This site makes extensive use of JavaScript.
Please enable JavaScript in your browser.
Live
PTR
10.2.7
PTR
10.2.6
Beta
Phishing Fail....Blizzard win? Wow...im kind of impressed...
Post Reply
Return to board index
Post by
Cloaked
So I got the obligatory spam email:
********************************************************************************
From:
"WoWAccountReviewEU@blizzard.com" <WoWAccountReviewEU@blizzard.com>
To: me@myisp.com
Greetings,
It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership.
You can confirm that you are the original owner of the account to this secure website with:
http :// us .bat (EDITING HERE SO THAT NO ONE CAN CLICK THE LINK) tle.bz/login/en/?ref=https%3A%2F%2Fus.battle.net%2Faccount%2Fmanagement%2Findex.xml&app=bam&cr=true
Login to your account, In accordance following template to verify your account.
If you ignore this mail your account can and will be closed permanently.
Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.
Blizzard Entertainment SAS
TSA 60 001
Service Administration des Comptes
78143 Velizy Villacoublay Cedex
If you wish to review our current Rules and Policies for World of Warcraft and Battle.net, they can be found at:
http:// www .wow (another edit to stop link clicking) -europe.com/en/policy/
http:// eu . bliz zard. com/en-gb/company/about/termsofuse.html
Regards,
Game Master Dunarthra
Customer Services
Blizzard Entertainment
http:// eu .bl izzard.com/support/article.xml?articleId=35726
Please retain all history if you reply to this mail
***************************************************************************************
And I thought it would be funny to respond:
****************************************************************************************
From: me@myisp.com
To: WoWAccountReviewEU@blizzard.com
Sent: 16/01/2011 09:49:57
Subject: Re: Battle.net Account Management
I am sorry for the misunderstanding. Unfortunately, my computer will not allow
me to click on links in e-mails.
My account info is
Wowyouhackfail
pw: Suckonmynutzyoufailedsohard
Authenticator
101n0013
Please respond right away with verification.
*********************************************************************************************************
And so I figured it was a done deal. But thats when Blizz kind of surprised me, apparently my reply went to them:
***********************************************************************************************************
Greetings,
Thank you for your email. Please be aware that the email you have received is a known scam attempt, intending to "phish" for your account information and steal your account. Many of these emails may appear to be from Blizzard, and are imitating the typical structure of our emails, even going as far as using the names of some of our employees in the signature.
Some phishing emails will also mask, or "spoof" their sending address, making it appear as though the emails are being sent from Blizzard Entertainment.
We strongly recommend that you follow the link below, for further information on common phishing techniques:
http:// e u .b attle. net/security/theft#phishing
If you have already replied to a phishing e-mail with your account details, or have visited a website where you have entered your details, we cannot accept your Battle.net Secret Question/Answer as verification of ownership; you will need to provide us with the following information:
- A scan or digital image of nationally recognized photo ID, such as passport or drivers license (please do not include public transport cards, library cards etc, as these are unsuitable for our needs)
Please would you include with this, your full Name, Address, Account Name and E-mail Address and send it via one of the following methods:
Webform: https : / / eu .blizzard. com/support/webform.xml
E-Mail: WoWaccountreviewEU@Blizzard.com
Post:
Blizzard Entertainment Europe
Account Administration Team
TSA 60 001
78143 Vélizy Villacoublay Cedex
France
Once we have received this, we will be happy to assist you further.
For all concerns regarding your account's security, we recommend following the Security Checklist on our Account Security Site, which can all be found at:
http:// eu. battle. net/security/
If you wish to review our current Rules and Policies, they can be found at:
http:// eu . blizzard. com/support/index/wow_policy
http:// eu . blizzard. com/en-gb/company/about/termsofuse.html
Sincerely,
Game Master Varaothain
Customer Services
Blizzard Entertainment
http:// eu . blizzard. com/support/
*********************************************************************************************************
I'm just kind of shocked that they actually responded to my reply. It is pretty obvious, I hope, that my account "info" was just a mockery of the phishing attempt, yet they took the time to copy paste their normal phishing, etc. response and replied to me. Pretty impressive I feel.
Any one else agree?
NOTE: DO NOT TRY TO GO TO THOSE LINKS! YOU WILL GET HACKED!
