Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Fuzzy Avatars Solved! Please re-upload your avatar if it was fuzzy!

World of Warcraft: NA Account Information Compromised

SBFordSBFord Associate Editor - News ManagerThe Land of AZPosts: 16,610MMORPG.COM Staff Uncommon

Blizzard is reporting that certain pieces of information for North American Battle.Net users has been compromised due to a hacking incident this week. According to the post on the Blizzard site, financial information is not considered threatened but account passwords, email addresses, security questions and mobile authenticator data were taken.

We also know that cryptographically scrambled versions of Battle.net passwords (not actual passwords) for players on North American servers were taken. We use Secure Remote Password protocol (SRP) to protect these passwords, which is designed to make it extremely difficult to extract the actual password, and also means that each password would have to be deciphered individually. As a precaution, however, we recommend that players on North American servers change their password. Please click this link to change your password. Moreover, if you have used the same or similar passwords for other purposes, you may want to consider changing those passwords as well.

Read the entire post on Blizzard's site.

image

Associate Editor: MMORPG.com
Follow me on Twitter: @MMORPGMom

image
«13

Comments

  • expressoexpresso mePosts: 2,183Member Uncommon
    OK now Blizzard have been hacked, you see when Blizzard is really hacked they do tell people like all responsible companies do.
  • LobotomistLobotomist ZagrebPosts: 5,053Member Uncommon
    I guess it means that also Diablo accounts are compromised , together with all the money in RMAH ?

    image

  • niceguy3978niceguy3978 Gainesville, FLPosts: 2,000Member
    Originally posted by expresso
    OK now Blizzard have been hacked, you see when Blizzard is really hacked they do tell people like all responsible companies do.

    This won't stop people from insisting that blizz has been compromised for years otherwise they wouldn't have "so many" hacked accounts.  Of course they have more accounts (potential targets) than any other sub game ever, but that doesn't matter.

  • niceguy3978niceguy3978 Gainesville, FLPosts: 2,000Member
    Originally posted by Lobotomist
    I guess it means that also Diablo accounts are compromised , together with all the money in RMAH ?
     

    In order to use the RMAH you have to have one or more forms of the authenticator, I believe.  I could be mistaken, I haven't bothered with it.

  • PsychowPsychow SF Giants Territory, CAPosts: 1,784Member
    I guess I'd better change the password on my luggage...
  • NadiaNadia Canonsburg, PAPosts: 11,866Member Common
    this gives more merit to the Diablo3 hacked account claims
  • KarteliKarteli Providence, PAPosts: 2,646Member

    I look forward to this incident being disected on TechSnap.

     

    http://www.youtube.com/playlist?list=PL995EBE645950DFF5&feature=plcp

     

    [You have to go down to the latest release (cuz YouTube keeps changing their structure).] btw Youtbe - listing oldest first is bad.

     

    Those guys pick every companies flaws & analyze their network vulnerabilities.  They did it for SOE + others .. waiting for Blizzard now :)

     

    Want a nice understanding of life? Try Spirit Science: "The Human History"
    http://www.youtube.com/watch?v=U8NNHmV3QPw&feature=plcp
    Recognize the voice? Yep sounds like Penny Arcade's Extra Credits.

  • nixiumnixium ManchesterPosts: 21Member
    It's like hearing about a nuclear reactor exploding. But worse.
  • tawesstawess LkpgPosts: 2,535Member Uncommon
    Originally posted by Nadia
    this gives more merit to the Diablo3 hacked account claims

    Not really as it would be pointless to try and pry the passwords out fo this data when most people freely give up their passwords when asked.

     

    This is most likley just probing for something bigger or a e-peen stunt.

  • AcorniaAcornia Spring Lake, RIPosts: 176Member

    The account hack battlenet had a couple of years ago is the reason I stopped playing WoW and why I hate playing any game that requires log in through battlenet type system or 3rd party systems.

    I feel that each game should have their own stand alone log in system with all personal info at least triple 256 encriped as a min protection.

  • syntax42syntax42 Columbus, OHPosts: 1,305Member Uncommon
    Originally posted by niceguy3978
    Originally posted by expresso
    OK now Blizzard have been hacked, you see when Blizzard is really hacked they do tell people like all responsible companies do.

    This won't stop people from insisting that blizz has been compromised for years otherwise they wouldn't have "so many" hacked accounts.  Of course they have more accounts (potential targets) than any other sub game ever, but that doesn't matter.

