked account ownership. None have gained meaningful traction — game publishers don't recognize these ownership claims, which limits their value. But the approach is still being refined.

Publisher cooperation. Historically, game publishers have been hostile to the secondary market. That's slowly shifting for some games — Square Enix has publicly acknowledged FFXIV's character marketplace exists without actively pursuing it, and Jagex's current stance on OSRS accounts is ambiguous rather than hostile. Riot and Blizzard remain firmly against, but enforcement has become more targeted. Official marketplaces run by publishers are a possibility some industry observers are watching for.

Better fraud detection. Machine learning fraud detection is maturing quickly. Stripe's own fraud prevention research covers the underlying techniques — most marketplaces are quietly adopting these tools, with meaningful impact on chargeback rates.

Regulatory attention on digital-goods chargebacks. Card networks have begun floating stricter evidence requirements for digital-goods disputes, and the CFPB's ongoing guidance on chargebacks is moving toward clearer delineation of friendly-fraud patterns. If the networks tighten the evidentiary standard, legitimate marketplaces benefit — more of their dispute responses will prevail, and the friendly-fraud economics weaken.

The Bottom Line

Verification isn't something you can skip and still run a marketplace that doesn't implode. The question isn't *whether* a platform does verification — it's *how seriously*. Every marketplace in this space claims to verify listings. Only some actually do the work that matters.

If you're buying, pay attention to the specifics. Does the platform verify original ownership or just current ownership? Do they have warranty periods that cover the real failure modes? Is their escrow window long enough for genuine problems to surface? How do they handle payment disputes?

If you're selling, work with platforms that make fraud expensive for buyers too. The seller community suffers when chargeback fraud runs rampant, because eventually someone pays for it — usually honest sellers in the form of tighter policies and longer holds.

Every account listed on AccountShark has been through the full verification stack above — identity, ownership, original-owner status, history, pricing, and live-session handoff. That's why our WoW inventory moves slower than volume-chasing competitors and why the accounts that do move come with warranty terms worth the ink they're printed on. Browse the current WoW catalog and you'll see exactly what verified inventory looks like in practice.