WoW: Account Hacked - Battle.net Merger

I too have gotten several phishing mails claiming to be either Faction Changes, or Account Locked or some such.

I follow Blizzards request and forward them to [email protected] after viewing and copying full headers so they can actually try to track the perpetrators.

I also always include an inspirational statement such as "Get these bastards!" or "Go get 'em!" Hopefully it helps someone in the security department get a chuckle.

This is my favorite because i get all jazzed up until i read it:

World of warcraft: Cataclysm Beta Test Invitation!

Get those opt-ins ready for the World of Warcraft: Cataclysm closed beta! The sundering of Azeroth is nigh, and you don’t want to be left out in the cold of Northrend when you could be enjoying the sun-drenched beaches on the goblin isle of Kezan. To ensure you’re opted-in and eligible as a potential candidate, you’ll need a World of Warcraft license attached to your Battle.net account, have your current system specifications uploaded to the Battle.net Beta Profile Settings page, and have expressed interest through the franchise-specific check boxes.

Get the Installer - Log in to your Battle.net account:
( bogus url: wow-battle-cataclysmbeta)
** IMPORTANT ** To avoid graphical bugs and other technical issues, please ensure your video card drivers are up-to-date.

Enjoy the game!

2010 Blizzard Entertainment, Inc.

I get about a half dozen phishing attempts a day in my spam folder. The only ones that really impress me are the ones that land in the inbox.

Gotta love the horribly mangled english in the online phishing attempts. Getting a handful of those a day now. You have to wonder about the people that fall for them.

Well for those of you on the fence about spending a few bucks or not ..... please do so if you do not own an apple device that will run the authenticator program. In the past 2 weeks I have had my account jacked 3 times! Thankfully with Blizzard support I have been able to get all things restored back to semi-normal. I have had to change passwords on so many things now my notebook at my desk is almost full. I will shamefully admit I fell for a sucker punch but it happened and now I just have to move on, but I can guarntee I won't be playing anymore w/o the authenticator.

LtWarhound wrote:

Gotta love the horribly mangled english in the online phishing attempts. Getting a handful of those a day now. You have to wonder about the people that fall for them.

Amen to this...as a self-appointed grammar nazi, the poorly constructed phishing emails make me cringe. Who could possibly fall for them?

Shadowklr wrote:

Well for those of you on the fence about spending a few bucks or not ..... please do so if you do not own an apple device that will run the authenticator program. In the past 2 weeks I have had my account jacked 3 times! Thankfully with Blizzard support I have been able to get all things restored back to semi-normal. I have had to change passwords on so many things now my notebook at my desk is almost full. I will shamefully admit I fell for a sucker punch but it happened and now I just have to move on, but I can guarntee I won't be playing anymore w/o the authenticator.

Keep in mind that the authenticators do not make your account impervious to compromise. Much like a seat belt in a car it is added protection and can limit the level of injury. So make sure your virus protection is up to date and run regular security checks.

I just got a HTC Android Hero and found on the Google marketplace the battlenet authenticator. I put it on the phone and connected it to my account and was able to login with it. So it is not just for iphones or itouch.

Demonicmaster wrote:

So it is not just for iphones or itouch.

In fact, it supports quite a wide range of phones. You can check individual phone compatibility here: http://mobile.blizzard.com/support-compat.html

Serengeti wrote:
Demonicmaster wrote:

So it is not just for iphones or itouch.

In fact, it supports quite a wide range of phones. You can check individual phone compatibility here: http://mobile.blizzard.com/support-compat.html

Just don't be an idiot like me. I just returned my Android based phone (and wiped it in the process) without giving a thought to my mobile authenticator I had downloaded. I am crossing my fingers that the call to support later is painless.

All your account belong to us!

Shadowklr wrote:

Just plan on having your phone on speaker phone. It took me an hour to get throuh to support last time. They were,however very nice and did get everything restored for me.

Queue Time: F
Quality of Support: A+

Just plan on having your phone on speaker phone. It took me an hour to get through to support last time. They were,however very nice and did get everything restored for me.

