Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Account compromised...sort of

Forum Avatar
Haann
#0 - Sept. 18, 2010, 7:40 a.m.
Blizzard Post
Well, I was browsing my e-mail and noticed several e-mails concerning password recovery, which I thought were phishing e-mails at first, so I ignored them. They were legit URLs however, mousing over them and observing the URL. Then as I was going to login and update my billing information, it said my username/password was invalid (I was still logged into WoW idling on a character at the time). So I promptly did a password recovery and changed my password and all seems to be well again. Seems as though the authenticator prevented any potential damage.

So my question is...how were they able to change my password? As you need to actually click the link from the e-mail received from a password recovery and answer the secret question... I know for a fact I did not mistype my password or e-mail. My only conclusion is that my e-mail got hijacked?

I also have scanned my computer in depth with Malwarebytes as well as NOD32, but they both come up 100% clean.

**well it seems like someone changed my password again and I just did another recovery...
Forum Avatar
Roraks
#2 - Sept. 18, 2010, 8:54 p.m.
Blizzard Post
Hi Haann,

Based on what I can see, a password reset was requested by someone trying to gain access to the account. In this case, they more than likely have access to your e-mail.

Beyond running an extensive virus scan. I would recommend you secure your e-mail account or use a different e-mail.

You may also want to check out the following thread:
Account Hacked? Security Issue? Look Here!
http://forums.worldofwarcraft.com/thread.html?topicId=24702231244&sid=1

Let me know if you have any additional questions.