This site makes extensive use of JavaScript.
Please enable JavaScript in your browser.
Live
PTR
10.2.7
PTR
10.2.6
Beta
*Sighs* This sucks... big time....
Post Reply
Return to board index
Post by
Nelfshane
So I go to log in tonight. User name and password pop up just fine... then this message pops up "Please enter authenticator password" Crud... So I go to the forums immediately let them know whats up, go to my guilds forums and let them know. I then go check out my armory and junk and watch as one by one my characters that I've spent the better part of a year getting decked out slowly get their gear sold off. My pally that was in pure pvp gear just had the gear taken off and I assume junked. This stinks... big time... I can now relate to anyone that's gotten hacked recently.
My words of the wise are this. Don't get the curse addon manager. This happened three days if not less after I installed it...
*edit* ignore this, just was an odd coincidence.
Post by
114610
This post was from a user who has deleted their account.
Post by
Nelfshane
Dunno if it was bad info or not just seemed an odd coincidence to me. Within such a short amount of time I get hacked, just was a little funny. Whether or not it was the source or not, I'm still taking it off to be safer rather than sorry.
Post by
Snownation
You get get everything back you know. Just have someone whisper a GM.
Post by
Cambo
You get
*MOST OF*
everything back you know. Just have someone whisper a GM.
Fixed.
So OP, you have an authenticator and still got hacked? Or the hacker put an authenticator on?
Post by
Toldu
You get
*MOST OF*
everything back you know. Just have someone whisper a GM.
Fixed.
So OP, you have an authenticator and still got hacked? Or the hacker put an authenticator on?
then this message pops up "Please enter authenticator password" Crud...I believe the fact that he didn't expect to have enter an authenticator code is your answer.
Post by
TheReal
Toldu, are we allowed to infer here?
It wasn't the Curse client that did it. It was an account security failure on your part, OP. You may have purchased powerleveling or gold in the past, may have contracted a keylogger from a hinky website, responded to a phishing email... The list goes on. Don't bother trying to figure out the one thing you did wrong to lose your account; instead, figure out
everything
you
should
be doing and start doing those instead. Hint: Look at my signature.
Edited for clarity.
Post by
Federalagent
I agree, its not not the Curse. I have used Curse for ages, since it came out, and i have never been compromised.
"Just because you found your wallet missing after you walked under a ladder, doesn't mean you lost it because you walked under that ladder... "
Buy your own Authenticator to prevent this in the future, as a GM will not keep restoring your account.
Please take some time and review these links:
Blizzard Entertainment cares about your security -
http://us.battle.net/security/
Don't Buy Gold -
http://www.worldofwarcraft.com/info/basics/antigold.html
Blizzard Support Contact Information
:
DISCLAIMER
: I (Federalagent) am in no way affiliated with
Blizzard Entertainment, Inc.
-or-
Wowhead.com
.
The contact information provided proceding this disclaimer is for informational purposes only.
Phone Support:
(Hours: 8 a.m. - 8 p.m. Pacific Time, seven days a week)
US Account & Billing: 1-800-592-5499
Technical Support: 1-949-955-1382
Australia Account & Billing: 1-800-041-378
Mexico Account & Billing: 001-888-578-7628
Argentina Account & Billing: 0800-333-0778
Chile Account & Billing: 1230-020-5554
Online Support:
Support Web Form:
http://www.blizzard.com/support/webform.xml
Account & Billing:
billing@blizzard.com
Mac Support:
macsupport@blizzard.com
Technical Support:
wowtech@blizzard.com
World of Warcraft Accounts:
wowaccountadmin@blizzard.com
For support information regarding other regions not listed here, please refer to:
http://us.blizzard.com/support/article.xml?locale=en_US&tag=international
Post by
Nelfshane
Nah, I've never done the gold buy or power level thing. I get bored of being 80 so I make alts and level them myself, I've got no need to pay for power leveling that and I know gold buying is against the policy so I'm not interested in that nor am I interested in paying real currency for in game money lol. If that's how they get accounts then in all honesty I don't know how they got me. I ran two to three malware checkers on my computer and they came up empty. Hopefully this resolves soon.
