Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Battle.net makes hacking easier

Forum Avatar
Taggah
#0 - Oct. 25, 2009, 8:50 p.m.
Blizzard Post
In the 4 or 5 years I've played wow I never had a problem then a couple days after merging 1 account with battle.net I got hacked.

Battle.net makes hacking easier as the hacker has your account name since it is just your email address before I had a made up account name that the hacker had to guess at before he could even try to guess my password. Now they just use a brute force program to hack you since they already have your account name.
Forum Avatar
Orlyia
#66 - Oct. 26, 2009, 6:17 a.m.
Blizzard Post
There is very little difference in the systems in regards to them being compromised.

If you have a latent infection on your system, the merge may have grabbed enough information to ship off in a chunk. This is especially likely if you've had your account name saved and only needed to type in your password.

In any case, your system may not be as secure as you think it is, or your email could be compromised.

I'd highly recommend doing a deep scan for your own sake. That's not the sort of thing anyone wants on their system for far more reasons than just WoW.

This sticky may prove useful.

Computer Security Recommendations
http://forums.worldofwarcraft.com/thread.html?topicId=1778038509&sid=1

I'd also recommend following you with a restoration investigation NOW. You may wish to take a break, but if you come back months later and want this done, we may not be able to do as much for you then as we can when this is fresh.

Account Compromise Info Center
http://forums.worldofwarcraft.com/thread.html?topicId=14318909866&sid=1

You may also want to look into getting an authenticator for your account. It's no substitute for good security habits, but it will keep anyone else out of your WoW account.

Blizzard Store
http://us.blizzard.com/store/browse.xml?f=c:6

Mobile Authenticator for Battle.net accounts
http://us.blizzard.com/support/article.xml?locale=en_US&articleId=26109
Forum Avatar
Aredek
#114 - Oct. 26, 2009, 3:38 p.m.
Blizzard Post
Q u o t e:


Any company worth its salt (and worthy of your trust) will have no employees with access to your password. Blizzard employees have zero access to your password. Any password-related requests go through the automated password recovery system.

If you're truly an IT professional (and really, I had no reason to doubt you until now), then you wouldn't alow anyone to have access to anyone's personal information (that includes passwords) for ANY reason.


I believe what Wake is saying is that players should not use the same e-mail/password combination on third-party websites because those who run the site may use or distribute this information illegitimately. I do not believe Wake is saying that Blizzard employees are accessing and using customer passwords.

For the record, though, we do not have access to account passwords. All password retrieval and password change functions are automated.
Forum Avatar
Aredek
#119 - Oct. 26, 2009, 3:46 p.m.
Blizzard Post
Q u o t e:

Automated? Does that mean that a certain Blue "Bot" could find his way in? O_O :)

The only thing he can find his way into is trouble.