Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

E-mail Account Hacked

Forum Avatar
Tunadruid
#0 - Sept. 20, 2010, 6:50 a.m.
Blizzard Post
Hello,

My e-mail (and I'm assuming my WoW account) was hacked sometime in the last week, and messages were sent out that looked like this:

"Hello,

This is an automated notification regarding your World of Warcraft account. Your account options was recently modified through the Account Management website.

*** If you did NOT make any changes to your account or subscription, we recommend you login to Account Management at the following link to review your account settings:
-- www.worldofwarcraft.com/account/billing/ --

If you cannot sign into Account Management using the link above, or if unauthorized changes continue to happen, please contact Blizzard Billing & Account Services for advanced assistance.

Account security is solely the responsibility of the accountholder. Please be advised that in the event of a compromised account, Blizzard representatives will typically lock the account. In these cases the Account Administration team will require faxed receipt of ID materials before releasing the account for play.

Regards,

The World of Warcraft Support Team
Blizzard Entertainment
-- www.blizzard.com/support/wowindex/ --
"
I've altered nothing in the message but the http://'s so that they do not link to anything.

The link to the account management website in the e-mail leads to a malicious and suspicious website.

I recently uninstalled the game and deleted my characters on my own accord due to lack of interest and future motive to play, however this comes as a surprise. I'm assuming if my e-mail was hacked, then certainly my account was as well. If anyone could provide me with some assistance on this matter, I'd appreciate it.

Mainly I'm looking to see if, A) Was my account compromised? B) Can it be restored to the condition I left it. (Which isn't really important as I don't have level 80 characters to restore, I just don't want gold sellers tainting my account left and right.)

I've changed my password prior to writing this e-mail, so further complications can hopefully be avoided.
Forum Avatar
Orlyia
#2 - Sept. 20, 2010, 7:06 a.m.
Blizzard Post
It's sometimes difficult to say with certainty without seeing the email or internal headers proper - but I'd say, yes - this is a phish.

The fact the links would go to bogus websites being a main tipoff.

If you actually WENT to the website in question, I'd recommend a full security sweep of your system immediately. They will often try to slip malware onto your system on such sites, even if you didn't fill anything out.

This sticky may be useful.
Account Hacked? Security Issue? Look Here!
http://forums.worldofwarcraft.com/thread.html?topicId=24702231244
Forum Avatar
Orlyia
#4 - Sept. 20, 2010, 7:50 a.m.
Blizzard Post
I'm not seeing any access since 9/16 on the account you are posting under.

They don't always compromise an account immediately, however. Taking the security steps you are is good - you may also want to consider adding an authenticator even if you plan on leaving the account for a period of time.