"Compromised!" - Brainstorming thread.

"I've been hacked! What do I do?!" - Please refer to the stickies at the top of the forum. Additionally, you'll need to try to gain control of the account from a clean machine, through changing the registered email address to a new one, and then changing your WoW password. If you are unable to do this through the site, please contact Billing as soon as possible to claim the account. They open at 10 am PST tomorrow, Friday.

Then, send off an email to [email protected] to get restoration started. In the mean time, please clean your machine, either by scanning for the infection, or reformatting, and consider getting an Authenticator.

http://www.blizzard.com/store/details.xml?id=1100000182.

If any characters have been moved, please fill out this form.

http://us.blizzard.com/support/article.xml?tag=transferform

A quick explanation - Since there have been theories floating around about specific addons, sites, mirror sites, and the like, I made this thread -originally- to brainstorm over what could be the cause of the rapid increase of compromised accounts.

I didn't intend for it to devolve into arguments. All this is for is to -gather information-. Any time someone posts something, I don't think they really want to have negative answers shoved in their faces, really.



===============================
Original Post

Orlyia, I'm hearing from some that people who were downloading the newest version of Quest Helper (can't determine which site) have all been reporting being compromised in the same fashion - via e-mail and WoW account, swiftly. There is a rumor going around that this version of the addon is tainted with a keylogger, though the actual addon itself (Lua script) is not. Possible explanation for the recent influx of accounts being compromised?
===============================