Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Was there a massive Security Breach?

Forum Avatar
Traceums
#0 - May 24, 2010, 6:12 p.m.
Blizzard Post
My boyfriend received an email today when he was at work saying his account information was changed (when he hadn't changed anything) so he called me at home to check his accounts and characters to make sure they were okay. First, I tried to log in to the official WoW website, "Service unavailable", tried the Battle.net website, same thing. Logged on in the games on our accounts, everything is fine, characters fine. All the gold is there, etc. Came here to the forums and noticed A LOT of posts, just from today, about people getting hacked.

I assumed the login portions of the websites were shutdown in order to avoid more accounts from being hacked?


I just checked the websites again and now I can log in fine.

What is going on? There's no word on the "Breaking News!" login page in the game and nothing on the official website and also, nothing on here about it. No sticky...nothing.



By the way, the email looked extremely fake even though it had a "[email protected]", but it included a funny link. Looking at it, it looks like they didn't even try to cover it up and make it look "official". I already forwarded it to "[email protected]".
Forum Avatar
Aredek
#17 - May 24, 2010, 6:29 p.m.
Blizzard Post
Our website has been available all day as far as I can tell, Traceums. It's possible that your Internet Service Provider was not able to route to our servers briefly, but the website has been available to a large majority of our players throughout the day. More than anything, I'd say this is simply a coincidence.

As you've noted, the e-mail your boyfriend received was likely a phishing scam designed to fool you into providing a malicious party with your account information. Unfortunately, some players do not notice the scam until it is already too late which inevitably leads to a compromised account. While we'd like to protect our players from these e-mails, there is only so much we can do to educate and warn our players of these threats. We're always looking for new ways to assist our players on this regard, so if you have any specific ideas, please feel free to share your thoughts on the Suggestions Forum.

The Customer Service forum is frequently visited by players who have been compromised simply because we have created a number of helpful resources for our players' benefits. Additionally, we see spikes in the number of posts when our Billing Department is receiving a large number of calls and many players are unable to get through. This ebb and flow of posts is fairly typical on the Customer Service forum and should not be considered any indication that there has been a security breach or an influx of compromises.

I appreciate your concern, Trace. If you or your boyfriend have any specific questions, please let us know. :)
Forum Avatar
Aredek
#27 - May 24, 2010, 6:36 p.m.
Blizzard Post
Please be aware that a large number of the malicious Authenticators are able to be identified fairly quickly and efficiently. If it as all questionable, our Technical Support Representatives will not remove the Authenticator from the account without requiring a completed Terms of Use form. To be perfectly honest, I haven't heard of a single legitimate Authenticator being removed without the owner's permission.