|
On August 10 2012 10:45 Jrocker152 wrote:Show nested quote +On August 10 2012 10:34 ggrrg wrote:On August 10 2012 10:16 Integra wrote:On August 10 2012 09:11 Corrosive wrote:Stuff like this happens often to companies like this. As long as blizzard didn't store everything in plaintext like Sony did, everything should be fine. If you want to see how long it would take your password to be cracked check this out http://howsecureismypassword.net/ according to this website it will take them 40 undecillion years or in numbers:40,464,702,078,891,060,000,000,000,000,000,000,000 years to crack my password... goodluck with that. I feel like you're somewhat overdoing it ^^ Do you really feel like typing 29 characters just to enter bnet? According to that website my bnet password is crackable in 19 seconds... I use this password for most stuff I don't care about. But my "secure" password feels somewhat weak, too. 345k years for a regular desktop... I guess it's time to add a number and a special character. Pick a random year. There's four numbers. Then sum up what that year is to you in a few words. Example: 1972lotof$$GAS would take 2 billion. Granted mine is 25+ characters but that's my bank acc! Sc2 is still over 16 though.
just for the record.. a recent client has something a lot like this their DoB then some standard text and "1337" speak.. it was 2 characters longer and we popped that sucker soooo fast 
my truecrypt password for my work system is 34 characters, my keepass password is 44 and all my accounts are stored in there... random passwords generated with the max length I can use on the website...
|
On August 10 2012 08:24 R1CH wrote:Show nested quote +On August 10 2012 08:19 MxGStreamA wrote:
I was hit by this, someone hacked the account, changed the password, played some ladder games. Unrelated, you probably had a bad / shared password beforehand. A hacking group advanced enough to break into Blizzard's network isn't really after your SC2 ladder rank.
You are wrong, I don't not share my account. He was giving my password to everyone.
|
On August 10 2012 11:00 Sir.Kimmel wrote:Show nested quote +On August 10 2012 10:45 Jrocker152 wrote:On August 10 2012 10:34 ggrrg wrote:On August 10 2012 10:16 Integra wrote:On August 10 2012 09:11 Corrosive wrote:Stuff like this happens often to companies like this. As long as blizzard didn't store everything in plaintext like Sony did, everything should be fine. If you want to see how long it would take your password to be cracked check this out http://howsecureismypassword.net/ according to this website it will take them 40 undecillion years or in numbers:40,464,702,078,891,060,000,000,000,000,000,000,000 years to crack my password... goodluck with that. I feel like you're somewhat overdoing it ^^ Do you really feel like typing 29 characters just to enter bnet? According to that website my bnet password is crackable in 19 seconds... I use this password for most stuff I don't care about. But my "secure" password feels somewhat weak, too. 345k years for a regular desktop... I guess it's time to add a number and a special character. Pick a random year. There's four numbers. Then sum up what that year is to you in a few words. Example: 1972lotof$$GAS would take 2 billion. Granted mine is 25+ characters but that's my bank acc! Sc2 is still over 16 though. just for the record.. a recent client has something a lot like this their DoB then some standard text and "1337" speak.. it was 2 characters longer and we popped that sucker soooo fast my truecrypt password for my work system is NN characters, my keepass password is MM and all my accounts are stored in there... random passwords generated with the max length I can use on the website...
I do hope you made those numbers up, as the length of a password being unknown is a huge part of its strength.
|
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow....
|
On August 10 2012 11:02 MxGStreamA wrote:Show nested quote +On August 10 2012 08:24 R1CH wrote:On August 10 2012 08:19 MxGStreamA wrote:
I was hit by this, someone hacked the account, changed the password, played some ladder games. Unrelated, you probably had a bad / shared password beforehand. A hacking group advanced enough to break into Blizzard's network isn't really after your SC2 ladder rank. You are wrong, I don't not share my account. He was giving my password to everyone.
R1CH is right (OBVIOUSLY). But those email addresses may have traveled around in those 5 days since the attack.
Let's see...
|
United Kingdom3249 Posts
On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow....
Personally I have had those e-mails since forever on multiple e-mail accounts, two of them not linked to any battle.net account. I do not think that this is a good way of judging when the breach actually occurred.
|
On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow....
That is just age old physhing scam, nothing to do with the current problem.
|
Oh noes someone might change my portrait and lose me some ladder games!!
In all seriousness Blizzard is pretty good about getting these things fixed.
Also what about authenticators don't they pretty much make this point mute? Well if you have one I guess.
|
On August 10 2012 11:22 Porcelina wrote:Show nested quote +On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow.... Personally I have had those e-mails since forever on multiple e-mail accounts, two of them not linked to any battle.net account. I do not think that this is a good way of judging when the breach actually occurred.
True, but this is the first time in the 8 years I've had such an e-mail from a fake Blizzard, and then I get one just a week before the breach. might be an coincidence or maybe it's more.
|
People should learn to use passphrases. Contrary to popular belief having numbers and symbols in your password does not make it more difficult to crack. Adding length to your password is the only way to make it more secure.
some examples:
"MyDearAuntSally"
"Youmustconstructadditionalpylons"
"Youhavenotenoughminerals"
|
On August 10 2012 11:28 Nosferatos wrote:Show nested quote +On August 10 2012 11:22 Porcelina wrote:On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow.... Personally I have had those e-mails since forever on multiple e-mail accounts, two of them not linked to any battle.net account. I do not think that this is a good way of judging when the breach actually occurred. True, but this is the first time in the 8 years I've had such an e-mail from a fake Blizzard, and then I get one just a week before the breach. might be an coincidence or maybe it's more.
