Blizzard, my account is compromised

#0 - Oct. 12, 2009, 10:14 a.m.

My account has beeen hacked and merged with a battlenet account. By chance I didn't restart my computer last night and I am still logged into the forums. I have been playing since october 2005 and never had any dramas with my account. Never so much as had a 3 hour ban from the game.

All my characters have been stripped of all their gear and my hunter has disappeared. God knows where to. I have emailed billing and will phone them at the lovely time of 1am (gogo Australia!) to get this rectified.

What I would like to bring to your attention is that at no stage did I recieve emails asking for confirmation of email address change, password change or merging with a bnet account. All I recieved was an email saying my password had been successfully changed.

Now I know for a fact this is not possible for a normal player to do, since when I last changed my password it required me clicking a link from my email to verify that I was the correct person attempting to.

Now, you may say, ah! maybe they keylogged you and just deleted the emails as they went. That would be all fine and dandy except the email address is a gmail account and the activity log shows that it hadn't been logged into for 2 days prior to this and until 12 hours after it had been compromised. One of the emails I sent billing clearly shows the activity log of the account with the email from account support saying my email was successfully changed.

So this leads to the ugly truth that the account hackers have abilities to manipulate accounts in ways the players don't. I want my account fixed asap and since it was a collapse of you security process that allowed it to happen I expect it to be done quickly.

Orlyia

#13 - Oct. 12, 2009, 10:47 a.m.

Q u o t e:

Middle of the night since there is no billing support on reasonable hours for Australians. They have a fundamentally flawed security system that needs to be fixed. I spent ages trying to work out how they could change all my details without having access to my account since I was under the misguided premise that they actually needed to go through the same motions as any other account action. But wait, lets just let them do everything without needing the messy step of 2 factor autentication!

Someone had your password and ID. At that point, whether or not they've actually touched the account - you are ALREADY compromised.

We have never, not once, had a security breach.

I'd recommend a complete system scan. If any other systems have ever been used to log into game, these forums or account management, those should also be suspect.

This sticky may prove useful.

Computer Security Recommendations
http://forums.worldofwarcraft.com/thread.html?topicId=1778038509&sid=1

To get the merge sorted out, you'll want to call Billing as soon as you can, their hours of operations are based on Pacific time.

Billing and Account Services
Phone Support - 1 (800) 59-BLIZZ (1 (800) 592 5499)
Live Representatives Available Mon-Fri, 8am to 8pm Pacific Time
E-mail Support - [email protected]

Once you are back in control of the account you can look for damages. That's pretty common, but something that can also be dealt with.

Account Compromise Info Center
http://forums.worldofwarcraft.com/thread.html?topicId=14318909866&sid=1

You may also want to look into getting an authenticator for your account. It's no substitute for good security habits, but it will keep anyone else out of your WoW account.

Blizzard Store
http://us.blizzard.com/store/browse.xml?f=c:6

Mobile Authenticator for Battle.net accounts
http://us.blizzard.com/support/article.xml?locale=en_US&articleId=26109

I do wish you all the very best on a speedy recovery.

Orlyia

#29 - Oct. 12, 2009, 12:34 p.m.

Enough already guys.

I do believe all the information that needs to be imparted has been.