Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Credit Card Info secure? Account Hacked.

Forum Avatar
Sinnocence
#0 - June 2, 2009, 5:46 a.m.
Blizzard Post
A friend of mine got his account hacked and banned today, he is in the process of emailing Blizzard or maybe calling them tomorrow when they're open but he asked me to make this post here on the forums.

He is worried that since his account was hacked, password changed, and one of the characters also got transfered to another server, that the hacker used my friends credit card to pay for it.

He was able to reset the password already, but has no clue how the information was stolen in the first place. Bad thing is, he had just reactivated his account on saturday, June 30th, typing CC numbers and account info to reactivate it so we're thinking it was a keylogger or something of the sort.

At this point he pretty much doesn't care about the account, he's freaking out over the credit card since banks are all closed.

Is that possible? I remember that some of the numbers of the CC are marked as **** but they're only a few.
Forum Avatar
Orlyia
#3 - June 2, 2009, 6:36 a.m.
Blizzard Post
Q u o t e:
A friend of mine got his account hacked and banned today, he is in the process of emailing Blizzard or maybe calling them tomorrow when they're open but he asked me to make this post here on the forums.

He is worried that since his account was hacked, password changed, and one of the characters also got transfered to another server, that the hacker used my friends credit card to pay for it.

He was able to reset the password already, but has no clue how the information was stolen in the first place. Bad thing is, he had just reactivated his account on saturday, June 30th, typing CC numbers and account info to reactivate it so we're thinking it was a keylogger or something of the sort.

At this point he pretty much doesn't care about the account, he's freaking out over the credit card since banks are all closed.

Is that possible? I remember that some of the numbers of the CC are marked as **** but they're only a few.


The information on our side is not able to be accessed - even by the true account holder, Sinnocence.

Your friend has another leak somewhere.

While compromises certainly aren't unheard of, using his own CC information WITH a compromise points to a few scenarios.

1) He has a keylogger or other malware on his system and they obtained both sets of information either from his system, or his email box.

2) He dealt with an illicit company dealing in stolen goods(gold, services)...and gave them his CC information. It never ceases to amaze me that folks will deal with thieves and are perfectly happy to turn over their financial information.

3) Someone else with access to both his account information and his CC information performed #2.

This is not an accusation, it could easily be scenario 1 - but he has very good reason to be extremely concerned. If it was *my* credit card - I'd be calling them immediately and having a new number issued.

Now, as far as his account goes, please direct him to these stickies - or forward him the information. The security one he'll need in particular.

Computer Security Recommendations
http://forums.worldofwarcraft.com/thread.html?topicId=1778038509&sid=1

Account Compromise Info Center
http://forums.worldofwarcraft.com/thread.html?topicId=14318909866&sid=1

Here are Billing's numbers if he needs them.

Billing and Account Services
Phone Support - 1 (800) 59-BLIZZ (1 (800) 592 5499)
Live Representatives Available Mon-Fri, 8am to 8pm Pacific Time
E-mail Support - [email protected]
    Players in Australia should call 1-800-041-378
    Players in Singapore should call 800-2549-9273
    Players in Chile should call 1230-020-5554
    Players in Mexico should call 001-888-578-7628
    Players in Argentina should call 0800-333-0778
    All other international players should call: (949) 955-0283


I do wish you both all the best, you are a good friend trying to help.
Forum Avatar
Orlyia
#5 - June 2, 2009, 7:36 a.m.
Blizzard Post
Q u o t e:


Scenario 2 is not an option, he had around 200g left on his main char (he's a respec addict and doesn't care much about gold) and around 300g on an alt in another server who got transfered and was responsible for the ban according to the email my friend recieved... the hacker didn't make much of a profit goldwise on his account. Thats something that intrigued him, why would someone spend US$25,00 to transfer such a small amount of gold...

My friend had cancelled about 20 days ago but came back because I asked him to, we've been playing since 2004. 2 days after reactivating his account and its gone *sigh*

As for the CC info, if he had a keylogger, when he was typing it on your secure website, can that be logged? He says that's whats worrying him since he had to type the security code.

Thanks for all the replies.


From us, no.

If he has a keylogger on his account, it would grab the information as he is typing it in, not as it is sent.

Keylogger is a bit of a misnomer anymore, they can also get into files, things saved to clipboards, etc.
Forum Avatar
Orlyia
#7 - June 2, 2009, 8:31 p.m.
Blizzard Post
I'm afraid that is something he is going to have to take up with Account Administration.

Not only can I not talk to a 3rd party about actions, if this has gone to that point, a Game Master won't even be able to help him - this is in AA now.

He can write them about that part at [email protected].