Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Account Hacked

Forum Avatar
Erimentha
#0 - June 6, 2010, 6:13 a.m.
Blizzard Post
I had my account hacked yesterday. Lost all my gold, items, gear etc. I have now changed my password so hopefully I'm safe. I got an automated reply from a GM in game that they're looking into it, do I need to do anything else?

Also, I finally found out what I did. I got an email about a new WoW magazaine and I followed the link. I assume that's what caused this to happen.

I have scanned my pc with...

~ Spybot
~ MalwareBytes
~ Avast!
~ AVG
~ Windows Defender

and they all came up clear. Is it safe to assume I have no compromises?
Forum Avatar
Aredek
#15 - June 6, 2010, 2:37 p.m.
Blizzard Post
It sounds as if you are taking many of the right steps, Erimentha. It's difficult for us to say "yes, your computer is secure" or "no, it's not secure" because we do not have access to this information. I encourage you to stay persistent in your virus and malware scans, and want you to consider the possibility of choosing a new registered e-mail address and password for your Battle.net account. If the malicious party knows your registered e-mail address, they may attempt to send you malicious e-mails designed to fool you into logging into a website or providing them with your account information. For more information, please review the following resources:

Account and Computer Security:
http://us.blizzard.com/support/article/30794

How to Identify Fake or Phishing Emails:
http://us.blizzard.com/support/article/25133

Fake E-mails from "Blizzard Entertainment":
http://forums.worldofwarcraft.com/thread.html?topicId=965511383&sid=1

Also, as Pail has stated, your password was likely reset as a result of your account being reported as compromised. Password resets are a normal part of our workflow to ensure that the password has changed since the compromise occurred.

If you have any questions regarding the restoration process, please let us know.
Forum Avatar
Aredek
#19 - June 6, 2010, 2:50 p.m.
Blizzard Post
Q u o t e:
Thanks for the reply.

Is there anyway I can verify if it was Blizz who did reset my password? That would significantly put my mind at ease about my PC.


My apologies for not saying so more matter-of-factly, Erimentha, but the password reset which took place shortly after 7:45 AM UTC was a result of our staff escalating your account for investigation.

Q u o t e:

Also, I know you don't know anything about my PC, but is it possible I could have been hacked but there be no further compromises to my PC? I know you can't guarantee anything, but if you could give me some idea that would be nice.

The possibility is there, but I couldn't say for certain one way or another. If you logged into the account using another computer, fell for a phishing scam, used your account information to sign up for another service/website, or shared your account with someone who accessed it with a malicious computer, there's a possibility that your account information was gleaned as a result of one of these methods and not as a result of a security vulnerability on your personal computer.
Forum Avatar
Orlyia
#30 - June 7, 2010, 11:04 a.m.
Blizzard Post
Q u o t e:
Both.

But I usually find the site first via google searching. I don't use any add ons with WoW though.


^^ This could be another issue.

The compromisers have been setting up look-a-like websites for not only our pages, but popular addon sites and then paying to have them pop up in the top links.

Be VERY careful where you actually land, just looking at a page isn't enough.