EPTBlizzard Security Breach - Page 22
| Forum Index > SC2 General |
|
-Archangel-
Croatia7457 Posts
| ||
|
Serek
United Kingdom459 Posts
On August 14 2012 18:53 nayc wrote: i guess there are some people here who might find this interesting (and are able to understand it:-) http://arstechnica.com/security/2012/08/hacked-blizzard-passwords-not-hard-to-crack/ I was about to post this same link until I saw your post. The article says that Blizzard's claim that the passwords are safe is not verifiable because we don't have enough public information about their security setup. It goes on to speculate how much processing power would it require to crack the passwords in a couple scenarios. According to their exercise, with the information we have available it would not be overly difficult to crack the weakest passwords in a relatively short period of time. If I were to venture a guess, I'd say most weak passwords were cracked even before we were informed of the breach (remember there was a gap between the time Blizzard found out and the public announcement). There are bound to be some compromised accounts where Bnet password is the same as the Bnet email and those would be first to fall. So who benefits? Easiest way to cash up on this is by quickly transferring gold/items to farmer accounts, since there's already an "infrastructure" to handle this (WoW hackers have a lot of experience in this regard). Rainbow tables and dictionaries will improve by adding thousands of new passwords to their databases, facilitating future hacks. People may have further non-Bnet accounts compromised if hackers gain access to their emails. And remember we don't know yet whether billing information was also accessed. So no, I don't feel this is a non-issue as others in this thread do. | ||
|
skyR
Canada13817 Posts
http://us.battle.net/d3/en/blog/6983564/North_American_Battlenet_Account_Update_-8_15_2012 | ||
|
SilSol
Sweden2744 Posts
On August 16 2012 10:19 skyR wrote: You can update your secret question & answer and reset your authenticator now through account management. http://us.battle.net/d3/en/blog/6983564/North_American_Battlenet_Account_Update_-8_15_2012 ah thx! | ||
|
rebuffering
Canada2436 Posts
| ||
|
Nick_54
United States2230 Posts
| ||
|
jakethesnake
Canada4948 Posts
On August 17 2012 22:56 Nick_54 wrote: Blizzard told me there was suspicious activity with my account, so I changed my password again. I think this means that they might have been trying to access my account, but couldnt get the password. Any thoughts? Same here. At least they have a way to change the secret question now, although it is terrible (I couldn't even read the whole question). It was a hassle, but makes me glad I changed my password when I did. | ||
|
guN-viCe
United States687 Posts
| ||
|
Darth Irule
United States1 Post
Time to call blizzard as soon as their support line opens tomorrow morning.... | ||
|
EvilTeletubby
Baltimore, USA22259 Posts
I feel like murdering somebody now. | ||
|
rebuffering
Canada2436 Posts
| ||
|
Silidons
United States2813 Posts
So they did indeed get the passwords | ||
|
Phanekim
United States777 Posts
Will changing password be enough? | ||
|
nBk
174 Posts
Due to suspicious activity, this account has been locked. A message has been sent to this account’s email address containing details on how to resolve this issue. Visit http://us.battle.net/account/locked.html for more information. Lovely... I was just on it a little over an hour ago too.. x.x edit: resolved. Scared me for a minute. | ||
|
StarStruck
25339 Posts
Okay then. | ||
|
Mechanism4
United States20 Posts
I was playing sc2 one of the nights a little while ago. Then next day I got home from work and found that they had changed my email used to login. I was able to get my account back by doing the 'I think I got hacked'. I am pleased to have gotten a response and a fix, pretty much, after about 8 hours. My sc2 was still locked for about a day after but I was able to play sc2 again after a short while. | ||
|
Belial88
United States5217 Posts
So is just like a single guy/group hacking into accounts and stripping them? Why would anyone bother stealing an SC2 account, especially when it's so easy to get it returned back to you? | ||
|
nBk
174 Posts
On August 27 2012 14:35 Belial88 wrote: Should I change my pass still? So is just like a single guy/group hacking into accounts and stripping them? Why would anyone bother stealing an SC2 account, especially when it's so easy to get it returned back to you? I would to be safe. I saw this announcement the very day it came about and never changed mine and almost lost my account today all because i thought "Oh it could never happen to me, my account isn't worth anything, just an SC2 account." | ||
|
6NR
United States1472 Posts
| ||
|
SolHeiM
Sweden1264 Posts
On August 27 2012 15:32 nBk wrote: I would to be safe. I saw this announcement the very day it came about and never changed mine and almost lost my account today all because i thought "Oh it could never happen to me, my account isn't worth anything, just an SC2 account." You can't think that you "just have an SC2 account," because the hackers have no idea what's on your account. All they know is an account name and a password. If there is nothing to steal, they will use your account as a botting account, where they'll buy a game and start using it. My brother got his level 47 Witch Doctor account hacked, and the hackers leveled his character to 60, decked him out in full GF% gear and farmed for a couple of days before my brother figured out that he had been hacked. | ||
| ||