(just in case anyone might get curious. This was an obvious phishing attempt and you trying to see how they have it set up will be very bad for your account)
Post by
Sweetscot
You might want to edit out your email in that post...or you'll just get more junk :P
Post by
Cloaked
Heh. Ty, thought I caught em all...then the top one slipped in :\
Post by
23608
This post was from a user who has deleted their account.
Post by
Cloaked
Yeah, just caught that top e-mail addy, ty, and the links are dead. just mainly go to eu.bliz, should have just turned off link availability. hmmmmm....maybe you can do that in an edit..
And yeah, I think it
is
blizzard, hence why i'm a little surprised.
Post by
611800
This post was from a user who has deleted their account.
Post by
Aldun
They used an email spoofer so it looks like it came from the real Blizzard. They hoped though you (obviously) clicked the link. Not that responding on these is usually smart though, since if they are really linked to a scammer they know the mail acc is active and they keep spammingyou.
Post by
Interest
The 2nd mail you received probably
is
from Blizzard, if you replied to the actual Blizzard adress. So the original phishers probably didn't get to see it.
Also, it's probably not a good idea leaving your e-mail adress and all the links in the original e-mail visible.
No. It's fake.
They requested info that he shouldn't have to give, considering Blizzard has that on file.
Please would you include with this, your full Name, Address, Account Name and E-mail Address and send it via one of the following methods:
Also, the grammar is god awful.
Post by
Hyzer
The 2nd mail you received probably
is
from Blizzard, if you replied to the actual Blizzard adress. So the original phishers probably didn't get to see it.
Also, it's probably not a good idea leaving your e-mail adress and all the links in the original e-mail visible.
No. It's fake.
They requested info that he shouldn't have to give, considering Blizzard has that on file.
Please would you include with this, your full Name, Address, Account Name and E-mail Address and send it via one of the following methods:
Also, the grammar is god awful.
There weren't any phishing sites linked to, and it was genuine antiphishing advice. They only need that info if you've already given information to scammers. The only grammar issue I see is the comma and the capitalization of "name" in that quote, but it looks like they were capitalizing all the required data.
Post by
sideswipe
The second e-mail is not from Blizzard. In every e-mail they send, they will always use some generic greeting along with your First Name. I know the OP could always omit that info, but i know they would have at least said something if they did.
Post by
23608
This post was from a user who has deleted their account.
Post by
Interest
The 2nd mail you received probably
is
from Blizzard, if you replied to the actual Blizzard adress. So the original phishers probably didn't get to see it.
Also, it's probably not a good idea leaving your e-mail adress and all the links in the original e-mail visible.
No. It's fake.
They requested info that he shouldn't have to give, considering Blizzard has that on file.
Please would you include with this, your full Name, Address, Account Name and E-mail Address and send it via one of the following methods:
Also, the grammar is god awful.
Judging by what the OP posted he sent his reply to a Blizzard adress (...@blizzard.com), how would it end up with the scammers? As for the message last message itself, to me it looks like something standard Blizzard would reply with to people responding to the phishing attempts.
Blizzard NEVER asks you for that kind of personal info. Lemme split the emails so you can understand why neither of these emails are from Blizzard.
From:
"WoWAccountReviewEU@blizzard.com" <WoWAccountReviewEU@blizzard.com>
To: me@myisp.com
Greetings,
It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership.
You can confirm that you are the original owner of the account to this secure website with:
http :// us .bat (EDITING HERE SO THAT NO ONE CAN CLICK THE LINK) tle.bz/login/en/?ref=https%3A%2F%2Fus.battle.net%2Faccount%2Fmanagement%2Findex.xml&app=bam&cr=true
Login to your account, In accordance following template to verify your account.
If you ignore this mail your account can and will be closed permanently.
Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.
Blizzard Entertainment SAS
TSA 60 001
Service Administration des Comptes
78143 Velizy Villacoublay Cedex
If you wish to review our current Rules and Policies for World of Warcraft and Battle.net, they can be found at:
http:// www .wow (another edit to stop link clicking) -europe.com/en/policy/
http:// eu . bliz zard. com/en-gb/company/about/termsofuse.html
Regards,
Game Master Dunarthra
Customer Services
Blizzard Entertainment
http:// eu .bl izzard.com/support/article.xml?articleId=35726
Please retain all history if you reply to this mail
First phishing attempt.
