This site makes extensive use of JavaScript.
Please enable JavaScript in your browser.
Live
PTR
10.2.5
PTR
10.2.6
Been hacked (weird way)
Post Reply
Return to board index
Post by
Sythinidrit
So today I logged on to my gmail account to check my mails.
I had an e-mail from battle.net informing me that my account password had been changed without me knowing it.
I tried to log in with my password I had been using all the time, and it works. But then I got the message to insert the code using a blizzard authenticator. I have never even thought about buying that thing but now it seems it's bound to my account.
Is someone messing with my account or is this a bug?
I already contacted their support but haven't gotten any reply so far.
Anybody else know something more about this strange event?
Post by
GenXCub
Can you call their tech support? They usually answer fairly quickly.
Post by
TheReal
Your account has been hijacked (not hacked). You unintentionally provided your gmail password to someone, or you chose a weak password for you gmail account (something like "password").
Get on the horn with Blizzard and prove you're the account owner, then read through my
thread
. Using the same password for multiple sites and log-ins is a big no-no.
Post by
Sythinidrit
Oh my password is far from easy, that's the weird thing too.
It's a combination of example: '$e8§_r5f6e3' and stuff. I'm pretty sure nobody knows my gmail account password either. The only thing that got hacked is my wow account. My passwords are all different.
I'm also pretty sure I don't have any key loggers (fresh W7 install, only have wow on it)
I got in at tech support after waiting 45 minutes. They will remove the authenticator and send me an e-mail when it's done. Can take up to 48 hours. They told me that some hackers get in accounts and add blizz authenticators just for the lulz. Oh well, I hope my stuff is safe.
EDIT: Reply to your thread:
I have been playing wow since January 2006 and was also never hacked before. Wasn't even hacked in any other games I played before. I'm also using different passwords on sites.
(Thanks for the KeePass app though, I might use it)
Post by
TheReal
Strange. You didn't fall for a phishing email?
Given enough computing power, your gmail password was probably brute-forced. That could be another explanation I suppose.
Post by
Wanderingfox
I highly doubt someone brute forced his gmail password given the fact that their CAPTCHA isn't even human readable at this point :P
Post by
TheReal
Coming from a second-hand source that I believe to be reputable, a simple script can be developed to read the captchas. One needs only to spend some time manually entering captchas. The beast can be unleashed and tested for reliability, and once its accuracy rate is satisfactory then nothing exists to stop a gmail account from being compromised.
I use gmail and I wish they'd require the answer to the secret question in addition to the captcha.
Post by
Wanderingfox
their new captcha (as of the last time it was learnt) is so merged and jumbled it would take years of manually entering values to establish an algorithm of any real reliability. I suppose it would be possible to break the audio one though...
Either way, use a strong password and you don't have to worry about it. Mine, for example, is over 9 characters long, has upper case letters, lower case lettters, numbers, and symbols in it. Sounds like it's hard to remember, but it's just a pattern on the keyboard (thus making it easy to remember and type, but hard to crack and read when you look at it as text).
Post by
Sythinidrit
their new captcha (as of the last time it was learnt) is so merged and jumbled it would take years of manually entering values to establish an algorithm of any real reliability. I suppose it would be possible to break the audio one though...
Either way, use a strong password and you don't have to worry about it. Mine, for example, is over 9 characters long, has upper case letters, lower case lettters, numbers, and symbols in it. Sounds like it's hard to remember, but it's just a pattern on the keyboard (thus making it easy to remember and type, but hard to crack and read when you look at it as text).
I never had to worry about my password since it was over 14 characters long and a mix of all kinds of letter, numbers and symbols. I just don't get it. I'll post here when blizzard sent me an e-mail to reset my account :)
Post by
Sythinidrit
I've recovered my accounts thanks to blizz support. But every character was stripped of everything. Only have my lvl 80 left with his DPS gear. That's all. I lost all my gold.
Anybody has some experience with blizzard recovering items? Since they said they will try to recover it.
Post by
309394
This post was from a user who has deleted their account.
Post by
soccergenius
I got hacked once and Blizzard only needed two days to recover all my gold/items and my deleted main (punk actually paid to move my main to his server before deleting him).
Post by
Sythinidrit
Amazing, I got my items back in a couple of hours. I'm very satisfied with blizzard's services :)
I got myself an authenticator now so I won't have any problems anymore I hope.
Post by
296433
This post was from a user who has deleted their account.
Post by
Sythinidrit
Amazing, I got my items back in a couple of hours. I'm very satisfied with blizzard's services :)
I got myself an authenticator now so I won't have any problems anymore I hope.
Good to hear :)
But it's certainly important to try and work out
how
you were hacked, to prevent it from happening again in the future. There are 3 very common methods used to steal WoW accounts:
1.
Phishing - tricking you into entering your password on a fake (but very authentic-looking) website.
2.
Keyloggers/Stealers - very simple programs that can get your password without you even knowing it.
3.
Bruteforcing - programs that enter thousands of different password combinations to 'guess' it.
Though I really doubt bruting was the case here, with your password being strong.
I really don't think I was phished / keylogged. I'm really confused about this case though. I can't figure out how they did it.
Post by
Wanderingfox
I've recovered my accounts thanks to blizz support. But every character was stripped of everything. Only have my lvl 80 left with his DPS gear. That's all. I lost all my gold.
Anybody has some experience with blizzard recovering items? Since they said they will try to recover it.
Petition a GM in game and state that you've recently been hacked and need to have things restored. Approximate time of compromise will help speed things along. Once the ticket is answered and escalated, you'll get a primary restore within a few hours, and then everything else one to two weeks later.
Post by
Skadja
On the subject of upper and lowercase letters in WoW passwords? Try your password with all lower-case letters, and see what happens.
#$%^ed me off the first time I missed a capital letter by mistake, realized it as I hit enter, expected to have to retype my password...and it went in. Said "Waaaait a minute" went back and
intentionally
messed up the password, and it worked again.
WoW passwords are not case-sensitive, so make sure that you're using both numbers and symbols.
Post Reply
You are not logged in. Please
log in
to post a reply or
register
if you don't already have an account.