|
4/4/2011 6:11 AM
Subject: Too Many Attempts Warning No.53
Dear customer,
Due to suspicious activity, your Battle.net account has been locked. You tried to login your account too many times (403). We are concerned about whether your account has been stolen. In order to guarantee the legitimacy of your account, we need you follow these steps:
Step 1: Secure Your Computer
In the event that your computer has been infected with malicious software such as a keylogger or trojan, simply changing your password may not deter future attacks without first ensuring that your computer is free from these programs. Please visit our Account Security website to learn how to secure your computer from unauthorized access.
Step 2: Secure Your E-mail Account
After you have secured your computer, check your e-mail filters and rules and look for any e-mail forwarding rules that you did not create. For more information on securing your e-mail account, visit our Support page.
Step 3: Restore access to Your account
We now provide a secure link for you to verify whether you have taken the appropriate steps to secure the account, your computer, and your email address. Please follow this site to restore the access to your account: <omitted>
If you still have questions or concerns after following the steps above, feel free to contact Customer Support at <omitted>
Sincerely,
The Battle.net Account Team
Online Privacy Policy
It's sad that people fall for this kind of shit, full of spelling mistakes, piss poor grammar, obviously fake links. What's even sadder is...
4/5/2011 2:42 AM
Subject: Too Many Attempts Warning No.42
Dear customer,
Due to suspicious activity, your Battle.net account has been locked. You tried to login your account too many times (403). We are concerned about whether your account has been stolen. In order to guarantee the legitimacy of your account, we need you follow these steps: etc etc etc
Hey wait a second...
4/4/2011 6:11 AM
Subject: Too Many Attempts Warning No.53
...
4/5/2011 2:42 AM
Subject: Too Many Attempts Warning No.42
ALMOST GOT ME SUCKERS
Just out of curiosity, how is it that these people/companies know that I have a battle.net account? It's not like my e-mail is displayed in my SC2 profile, my WoW characters, or anything like that. Having been the victim of a keylogger before, I use a separate e-mail account that is used for my Bnet account only, not for signing up for services, websites, forums, or anything else. It's completely insulated from the rest of my online life. I don't get it O_o
 
|
I've seen some worse, but yeah these are getting pretty poor quality. You'd think with the amount of e-mails they send out they really want more accounts, and with a ton of spelling errors and stuff its not gonna fool many people.
![[image loading]](http://i.imgur.com/e5hFb.png)
And another one I got..
Hello (email),
Congratulations! Your world of Warcraft account (email) to receive compensation.This is Blizzard Entertainment's apology, We acknowledge a mistake, for you to lose the World of Warcraft account in order to recover our losses, We will give you 50000 gold coins free of charge and rare mounts (Dark Phoenix), I hope you can restart the game
Login here to authentication, 48 hours you will receive compensation
Description: test account and permanently disabled can not compensation
Edit: And I checked one of my e-mails...
![[image loading]](http://imgur.com/RZoPe.png)
|
Time Travelers from the world of tomorrow are trying to take your account!
I'm not sure how they would know you had an sc2 account. Unless you use that same sn on a forums somewhere that also has the email you use for your account in the profile information.. it's a possibility they got it from that o.O
|
On April 05 2011 21:35 HackBenjamin wrote:
4/4/2011 6:11 AM
Subject: Too Many Attempts Warning No.53
Dear customer,
Due to suspicious activity, your Battle.net account has been locked. You tried to login your account too many times (403). We are concerned about whether your account has been stolen. In order to guarantee the legitimacy of your account, we need you follow these steps:
Step 1: Secure Your Computer
In the event that your computer has been infected with malicious software such as a keylogger or trojan, simply changing your password may not deter future attacks without first ensuring that your computer is free from these programs. Please visit our Account Security website to learn how to secure your computer from unauthorized access.
Step 2: Secure Your E-mail Account
After you have secured your computer, check your e-mail filters and rules and look for any e-mail forwarding rules that you did not create. For more information on securing your e-mail account, visit our Support page.
Step 3: Restore access to Your account
We now provide a secure link for you to verify whether you have taken the appropriate steps to secure the account, your computer, and your email address. Please follow this site to restore the access to your account: <omitted>
If you still have questions or concerns after following the steps above, feel free to contact Customer Support at <omitted>
Sincerely,
The Battle.net Account Team
Online Privacy Policy
It's sad that people fall for this kind of shit, full of spelling mistakes, piss poor grammar, obviously fake links. What's even sadder is...
The examples you pasted here were surprisingly well written. Yes, there will be inconsistencies and fake links. The inconsistencies in the subjects and dates is because they are merely doing mass mailing. The fake links because it would make no sense to link to the real site.