If they hacked Blizzard to send out emails they would NOT use a fake email they would use the real one -.-
|
Most of those phishing scams are coming from old or current guilds you applied for.
|
On August 10 2012 11:14 ulan-bat wrote:Show nested quote +On August 10 2012 11:02 MxGStreamA wrote:On August 10 2012 08:24 R1CH wrote:On August 10 2012 08:19 MxGStreamA wrote:
I was hit by this, someone hacked the account, changed the password, played some ladder games. Unrelated, you probably had a bad / shared password beforehand. A hacking group advanced enough to break into Blizzard's network isn't really after your SC2 ladder rank. You are wrong, I don't not share my account. He was giving my password to everyone. R1CH is right (OBVIOUSLY). But those email addresses may have traveled around in those 5 days since the attack. Let's see...
Lol stop it R1CH, you're not saying the world revolves around him you silly silly man, of COURSE they're after his ladder rank/account ^^.
|
On August 10 2012 11:28 SigmaoctanusIV wrote:
Oh noes someone might change my portrait and lose me some ladder games!!
In all seriousness Blizzard is pretty good about getting these things fixed.
Also what about authenticators don't they pretty much make this point mute? Well if you have one I guess.
It's pretty huge if authenticators have been compromised(according to blizzard), especially for some players with highly valuable WoW accounts(with legendary items, achievements, titles, mounts, pets...).
I'm just waiting for the update on my cellphone 
|
On August 10 2012 11:31 Medrea wrote:Show nested quote +On August 10 2012 11:28 Nosferatos wrote:On August 10 2012 11:22 Porcelina wrote:On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow.... Personally I have had those e-mails since forever on multiple e-mail accounts, two of them not linked to any battle.net account. I do not think that this is a good way of judging when the breach actually occurred. True, but this is the first time in the 8 years I've had such an e-mail from a fake Blizzard, and then I get one just a week before the breach. might be an coincidence or maybe it's more. If they hacked Blizzard to send out emails they would use a fake email they would use the real one -.-
Oh, it looks real and all, but one of the links in the e-mail goes to a fake "blizzard" acount site, the rest looks "real" enough to fool a "ignorant" person.
|
On August 10 2012 11:34 Nosferatos wrote:Show nested quote +On August 10 2012 11:31 Medrea wrote:On August 10 2012 11:28 Nosferatos wrote:On August 10 2012 11:22 Porcelina wrote:On August 10 2012 11:13 Nosferatos wrote:
I've been e-mailed by an "fake" blizzard e-mail account since the 25th of last month, with new mails every 3rd day since. Asking me to give up personal/account info, because im trying to "Sell my Diablo 3 Account". I venture to guess that the breach must have happend around the 25th of July, if so the detection time was pretty slow.... Personally I have had those e-mails since forever on multiple e-mail accounts, two of them not linked to any battle.net account. I do not think that this is a good way of judging when the breach actually occurred. True, but this is the first time in the 8 years I've had such an e-mail from a fake Blizzard, and then I get one just a week before the breach. might be an coincidence or maybe it's more. If they hacked Blizzard to send out emails they would use a fake email they would use the real one -.- Oh, it looks real and all, but one of the links in the e-mail goes to a fake "blizzard" acount site, the rest looks "real" enough to fool a "ignorant" person.
I forgot a NOT in there.
If they compromised the site why would they use fake anything? They have the site lol.
Phishing has been going on forever, this is entirely unrelated. The only relation is that now youll get more phishing emails trying to phish for people changing there passwords from what happened.
|
On August 10 2012 10:12 AnachronisticAnarchy wrote:Show nested quote +On August 10 2012 09:33 Serpico wrote:On August 10 2012 09:31 xrapture wrote:
My email:
Decado@writing.com
Password:
teehee12
Do whatever the fuck you want.
So many pussies crying over nothing. This guy is super tough. What a tough guy. Also stupid, unless he doesn't want to play SC2 anymore. He probably forgot that we can do more than just bomb his MMR, such as changing his password and information.
Someone did change the password and it took me less than a minute to recover it....
|
fuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu
I used one of my best and probably my most commonly used password for relevant things like e-mail and maybe even paypal.
Extremely irritating that I will need to switch all these passwords, but can't really blame blizzard, these things happen to everyone eventually.
Good thing this was posted on TL or I probably wouldn't have noticed it.
|
wow someone must be fucking mad at blizzard
|
On August 10 2012 10:34 oxxo wrote:Show nested quote +On August 10 2012 10:08 JJH777 wrote:
Lol I'm glad this happened after all the blind fanboys were saying THERE WAS ABSOLUTELY NO WAY the huge amount of D3 accounts getting hacked was a problem on blizzard's end. Did you even read the announcement? This has nothing to do with the D3 accounts. They got encrypted passwords. Not only that, there's no way for the hackers to know who had D3 or not. They couldn't pick and choose D3 accounts with this stolen information. Only D3 accounts start getting stolen right after release? Far more likely that people are clicking stuff they shouldn't be.
All blizzard accounts are linked. My point was that if it happened now it could have happened before.
|
|
|
|
|
|
EPT