    How could a phishing scammer get your email if you only used it to register for WoW and never anything else?  My email which I only checked when I forgot my password after a long break from WoW was filled with ONLY WoW phishing emails, so I know there had to be a leak or hack.  How else would I only get WoW phishing emails and not the other junk normal spammers send?  This was back when the Burning Crusade expansion was released.

     

    Blizzard's security has been compromised for years.  The authenticators were the only thing that made it reasonable to trust them with my credit card number.  Blizzard is too big of a target for hackers and dishonest employees who are looking to make a quick buck.

  • jeremyjodesjeremyjodes antioch, ORPosts: 679Member

    I'm not logging in it's a trap! They want me to see some special offer to return I bet. let them have my account never going back.

     

    image

  • endgame1endgame1 Chapel Hill, NCPosts: 84Member

    Just one quick observation reading the faq below. They detected the security breach on August 4th, but there's no info about how long that breach may have existed before they found it. 

     

    http://us.battle.net/support/en/article/important-security-update-faq

  • RelGnRelGn halalaPosts: 494Member
    Thats what happens when u fail to deliver a diablo 3 game.They deserve it

    image
  • zymurgeistzymurgeist Pittsville, VAPosts: 5,211Member Uncommon
    Originally posted by nixium
    It's like hearing about a nuclear reactor exploding. But worse.

     Really? Because hundreds, possibly millions of people being forced out of their homes and facing an increased risk of cancer or lingering death is not like having to change your password.

     

    Thanks for the heads up Ms Susan Ford. Much appreciated.

     

    "Strong and bitter words indicate a weak cause" ~Victor Hugo

  • LummLumm amarillo, TXPosts: 132Member
    Another fail by Blizzard. I don't expect any less from them i guess.
  • YakkinYakkin irvine, CAPosts: 919Member
    Originally posted by nixium
    It's like hearing about a nuclear reactor exploding. But worse.

    Worst comparison on the internet EVER. If a nuke reactor blows up, we're all royally screwed in some way and people LOSE THEIR LIVES, or get stuck with horrifically painful forms of cancer if they get irradiated. Battle.net gets compromised? True there might end up being some problems with hackers, but it's not a supremely bad issue.

  • kadepsysonkadepsyson sun prairie, WIPosts: 1,937Member
    So much for blizzard being the Almighty secure authenticator protected infallible entity people claimed.

    El Psy Congroo

  • GravargGravarg Harker Heights, TXPosts: 3,332Member Uncommon
    it happens, at least Blizzard is upfront about it, unlike SOE which tries to hide it (or doesn't realize it happend until months later).
  • eye_meye_m Notta Chance, ABPosts: 3,133Member Uncommon

    so theoretically, people could lose their WoW, SC2 and Diablo 3 accounts all in one fell swoop.  Rather than say anything that could be perceived as unkind, I'll just say that at this point in time it appears it could be most unfortunate to be a patron of blizzard.

     

     

    All of my posts are either intelligent, thought provoking, funny, satirical, sarcastic or intentionally disrespectful. Take your pick.

    I get banned in the forums for games I love, so lets see if I do better in the forums for games I hate.

    I enjoy the serenity of not caring what your opinion is.

  • JimmydeanJimmydean Ypsilanti, MIPosts: 1,270Member
    Originally posted by Gravarg
    it happens, at least Blizzard is upfront about it, unlike SOE which tries to hide it (or doesn't realize it happend until months later).

    This probably happened months ago. Oh I dunno, maybe sometime around May 15th.

  • IkedaIkeda Largo, FLPosts: 2,204Member Uncommon

    (shrug) If you have a physical authenticator you're still safe :-)

     

    I want a physical authenticator for EVERY game I play now if it's an option.

    SWTOR: F2P or Premium? Want Galactic Strongholds early? http://www.swtor.com/r/LbMdN7 Use the referral for 7 days of subscriber access. Unlock your GS today!

  • jusomdudejusomdude Somewhere, KSPosts: 2,401Member

    Changed my password. even though I have a real authenticator... that was an easy fix.

    Might have some problems with people that don't pay attention to gaming news and people that don't play anymore though.

  • PsychowPsychow SF Giants Territory, CAPosts: 1,784Member
    Originally posted by reignjuste
    Thats what happens when u fail to deliver a diablo 3 game.They deserve it

     

    Siding with hackers isn't a good thing. You could be their next target. 

  • zymurgeistzymurgeist Pittsville, VAPosts: 5,211Member Uncommon
    Originally posted by kadepsyson
    So much for blizzard being the Almighty secure authenticator protected infallible entity people claimed.

     Still don't know how secondary authentication works do you?

    "Strong and bitter words indicate a weak cause" ~Victor Hugo

«13
Sign In or Register to comment.