I find the incomprehensible ones more interesting.
|
I somehow managed to lose my WoW account, way past the time I stopped playing, and I have no idea how, except for brute force. =/
Never signed up with my bnet mail to any wow related sites, when I stopped playing, I changed my password. 3 months later I get a message that a old officer in my guild got hacked, so even tho I felt safe, I changed my password yet again, and I started having some computer issues, so I formated, and while having a clean install (updated all windows updates, installed FF+noscript) I changed my password yet another time, and had at this point stopped visiting WoW related sites.
My pass is 10 characters long, alphanumerical and no word...
4 weeks after that, I get hacked, tho, blizz support was very swift about it and restored my account and gear within 3 hours from the attack happening (or so they told me on the phone).
I saw they had added a 30 day gametime to my account, so I thought I could try it the following weekend, thursday (3 days after getting the hack resolved) I still had the gametime, but on saturday when I had finally downloaded and patched the client, the gametime was removed -_-.
I still don't get why they'd remove the gametime that was added =/
|
On April 05 2011 22:16 Danjoh wrote:
I somehow managed to lose my WoW account, way past the time I stopped playing, and I have no idea how, except for brute force. =/
Never signed up with my bnet mail to any wow related sites, when I stopped playing, I changed my password. 3 months later I get a message that a old officer in my guild got hacked, so even tho I felt safe, I changed my password yet again, and I started having some computer issues, so I formated, and while having a clean install (updated all windows updates, installed FF+noscript) I changed my password yet another time, and had at this point stopped visiting WoW related sites.
My pass is 10 characters long, alphanumerical and no word...
4 weeks after that, I get hacked, tho, blizz support was very swift about it and restored my account and gear within 3 hours from the attack happening (or so they told me on the phone).
I saw they had added a 30 day gametime to my account, so I thought I could try it the following weekend, thursday (3 days after getting the hack resolved) I still had the gametime, but on saturday when I had finally downloaded and patched the client, the gametime was removed -_-.
I still don't get why they'd remove the gametime that was added =/
I sometimes have the feeling that blizzard or one of it's employees is selling the info, though the passwords are probably encrypted so i guess they still have to phish for it or brute force it/get the password from a phished password with the same hash.
|
I sometimes have the feeling that blizzard or one of it's employees is selling the info, though the passwords are probably encrypted so i guess they still have to phish for it or brute force it/get the password from a phished password with the same hash.
Wouldn't surprise me if it was something along these lines. Blizz sells account emails, people get spam, click the wrong thing, and bam, account jacked. Now don't you wish you had an authenticator for $7.99?
._.
|
I remember where it harvested our email addresses. It was during the time when some people (not sure if they're the same people) posted here and other community sites that there were hundreds of free SC2 beta keys available and we had to enter our email addresses at a very well-designed legit-looking site.
|
They don't know if you have an account. I have just enough friends who receive the same mails and don't own a SC2 account. Just as i'm receiving mail like that for WoW account, which i don't have  .
|
On April 05 2011 22:24 HackBenjamin wrote:Show nested quote +
I sometimes have the feeling that blizzard or one of it's employees is selling the info, though the passwords are probably encrypted so i guess they still have to phish for it or brute force it/get the password from a phished password with the same hash.
Wouldn't surprise me if it was something along these lines. Blizz sells account emails, people get spam, click the wrong thing, and bam, account jacked. Now don't you wish you had an authenticator for $7.99? ._.
i doubt the company does that, if someone blew the whistle they would be sued for millions for data protection infringements. but i think its more than likely that staff who have access to the databases are selling information on, because loads of people i know get spam no matter if they change their emails or dont click anything phishy.
|
You can take out all the guesswork of authenticity by just checking where it's mailed from. Obviously the mails will come from blizzard.com and not hotmail.com, which is where 99% of these fake e-mails come from.
|
It's actually trivial to spoof the from: field. Just don't trust emails.
|
I had a really clever one in my Gmail spam folder last month:
Greetings, It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership. You can confirm that you are the original owner of the account to this secure website with: https://us.battle.net/account/support/login-support.xml Login to your account, In accordance following template to verify your account. * Account name * Account password * First and Surname * Secret Question and Answer Show * Please enter the correct information If you ignore this mail your account can and will be closed permanently. Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation. Account Administration Team Blizzard Entertainment http://www.blizzard.com/support/ World of Warcraft , Blizzard Entertainment 2010 Please retain all history if you reply to this mail
And the account "login" page URL was a clickable link to a phishing site mimicking the battlenet login page. The from tags were spoofed to resemble Blizzard's. Also, the site returned a warning saying that it was a reported phishing site, but it wouldn't have when it was first made. Really easy to see how that could fool someone that didn't think about it. Of course it was obvious to me because my WoW sub had expired, it seemed an unlikely premise for Blizzard to send an email on, and the dodgy URL the link actually took me to.
|
|
|
|
|
|
EPT
