1 Dorm=20people play wow=6people got hack

#0 - July 23, 2010, 12:23 p.m.

It's hell right now, don't know what to think, speak, and even write because we're in panic right now. 6 people got hack and 1 got banned for exploitation today and we don't know why or who to blame, everyone suspicious to each other and think..."is he doing something with my PC yesterday?"... Everything from Yahoo-mail security code and password got changed and acc ID change to diff e-mail, all the mail change to [email protected] or [email protected], ex:s***@rocketmail.com d***@rocketmail.com... we receive mail like this :
Blizzard Entertainment <[email protected]>
Hello Erik,

Blizzard Entertainment recently received a request to change the e-mail address used to log in to the Battle.net account with the username [email protected]. The e-mail address b***@rocketmail.com has been specified as the new username for this Battle.net account. An email has been sent to this new address containing a verification link to complete the change.

Once the new address has been verified, the e-mail address [email protected] can no longer be used to log in to this Battle.net account or any World of Warcraft accounts merged with this Battle.net account.

If you did not initiate this request, please click here to contact the Blizzard Billing & Account Services team immediately.

Sincerely,
The Battle.net Account Team

We already sent an e-mail to AccAdmin, and some of us got reply like this :
From : "[email protected]"
Geetings

please email me back with contact number and the following info so i can resolve everyones issue

The email address used to contact us is not registered to the Battle.net or World of Warcraft account in question.

In the E-Mail's Body, include:
WoW Account Name:
Battle.Net Account Name:
Normal Play Realm:
Known Losses:

Please note, if you have received notification no response is necessary. As stated previously, unnecessary responses could potentially create longer wait times.

Account compromises most often occur when a player shares login information with an unauthorized third party or plays on a computer that has a virus, Trojan, or key-logger. We recommend following the http://us.battle.net/security/checklist.html on our Account Security site at http://us.battle.net/security/index.html.

Feel free to respond to me for any questions, comments or concerns.

Joshua S.
Account and Technical Services Rep
Blizzard Entertainment

Is it a valid e-mail from blizzard staff? ....
Because he write like this i doubt it's from blizzard...
01. "The email address used to contact us is not registered to the Battle.net or World of Warcraft account in question."... of course is not registered right?, because it's change to a diff email address....
02. "Known Losses?"... how can we know if we can't login.....

Because we're newbie play a strick overseas OL games, we ask people and read how to secure our PC to prevent something like this from happen, usualy we buy Internet Security Antivirus=norton,kaspersky,AVG, Spybot Spyware, Windows antispyware, sandboxie, and event using hotspot shield to browsing and prevent privacy issue.... but it's happen today

All we can do is pray, change yahoo mail address to gmail or anything that more secure and hope the AccAdmin work fast restoring the acc...

Any advice to prevent this thing from happen again? maybe the blue can give me some confirmation about the mail?

Orlyia

#1 - July 23, 2010, 12:29 p.m.

The very best defense for an account is an authenticator. In the situation you describe, I highly recommend you all protect your accounts with one.

Now, I'm going to post the fuller recover instructions below - not all parts may apply, but it sounds like in most of these cases they will.

------------------

If an account has been merged to a Battle.net, or if an email has been changed, or an authenticator added to the account (not the player's own) one of your first stops is going to be Billing. They need to get those sorted out first so the rest of the processes can continue.

Billing and Account Services
Phone Support - 1 (800) 59-BLIZZ (1 (800) 592 5499)
Live Representatives Available 7 days a week, 7am to 8pm Pacific Time
E-mail Support - [email protected]

Now, it's very very important to figure out where the security breach occurred. If they CAN get back in, they WILL be back. That, unfortunately, you can count on.

These two stickies should prove helpful.

Account Hacked? Security Issue? Look Here!
http://forums.worldofwarcraft.com/thread.html?topicId=24702231244

Account Compromise Info Center
http://forums.worldofwarcraft.com/thread.html?topicId=14318909866&sid=1

You may also want to look into getting an authenticator for your account. It's no substitute for good security habits, but it will help keep them out of your WoW account.

Blizzard Store
http://us.blizzard.com/store/browse.xml?f=c:6

Mobile Authenticator
http://us.blizzard.com/support/article.xml?locale=en_US&articleId=26109

I do wish you all the very best on a speedy recovery.

Orlyia

#5 - July 23, 2010, 1:37 p.m.

To check the legitimacy of an email look at the INTERNAL routing headers, not the from line.

Many of our international players highly recommend programs like Skype for making long distance calls.

Orlyia

#23 - July 27, 2010, 8:21 p.m.

Q u o t e:
ughhh, got hack and then perma ban for cheating.... i already contact wowaa regarding this matter and waiting for confirmation about what happen, but still it's not fair because i lost so much time for this...

Can the blue investigate the hacker action?

Server : Altar of storms-Horde
Toon : Mordonn

and one more server

Server : Skullcrusher-Alliance
Toon : Charidrel

Ty, i realy need help regarding this matter T_T

I'm actually not seeing anything on the first character - something on the second.

Account Administration I'm afraid are the only folks that have the authority to review and either uphold or overturn actions.

If you've already emailed from the account's registered address, I'd await a reply. It can take a few days.

Orlyia

#25 - July 27, 2010, 8:43 p.m.

I'm not seeing any actions on the first one you listed. Care to give me another character name on that account? It's possible I looked into the wrong one.

Orlyia

#28 - July 27, 2010, 1:50 p.m.

I still think this could more easily be addressed if you can manage to call Billing. Did you find out about Skype?

Anyway, if your account isn't the one with the action - and you can access it, really no need to contact Billing.

Any accounts that need appealed for actions - [email protected] is the address.

Any account you cannot regain access to on your own - that would be Billing.

Does that help?

Orlyia

#31 - July 28, 2010, 8:32 p.m.

Well, I can appreciate the challenges of dorm life, but an unlocked door? How would they get into the account itself if they didn't have his information? Getting on his system, sure - maybe even installing a keylogger, but to actually get into the account takes a bit more access than that.

Again, I'd recommend anyone that finds themselves in a situation where they have to use a machine anyone else has access to....get an authenticator :)

I really can't go into an Account Administration's call on an issue, that is totally under their jurisdiction and authority. He could try another appeal, but if this has already been reviewed, it sounds like from your description it looks like it happened there (which it would have in this case), we really have no way to prove your friend did NOT do whatever it was that was actioned.

If that doesn't work out, perhaps another RAF may be in order, get up to speed quickly....and protect that one with an authenticator :)

I do wish you and your friends all the best.

Oh, to send feedback on any Game Master interaction, [email protected] can be used :)