Thanks for the input about curse, it really just seemed funky after such a short span that it had happened.
Post by
Toldu
I ran two to three malware checkers on my computer and they came up empty.Just to show that running those checks aren't completely definitive, I've got a bug in my system that attempts to redirect my browser tabs occasionally. Now, I'm not totally sure if it's Google Chrome stopping it from actually switching it to the new site or one of my antivirus programs, but I've run multiple scans with Webroots, Norton, and 2 different free programs and I've come up with nothing except for tracking cookies that get quarantined every scan. So, just to say that a clean scan doesn't guarantee a clean pc.
Post by
Kobe008
Run all scans with the wow client open and sitting at the login screen. Type in a bogus username then let the scans run. Blizzard support told me this. They say some keyloggers do not activate until the wow client is launched.
Post by
503520
This post was from a user who has deleted their account.
Post by
Nelfshane
Yeah a friend of mine was saying that as well. He said that a gm told him that somehow there was a security leak somewhere and some accounts might have been compromised. Don't know how accurate this is, but I just found out this today. My apologize Curse fans ><.
Thankfully he didn't sell the gear off of my main (DK in my sig) but instead used it to run mana tombs all day lol. I got a respond to my post on the forums rather quickly, now I just need to get my e-mail changed since apparently someone got a hold of THAT and changed the dern password lmao... Been an interesting couple of days to say the least.
*edit* Dang typos...
Post by
TheReal
Yeah a friend of mine was saying that as well. He said that a gm told him that somehow there was a security leak somewhere and some accounts might have been compromised. Don't know how accurate this is, but I just found out this today. My apologize Curse fans ><.
Thankfully he didn't sell the gear off of my main (DK in my sig) but instead used it to run mana tombs all day lol. I got a respond to my post on the forums rather quickly, now I just need to get my e-mail changed since apparently someone got a hold of THAT and changed the dern password lmao... Been an interesting couple of days to say the least.
*edit* Dang typos...
TADA! Your email was how you got "hacked." Your email address is public knowledge somewhere, and your password was either guessed or cracked. Then, the password reset was sent for your account and BLAM-O. ('Tis my guesstimation anyhow.) You should be using an email account SPECIFICALLY for battle.net and absolutely nothing else. Also, it does no good to set up this account from a keylogged computer. Verify your computer is clean by running malware scans 1) booted into Safe Mode without networking and 2) with the WoW client started.
If someone has the ability to really hack into something, it would be the Blizzard servers they're after. That's the only way these hundreds of "hacked" people would have lost their accounts all at once unless they all failed to follow account security tenets. And if someone has the know-how to get into Blizzard servers, said person would make far more money by hacking into the servers of financial institutions instead.
In short, no one got hacked; instead, they all failed.
Post by
Nelfshane
That would be a good idea except for the fact that I never use my e-mail. It only exists for my need to sign up to games and such lol.
Post by
TheReal
That would be a good idea except for the fact that I never use my e-mail. It only exists for my need to sign up to games and such lol.
So you don't use it exclusively for battle.net. That's what you're saying, right?
Post by
Pwntiff
I have a Gmail exclusively for Battle.net (since my account was compromised earlier this year); I have an authenticator on my Droid; and as strong as password as Blizzard will allow (at least 10 characters with at least 2 numbers, at least 2 case insensitive letters and at least two characters from !"#$%). I also change my password about every 90 days.
That's one of the best ways to protect your account. The other one is don't download executables for WoW that aren't from trusted sites (like Wowhead and Curse), don't buy gold, and don't buy powerleveling (you actually need to give them access to your account for that 0.o).
Post Reply
You are not logged in. Please
log in
to post a reply or
register
if you don't already have an account.