Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

So I got this e-mail....

Forum Avatar
Seconds
#0 - July 20, 2010, 6:56 a.m.
Blizzard Post
Q u o t e:
Greetings,

Thank you for your patience and understanding while we investigated the situation that you reported. We have concluded our investigation of the account and apologize for any inconvenience it may have caused you.

After a thorough investigation, we have found this account to be eligible for restoration. The details of the characters and/or items restored are contained below. Please be aware that your computer may contain a malicious software program, such as a keylogger, or the account information and password may have been shared with others. In either case, you are responsible for maintaining the confidentiality of your Password, and you will be responsible for all uses of your Password, whether or not authorized by you.

Also, note that the security of the Account is your responsibility.

Please take a moment to review the World of Warcraft Terms of Use at http://www.worldofwarcraft.com/legal/termsofuse.html. Prior to using World of Warcraft, we highly recommend following the http://us.battle.net/security/checklist.html on our Account Security site at http://us.battle.net/security/index.html. After you have checked your computer security, you should use the Account Management Website to review your account (http://us.battle.net/login).

Account Name: ----------------------
Realm: Dalvengyr


Money Restored: 544g 71s 76c

Item(s) Restored:

LONG LIST OF STUFF

Please note that items with random modifiers (of the Bear, of the Eagle, etc.) are randomly generated; therefore we are unable to guarantee that you will receive the same modifier you had on your original item. We are also unable to guarantee the restoration of trade skills, as well as enchantments or add-ons (such as gems, scopes, etc.) that your character's items may have possessed. While we will make every effort to provide assistance in cases of loss, please keep in mind that the decision to go forward with a restoration is entirely at Blizzard's discretion.

If you have any questions regarding your compromise, investigation, or restoration, please feel free to reply directly to this email.

Thank you for contacting us. We hope you continue to enjoy your experience in World of Warcraft!

Matthew S
Game Master Xuisho
Customer Services
Blizzard Entertainment
www.Blizzard.com/support


Did blizz just e-mail to wrong address? Or is this some new attempt at keylogging?

Few days before I got an email saying that I purchased celestial steed and this email was sent as confirmation of purchase and blah blah blah....it was keylogger.

So I change my e-mail just to be safe, and now got this on OLD email.
Forum Avatar
Orlyia
#2 - July 20, 2010, 8:27 p.m.
Blizzard Post
This is what is commonly referred to as a phish. That quite literally means someone is ‘fishing’ for information and hoping they get a bite :)

If you look at the top of this forum you’ll see a library of ones that are commonly used (or close variants thereof) under “Fake Emails from Blizzard”

http://forums.worldofwarcraft.com/thread.html?topicId=965511383&sid=1

The proper email to report these is hacks@blizzard.com – you can forward the email, headers intact to that address.

Phishes rely on two primal human emotions and hope they get you to react before you think through what is being asked, greed and fear. They’ll either try to entice with an offer or intimidate with a threat.

We never ‘threaten’ an account action. If we have sufficient cause to think an account has been tampered with or needs locked down, we do it first – we don’t threaten with an ‘or else’ email.

WoW accounts are certainly not the only target of phishers. They send them out purporting to be banks, credit card companies, shipping companies – all aimed at obtaining information the thief can use to your detriment.

We will also NEVER ask for your password, or ask you to sign into some website somewhere not under our domain to login.

One way to check any email is to open up the header in your email program and check to see the actual route and sender. This is done in various ways, depending on your email program, but all can do it. Internal email addresses (what you see at the top of an email) can be spoofed very easily. Where it says it came from under sender is not necessarily true. The header of that email will show the true sender. Many spam programs actually use a comparison of these to flag suspicious emails.

Links in an email are also incredibly easy to spoof and/or redirect. Just because the URL looks legit doesn’t necessarily mean that’s where it really goes. Before clicking ANY link, in ANY email, mouse over the link and look at your bottom browser bar to see where it is reported to actually be destined.