I recently got a phish email that stated my battle.net account was locked after it was accessed from several different IPs in the same day. The English was spot on. What gave them away was the fact that the email was sent (and received on) 8/20 and the date of offense was listed as 8/21. Also, the domains looked a bit off.

Of course the email had several links to click on, in order to "verify" my account.

I like how 14/18 of the spam filtered by Gmail is WoW related. I'm halfway expecting them to try something different to make their spam distinct. I guess while there's still fools clicking their links there's no need for them to stretch their creative skills.

I changed my email 3 times since creating my account and it is still going to my old email address. Not the one that I am using now.

Had my first account hacking today! Luckily they only used it for spam and i got a three hour suspension. Changed all the passwords and am now rooting through my system to see how they did it. (I had recently ordered the authenticator, and it should be arriving today or tomorrow)

Fun! Now they've closed my account. Oh well, I've sent in a request to have them look at it.

This is the worst phishing attempt I've seen yet. Came in my e-mail today:

Greetings!

Recently,the problem of account invasion is getting worse and worse which cause enormous players' equipments and virtual currency stolen.This severely damages the benefits of mass players,also causes our company lose a lot of customers.

Our company has to adopt some measures to safeguard our common benefits in order to strengthen the safety of mass players' accounts,and firmly resist the account to be stolen again.Through our company's research and investigation to xxx customers,we will make the following decisions:we launch a package of updated code strengthen system and dynamic code protection card which can effectively prevent the accounts invaded.We will send this package of code protection system to players free of charge.

Please open this connection: [link inserted here]

If your account passes the check successfully,we will send this package of dynamic code protection card to you in the form of e-mail.

I deleted a bunch of "your account is under investigation for controversial game currency transaction" messages that gmail filtered as spam. On one hand I find it funny that they don't go to more effort to make it sound correct in english, more effort than just pushing it through a translator, on the other it's depressing that they don't need to and enough people fall for the scam.

I've actually gotten a couple lately that were well formatted and grammatically correct english, along with a reasonable footer that contained links back to Blizzard itself, so at least someone out there is getting smarter.

Yes, I had a big spike in these kinds of messages a couple of months ago, and those were much better written. This one here is just lazy

The one I got today was much cleverer:

We are excited to announce the World of Warcraft: Cataclysm beta opt-in is now available.

In the beta test you will be given an opportunity to provide your feedback on the overall gameplay experience as well as experience new playable worgen and goblin races, new zones, professions and more. For a full list of features please follow this link: [@ "cataclysm-test-wowaccount.net"]

We will be selecting account holders of Battle.net and World of Warcraft accounts who opted-in at random to participate in the World of Warcraft: Cataclysm Beta Test. To opt-in for the beta test please visit the World of Warcraft: Cataclysm website which can be accessed here.

In order to be eligible for the World of Warcraft: Cataclysm - Beta Opt In you will need to have a valid World of Warcraft subscription in good standing when the beta test is scheduled to commence. Should you be selected to participate in the beta test you will be able to transfer your characters onto our test realm and embark on the epic journey against the dreaded Deathwing!

We look forward to working with you in the World of Warcraft: Cataclsym Beta test.

Sephirotic wrote:

Had my first account hacking today! Luckily they only used it for spam and i got a three hour suspension. Changed all the passwords and am now rooting through my system to see how they did it. (I had recently ordered the authenticator, and it should be arriving today or tomorrow)

Luckily since starting to use the authenticator I have not had any problems. I also changed my email from hotmail to gmail on the advise of Blizzard customer support and it's amazing I still get 1 to 2 fishing emails a day on the hotmail account.

Funkenpants wrote:

The one I got today was much cleverer:

We are excited to announce the World of Warcraft: Cataclysm beta opt-in is now available.

In the beta test you will be given an opportunity to provide your feedback on the overall gameplay experience as well as experience new playable worgen and goblin races, new zones, professions and more. For a full list of features please follow this link: [@ "cataclysm-test-wowaccount.net"]

We will be selecting account holders of Battle.net and World of Warcraft accounts who opted-in at random to participate in the World of Warcraft: Cataclysm Beta Test. To opt-in for the beta test please visit the World of Warcraft: Cataclysm website which can be accessed here.