From: me@myisp.com
To: WoWAccountReviewEU@blizzard.com
Sent: 16/01/2011 09:49:57
Subject: Re: Battle.net Account Management
I am sorry for the misunderstanding. Unfortunately, my computer will not allow
me to click on links in e-mails.
My account info is
Wowyouhackfail
pw: Suckonmynutzyoufailedsohard
Authenticator
101n0013
Please respond right away with verification.
This is the email the OP sent back.
Greetings,
Thank you for your email. Please be aware that the email you have received is a known scam attempt, intending to "phish" for your account information and steal your account. Many of these emails may appear to be from Blizzard, and are imitating the typical structure of our emails, even going as far as using the names of some of our employees in the signature.
Some phishing emails will also mask, or "spoof" their sending address, making it appear as though the emails are being sent from Blizzard Entertainment.
We strongly recommend that you follow the link below, for further information on common phishing techniques:
http:// e u .b attle. net/security/theft#phishing
If you have already replied to a phishing e-mail with your account details, or have visited a website where you have entered your details, we cannot accept your Battle.net Secret Question/Answer as verification of ownership; you will need to provide us with the following information:
- A scan or digital image of nationally recognized photo ID, such as passport or drivers license (please do not include public transport cards, library cards etc, as these are unsuitable for our needs)
Please would you include with this, your full Name, Address, Account Name and E-mail Address and send it via one of the following methods:
Webform: https : / / eu .blizzard. com/support/webform.xml
E-Mail: WoWaccountreviewEU@Blizzard.com
Post:
Blizzard Entertainment Europe
Account Administration Team
TSA 60 001
78143 Vélizy Villacoublay Cedex
France
Once we have received this, we will be happy to assist you further.
For all concerns regarding your account's security, we recommend following the Security Checklist on our Account Security Site, which can all be found at:
http:// eu. battle. net/security/
If you wish to review our current Rules and Policies, they can be found at:
http:// eu . blizzard. com/support/index/wow_policy
http:// eu . blizzard. com/en-gb/company/about/termsofuse.html
Sincerely,
Game Master Varaothain
Customer Services
Blizzard Entertainment
http:// eu . blizzard. com/support/
Even though the web form is used for this. They often do not explicitly ask for this kind of thing in the email.
In addition, why would Blizzard respond when the OP responded to a spam email? That makes no sense.
In conclusion, both the emails are fake. In addition, keep in mind the links might be legit when you copy and paste them, but URL tags can be spoofed to show up as one URL but actually lead to another. Make sure you actually highlight the URL tag to make sure it's taking you to the right site.
Post by
304214
This post was from a user who has deleted their account.
Post by
665124
This post was from a user who has deleted their account.
Post by
Interest
And I thought it would be funny to respond:
only thing that would be funny is to see you cry to blizz when you got your account hacked cuz you were a idiot that responded to a hack email
Ladies and gentlemen, FoShizzle8 has arrived. Please do not bite. Thank you.
Lol indeed.
Post by
Morganblack
And I thought it would be funny to respond:
Very smart, sending a reply to a phishing email... expect your mailbox to be overflowing with allot of scam and phishing emails soon...
Post by
23608
This post was from a user who has deleted their account.
Post by
Xiamaru
The funny thing about these, is I have a little sister who got one of these mails. She responded by telling them she didn't even have an account, and got a message from Blizzard as well, which went along the lines of:
Greetings ******
While it would appear you have been targeted by phishing, it seems like you are in no immediate danger of getting hacked.
Have a nice day
I don't recall even half of the details(This is wrote from what I recall of it - the wording is probably not correct either), but it went somewhere along the lines of that. When comparing the REAL email (Not the one that is shown on top), it fit the email from Blizzard my Girlfriend got when she recovered her account after getting hacked, to the letter. What I found most impressive when I read that, was that the message didn't seem copy/pasted at all. It was no more than 2-3 lines, but still :P
Really, these mails go out to anyone :P I am not in doubt your old parents/grandparents who don't even know online gaming exists will also be in "risk" of getting one of these mails. They will probably just insta-delete it anyway, having no idea what that was even about.
Post Reply
You are not logged in. Please
log in
to post a reply or
register
if you don't already have an account.