Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Is this real?

Forum Avatar
Turnip
#0 - Aug. 18, 2010, 7:06 a.m.
Blizzard Post
I found this little gem in my junk folder in my email. I don't want to click the link for obvious reasons. This is completely out of the blue for me.

Hello,


Blizzard Entertainment recently received a request to change the e-mail address used to log in to the Battle.net account with the username *myemail*@hotmail.com. The e-mail address v***@hotmail.com has been specified as the new username for this Battle.net account. An email has been sent to this new address containing a verification link to complete the change.

Once the new address has been verified, the e-mail address *myemail*@hotmail.com can no longer be used to log in to this Battle.net account or any World of Warcraft accounts merged with this Battle.net account.

If you did not initiate this request, please click here to contact the Blizzard Billing & Account Services team immediately.

Sincerely,
The Battle.net Account Team
Online Privacy Policy

I did not initiate such an action. I don't want to go through with this. I don't know if this is a clever hacker or Blizz.

*not my real email but I don't want to post mine for again obvious reasons

So, to any customer service rep....what do I do? How do I cancel this action if it is real? I don't want to lose my account.
Forum Avatar
Orlyia
#3 - Aug. 18, 2010, 7:23 a.m.
Blizzard Post
This is what is commonly referred to as a phish. That quite literally means someone is ‘fishing’ for information and hoping they get a bite :)

If you look at the top of this forum you’ll see a library of ones that are commonly used (or close variants thereof) under “Fake Emails from Blizzard”

http://forums.worldofwarcraft.com/thread.html?topicId=965511383&sid=1

The proper email to report these is [email protected] – you can forward the email, headers intact to that address.

Phishes rely on two primal human emotions and hope they get you to react before you think through what is being asked, greed and fear. They’ll either try to entice with an offer or intimidate with a threat.

We never ‘threaten’ an account action. If we have sufficient cause to think an account has been tampered with or needs locked down, we do it first – we don’t threaten with an ‘or else’ email.

WoW accounts are certainly not the only target of phishers. They send them out purporting to be banks, credit card companies, shipping companies – all aimed at obtaining information the thief can use to your detriment.

We will also NEVER ask for your password, or ask you to sign into some website somewhere not under our domain to login.

One way to check any email is to open up the header in your email program and check to see the actual route and sender. This is done in various ways, depending on your email program, but all can do it. Internal email addresses (what you see at the top of an email) can be spoofed very easily. Where it says it came from under sender is not necessarily true. The header of that email will show the true sender. Many spam programs actually use a comparison of these to flag suspicious emails.

Links in an email are also incredibly easy to spoof and/or redirect. Just because the URL looks legit doesn’t necessarily mean that’s where it really goes. Before clicking ANY link, in ANY email, mouse over the link and look at your bottom browser bar to see where it is reported to actually be destined.
Forum Avatar
Orlyia
#5 - Aug. 18, 2010, 7:31 a.m.
Blizzard Post
You can make a FROM line say anything - it should NEVER be trusted.

It's as easy as writing a incorrect return address on an envelope.

The internal routing headers, however, will show you the true route something took to your machine and who sent something - or at least if it was NOT sent by Blizzard.