23 replies to this topic

[Mal]

Just in case you guys hadn't seen this, and have active battle.net accounts:
Players and Friends,
Even when you are in the business of fun, not every week ends up being fun. This week, our security team found an unauthorized and illegal access into our internal network here at Blizzard. We quickly took steps to close off this access and began working with law enforcement and security experts to investigate what happened.
At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised. Our investigation is ongoing, but so far nothing suggests that these pieces of information have been accessed.
Some data was illegally accessed, including a list of email addresses for global Battle.net users, outside of China. For players on North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) the answer to the personal security question, and information relating to Mobile and Dial-In Authenticators were also accessed. Based on what we currently know, this information alone is NOT enough for anyone to gain access to Battle.net accounts.
We also know that cryptographically scrambled versions of Battle.net passwords (not actual passwords) for players on North American servers were taken. We use Secure Remote Password protocol (SRP) to protect these passwords, which is designed to make it extremely difficult to extract the actual password, and also means that each password would have to be deciphered individually. As a precaution, however, we recommend that players on North American servers change their password. Please click this link to change your password. Moreover, if you have used the same or similar passwords for other purposes, you may want to consider changing those passwords as well.
In the coming days, we'll be prompting players on North American servers to change their secret questions and answers through an automated process. Additionally, we'll prompt mobile authenticator users to update their authenticator software. As a reminder, phishing emails will ask you for password or login information. Blizzard Entertainment emails will never ask for your password. We deeply regret the inconvenience to all of you and understand you may have questions. Please find additional information here.
We take the security of your personal information very seriously, and we are truly sorry that this has happened.
Sincerely,
Mike MorhaimeThey've also posted an FAQ that gives more specifics on what was compromised.

Edited by Mal, 09 August 2012 - 04:37 PM.

[Greyrook]

thanks for the heads up

[Celldoor]

Even the big guys are having problems, Heard that Tera is laying off employees due to playerbase heading south.

[Doom8986]

Blizzard let down there guard cause of there supse anti hack system thats what happens when a company gets lazzy

[DocktheRock]

So why hasn't Blizzard e-mailed me about this? Sounds kinda fishy posting it on a different site.

[Greyrook]

Doom8986, on 09 August 2012 - 04:45 PM, said:

Blizzard let down there guard cause of there supse anti hack system thats what happens when a company gets lazzy

I just...I don't even....

#grammar #spelling #trolling?

[Uccin]

This is posted on Blizzard's site. It is real.

[TenderBabyMeat]

Mal, i appreciate you posting this. I had given up on D3 and indeed Blizzard weeks ago, hell I even gave up on "Act 5: The Forums". Hadn't been following this at all. Strange that you would choose to post it on a forums that aren't even in the same game genre, but personally I am considering it serendipity. Changed all my info already, so, my gratitude.

[JFlash49]

soo....i didnt get that :\

[Cargo]

Yep, I just finished verifying. Go to the official Battlenet site and there is a security announcement that has the exact text posted by the OP here.

Blizzard is recommending you change everything and if you use the same password elsewhere, change it there too.

[Mal]

DocktheRock, on 09 August 2012 - 04:45 PM, said:

So why hasn't Blizzard e-mailed me about this? Sounds kinda fishy posting it on a different site.

Blizzard didn't post it on another site.. it's on their site.. I posted it here..because we're all gamers.. many of us have Battle.net accounts, even if we're not actively playing WoW, or SC2, or D3... Just trying to give fellow gamers a heads up, so they can take appropriate action.

[Lightdragon]

who gives a **** its only blizzard

[DisasterTheory]

Lightdragon, on 09 August 2012 - 06:48 PM, said:

who gives a **** its only blizzard

Well your right, except for all the people that have active accounts in one of the top 3 game titles they hold. (Thats assuming, which is dangerous that they get D3 fixed to keep the "top title" status)

I have an active D3 account and have had a WOW account in the past so I do see the need to be alarmed.

Thanks for the post.

[Lightdragon]

i odnt have any active blizzard crap anymore and you can quote me on this... if i want tor try out a blizzard game badly enough ill just torrent it they dont need my money they overcharge for their incomplete titles

[Narkamis]

Yes verified to and thank you for posting it some D3 and WOW players are here doing BETA and had not seen this its a community right and these are some of the games we play, so thanks for looking out for your fellow gamers.

[Protoculture]

Lol. I wonder if Blizzard ever actually honored my multiple requests to delete my accounts and all of my personal information from their systems back in the WotLK days.

They haven't got a single penny from me since; nor will they ever.

DEATH TO ACTIVISION!!!!!!!!

[ORIGINAL SteelWolf]

Blizzard Says Battle.Net Has Been Hacked
[color=#4D4D4D]
Posted by samzenpus on Thursday August 09, @07:52PM
from the all-your-password-are-belong-to-us dept.[/color]
[color=#363636]

An anonymous reader writes"Blizzard announced today that its Battle.net service was compromised. The company is urging users to change their login information immediately. Blizzard is stressing that payment information was not compromised. 'The unauthorized access included email addresses associated with Battle.net accounts in all regions, outside of China. Additional information from accounts associated with the North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) was also accessed, including cryptographically scrambled versions of passwords (not actual passwords), the answer to a personal security question, and information relating to Mobile and Dial-In Authenticators. It's important to note that at this time, Blizzard does not believe this information alone is enough to gain access to Battle.net accounts.'"
[/color]



100 of 296 comments loaded twitterfacebook

Protoculture, on 10 August 2012 - 03:03 AM, said:

Lol. I wonder if Blizzard ever actually honored my multiple requests to delete my accounts and all of my personal information from their systems back in the WotLK days.

They haven't got a single penny from me since; nor will they ever.

DEATH TO ACTIVISION!!!!!!!!

You forget it was activision that produced MW2

[color=#333333]http://www.blizzard.com/SecurityUpdate[/color]

[Slab Squathrust]

I do enjoy me some starcraft II. I was actually in a game when it went public and people were talking about it. Fortunately, I learned the necessity of multiple passwords last year after being active in the bitcoin community and dealing with some of the security issues some sites had. It is still annoying though. At least the passwords were encrypted but they could always be brute forced especially if they are simple. The most annoying thing is the e-mail address. Fortunately, anti spam filters are pretty good these days.

[Aescwulf]

Well that's bad.

Every week I get an email from blizzard saying stuff about my non-existent Diablo 3 account

[Lightdragon]

ORIGINAL SteelWolf, on 10 August 2012 - 11:39 AM, said:

Blizzard Says Battle.Net Has Been Hacked

Posted by samzenpus on Thursday August 09, @07:52PM
from the all-your-password-are-belong-to-us dept.


An anonymous reader writes"Blizzard announced today that its Battle.net service was compromised. The company is urging users to change their login information immediately. Blizzard is stressing that payment information was not compromised. 'The unauthorized access included email addresses associated with Battle.net accounts in all regions, outside of China. Additional information from accounts associated with the North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) was also accessed, including cryptographically scrambled versions of passwords (not actual passwords), the answer to a personal security question, and information relating to Mobile and Dial-In Authenticators. It's important to note that at this time, Blizzard does not believe this information alone is enough to gain access to Battle.net accounts.'"




100 of 296 comments loaded twitterfacebook





You forget it was activision that produced MW2

[color=#333333]http://www.blizzard.com/SecurityUpdate[/color]

they also had their hands in mw3