In order to be eligible for the World of Warcraft: Cataclysm - Beta Opt In you will need to have a valid World of Warcraft subscription in good standing when the beta test is scheduled to commence. Should you be selected to participate in the beta test you will be able to transfer your characters onto our test realm and embark on the epic journey against the dreaded Deathwing!

We look forward to working with you in the World of Warcraft: Cataclsym Beta test.

If I had a free day of game time for every one of those I'd ever gotten, I'd effectively have a lifetime subscription. Ah well, such is life.

*I'm copying this here from the front page Cataclysm post as odds are you guys have more experience with the latest hacking/restoring processes. Not sure if I should just quit trying to resolve this through in game tickets and just call Blizzard.

I reactivated my account yesterday (after discontinuing my subscription in November '09) in preparation for the release of Cataclysm. This was after discovering that my account was apparently hacked in March '10 without my knowledge.

It's an old familiar story by now, but of course my stuff is gone and I have a bunch of naked characters milling about in strange locations. Blizzard claims that they do not retain records back that far so they can not restore my characters and items back to the way they were when I originally stopped subscribing.

Oddly the hackers left my two level 80s with whatever they had equipped on them, but emptied their inventories and banks. According to Blizzard this means my characters are playable and I do not qualify for a "care package" to get my started playing again, whatever that is. It's strange because I basically have the clothes/weapons on my back and 80 gold between all my characters.

Has anyone else experienced this? I thought Blizzard was more willing to work with people than this. I didn't even know hackers hacked non-active accounts.

aphesian wrote:

I didn't even know hackers hacked non-active accounts.

Every hacker dreams of finding abandoned accounts because there's no one calling Blizzard customer service on them. Check the armory and see what sort of achievements the hacker(s) racked up -- might be a few because your toon probably got a good workout.

I'm a little surprised at Blizzard's odd non-response. This thread and others here are full of stories where Blizzard did a decent job at restoration. Call 'em again and maybe you'll get a CS rep who will at least meet you half way.

If Blizzard still gives you the stiff arm, well, you've got two 80s. Go do some dailies and farm some stuff to build up your reserves, then hit it hard when Cataclysm drops. You'll be fully geared (and better geared) by mid-December anyway.

So I had my first hack against me and I feel like a total dumbass. I woke up Friday morning to find my toons stripped naked except for what they couldn't sell. Don't know where I got the keylogger from, really doesn't matter now that the damage is done. I got all my stuff back within a few hours of putting a ticket, that was very cool of them. I put in a ticket for my brother to have the items replaced in our guild bank and they took care of that too. I demoted all my toons real fast.

Changed my passwords and all that good stuff from another computer in the house, they are both on the same network but have been too lazy to have them access files between the computers.
Got the keylogger cleaned up and ordered an authenticator from the store, this is where the dumbass part really comes into play. I thought you would only get the Hound if you bought the physical key so I bought one and was going to wait until it arrived to attach it to my account. That's when I read you could get the pet with the Iphone version of the key.
Then I realized I was putting my accounts security at risk all over again for a stupid pet.

Needless to say I have an authenticator on my account now and I saved myself 16.75$ I don't think they know Riverview is a real place in FL.
Devington

Got nailed this morning. Was able to sort it out with a Blizzard rep after about an hour of hold music. They restored gold/items to one of my characters but didn't touch any of the others. I now have a ticket in for each of my other characters. What a bunch of bastards!

Authenticator is on the way. I have no idea how it got compromised.

Stryker wrote:

Got nailed this morning. Was able to sort it out with a Blizzard rep after about an hour of hold music. They restored gold/items to one of my characters but didn't touch any of the others. I now have a ticket in for each of my other characters. What a bunch of bastards!

Authenticator is on the way. I have no idea how it got compromised.

I know it sucks to have another hour wait if you decide to call them again, but it sounds like you got a lazy Blizzard agent. The guy who worked with me on restoring my stuff also let me hand the phone over to my husband and reset all his stuff on the same phone call.