Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

From E-mail to Mobile Authentication

Forum Avatar
wulfheart.8206
#1 - April 27, 2014, 3:27 a.m.
Blizzard Post

I’m just curious, if someone swaps from E-mail Authentication to Mobile Authentication, would there be an e-mail sent to verify the change from E-mail to Mobile? Or will it be automatic?

Now I know that hackers won’t be able to access the account in the first place since there was e-mail notification, but just what if? What if, for some reason, hackers were able to access an account and wanted to change it from e-mail to mobile. If it was that easy to swap from e-mail to mobile, then I think that should be changed.

Forgive me if this seems like an impossible scenario, but I’d rather go through the hassle of multiple verifications to change security settings and be sure my account is safe.

I dunno, maybe I’m just getting too nervous about my account’s security. Anyways, just my 2 cents.

Forum Avatar
Gaile Gray
#6 - April 27, 2014, 5:30 p.m.
Blizzard Post

Very good advice, LyricDawnhagen!

Wulfheart, the fact is, if they have access to the e-mail account — if for example you use the same password for e-mail and game — sending a verification “Do you want to add this mobile authenticator” e-mail wouldn’t help.

However, I do understand the question, so I’ll discuss it with the team to learn if there’s benefit to adding that process to the change. I’ve asked before and basically I’ve been told that sending the e-mail isn’t necessary nor preventative of most hacks. But I’ll ask again.

Forum Avatar
Gaile Gray
#18 - May 1, 2014, 12:32 p.m.
Blizzard Post

Let me simply reiterate, if your e-mail account is hacked, there are many, many problems, including identity theft that can impact you at far greater depth than the compromise of a game account.

We are very sympathetic about these incidents, and we take great care to work with the player to rejoin the game and re-secure his or her account. .We will continue to take such steps, as that’s an important part of the services that we offer our customers.

I smiled about the tinfoil hat theory, so thanks for that. I want to point out, once again, that a compromise of our system would result in tens of thousands of hacked accounts and thousands of forum threads, not the handful that you see. Again, we’re taking longer (too long, we confess it!) to address compromised accounts, and that sometimes drives people to the forums, meaning that we see a few threads that in a normal day would not be visible. But we are not seeing dozens, hundreds, or thousands — and that assuredly would be happening with a security issue within our system.

We will help you to the best of our ability, and as quickly as possible. We continue to focus on compromised accounts because we feel they are a very high priority.