Blizzard servers hacked, some personal info compromised
Perhaps it's been too long since you've reset your password in a mad attempt to secure your privacy? Blizzard has announced that they have discovered "unauthorized and illegal access into our internal network."
Perhaps it's been too long since you've reset your password in a mad attempt to secure your privacy? Blizzard has announced that they have discovered "unauthorized and illegal access into our internal network."
In a statement, the company says that there's "no evidence" that any financial information, including credit cards, billing address, and real names, has been compromised. Blizzard notes that their investigation is ongoing, "but so far nothing suggests that these pieces of information have been accessed."
E-mail addresses for Battle.net users was accessed, in addition to the answer to the personal security question, and information relating to mobile and dial-in authenticators. In a post on Blizzard's official website, Mike Morhaime writes that "this information alone is NOT enough for anyone to gain access to Battle.net accounts."
In addition, the cryptographically scrambled versions of Battle.net passwords was also taken. Because SRP is used to protect the passwords, it would be "extreme difficult" to extract that information. However, Blizzard is encouraging all players to change their password. And as always, if you use similar log-in information elsewhere, it would be wise to change that info as well.
Players will be prompted to change their secret questions and answers in an automated process in the coming days. In addition, mobile authenticator users will be asked to update their software. "As a reminder, phishing emails will ask you for password or login information. Blizzard Entertainment emails will never ask for your password," Morhaime adds.
-
Shacknews
replyAndrew Yoon posted a new article, Blizzard servers hacked, some personal info compromised.
Perhaps it's been too long since you've reset your password in a mad attempt to secure your privacy? Blizzard has announced that they have discovered "unauthorized and illegal access into our internal network."-
-
They develop video games
-
video games that people can't play because their damned account has been hacked, or the server is down, or they've been identified as hackers for trying to play from linux. And said video games aren't even fun, unless having obsessive compulsive disorder is more fun that I'd previously suspected.
Am I trolling yet?
-
-
What are you trying to say exactly? You think they employ a ton of people who just do nothing all day and night? I don't think you really believe that.....
-
-
-
-
lol me too, a rarity
my account was already accessed once, but nothing happend as I don't condone online credit card purchasing
-
-
-
they must be one of the highest exposure targets out there
-
Yeah, all they got were our security question answers, user names, passwords (encrypted), and authenticator info. No reason to be alarmed.
-
Please tell me this is a troll.
-
I assume so. With email address and security question you can break into tons of stuff via password reset. Most people use the same secret question I assume so this is pretty much a disaster if that is the case.
-
They didn't get full passwords, or credit card data. It still sucks, but compared to a lot of other hacks in video gaming (Xbox Fifa nonsense, PSN, etc) I wouldn't call it a disaster.
-
Give me your email address and your secret question answer and we will see who has passwords.
-
-
-
The secret question answer can be used to recover the password for a lot of people.
-
-
-
-
Currently if I sign out of my google gmail account and say that I can't access the account it gives me the option to enter my user name which is my email address and the hacker would have that info and then it says I can get a text message to reset password or answer my secret question. If one knew the secret question I assume they could then gain access to my account.
The gmail secret question can be a custom question, and mine is. However lots of places don't have custom questions and even if they do lots of people probably write one the regular ones other sits have like first school, first pet, first car, mother's maiden name etc.
-
-
-
-
-
-
-
I was shooting for sarcasm, but I guess you could be trolled by it if you want.
-
-
This is why your security question should be either the same as your password, or some long random copy-pasted gibberish.
Secret questions are shit and a massive authentication flaw that I have no fucking idea why it still is a standard procedure. Its almost as bad as using pen signatures as a form of authentication.
-
-
-
[deleted]
-
[deleted]
-
Oh, you
-
-
[deleted]
-
-
[deleted]
-
hotdiggitydog
-
-
-
-
This week, our security team found an unauthorized and illegal access into our internal network here at Blizzard.
This makes me think it wasn't an internet based hack, but someone that was physically at some internal location that had access to the network. Like maybe a former employee who's access wasn't fully removed when he was fired. -
Damn, bet this slows down my legit request to remove my authenticatir since I just got a new phone
-
My question is how long have they had access? A week? a year? two years?
-
-
Someone I work with just sent an email to the rest of the building that they had been hacked with an authenticator, several times now. I know people are going say they are a liar but I don't know why someone would send out an email saying that if they were lying about it.
-
-
[deleted]
-
-
-
-
millennia?
-
-
-
-
-
-
[deleted]
-
-
They have without a doubt poured more resources in to account security than pretty much any other account I use
-
-
-
-
Blizzard, you fucking morons:
"We understand that account security is critically important, and we are committed to helping maintain account security for our players. To that end, a feature that will allow players to securely change their secret question answer through Battle.net is in development now."
How is this not a 'feature' already?-
-
They should have a ticket system live, right now, with people dedicated to it allowing all users to change their secret questions.
The whole secret question thing is garbage anyways, it shouldn't even exist - but if you're going to use it, have a plan in place in case something like this happens that let's people change it ASAP.
-
-
-
Nowhere is safe!!!
-
HA HA
-
-
-
[deleted]
-
-
I wonder how long ago the hack really occurred. There were quite a number of people complaining about their accounts being compromised just after the launch of Diablo 3.
I am really kind of tired of sites/companies not bothering to inform the users about the hack directly instead we have to find out about it on a news site. -
i guess it was just a matter of time.
-
