• Log InLog In
  • Register
Liquid`
Team Liquid Liquipedia
EDT 06:26
CEST 12:26
KST 19:26
  • Home
  • Forum
  • Calendar
  • Streams
  • Liquipedia
  • Features
  • Store
  • EPT
  • TL+
  • StarCraft 2
  • Brood War
  • Smash
  • Heroes
  • Counter-Strike
  • Overwatch
  • Liquibet
  • Fantasy StarCraft
  • TLPD
  • StarCraft 2
  • Brood War
  • Blogs
Forum Sidebar
Events/Features
News
Featured News
Serral wins Maestros of the Game 225ByuL, and the Limitations of Standard Play3Team Liquid Map Contest #22: Results and Winners7Code S Season 2 (2026): RO4 and Finals Preview12TL.net Map Contest #22 - Voting & Ladder Map Selection7
Community News
MC vs IdrA, Boxer vs Nal_rA to be Legacy Matches @ BlizzCon315.0.16 Hotfix (June 30) - Balance + Bug Fixes38Weekly Cups (June 22-28): Zergs thrive in new patch5[TLMC] Summer 2026 Ladder Map Rotation05.0.16 patch for SC2 goes live (8 worker start)99
StarCraft 2
General
Serral wins Maestros of the Game 2 TL Poll: How do you feel about the 5.0.16 PTR balance changes? ZOWIE DIVINA preview Server Blocker StarCraft Mass Recall: SC1 campaigns on SC2 thread
Tourneys
RSL Revival: Season 6 - Qualifiers and Main Event HomeStory Cup 29 Vespene Cup #1 — $300+ USD, July 10 Douyu Cup 2026: $20,000 Legends Event (June 26-28) Crank Gathers Season 4: BW vs SC2 Team League
Strategy
[G] Having the right mentality to improve
Custom Maps
New Map Maker - Looking for Advice - Love or Hate Work In Progress Melee Maps [D]RTS in all its shapes and glory <3
External Content
Mutation # 533 Die Together The PondCast: SC2 News & Results Mutation # 532 Nuclear Family Mutation # 531 Experimental Artillery
Brood War
General
Snow On New ASL S22 Map, Zerg Nerf Farewell Beloved Starcraft (Youtube Videos) ASL 22 Proposed Map Pool BGH Auto Balance -> http://bghmmr.eu/ BW General Discussion
Tourneys
CSLAN 4 is Coming! Escore Tournament StarCraft Season 2 The Casual Games of the Week Thread [Megathread] Daily Proleagues
Strategy
Simple Questions, Simple Answers Creating a full chart of Zerg builds Relatively freeroll strategies Why doesn't anyone use restoration?
Other Games
General Games
Stormgate/Frost Giant Megathread Dawn of War IV Summer Games Done Quick 2026! Nintendo Switch Thread ZeroSpace at Steam NextFest - Last free demo
Dota 2
Looking for a Dota Mentor Official 'what is Dota anymore' discussion
League of Legends
Heroes of the Storm
Simple Questions, Simple Answers Heroes of the Storm 2.0
Hearthstone
Deck construction bug
TL Mafia
Five o'clock TL Mafia NeO.D_StephenKing vs This Guy From 1 Million Dance TL Mafia Community Thread TL Mafia Power Rank Vanilla Mini Mafia
Community
General
US Politics Mega-thread Russo-Ukrainian War Thread YouTube Thread Canadian Politics Mega-thread The Games Industry And ATVI
Fan Clubs
The HerO Fan Club! The herO Fan Club!
Media & Entertainment
Movie Discussion! Series you have seen recently... [Req][Books] Good Fantasy/SciFi books [TV/BOOK] *SPOILERS* Game of Thrones Discussion
Sports
2024 - 2026 Football Thread Formula 1 Discussion McBoner: A hockey love story TeamLiquid Health and Fitness Initiative For 2023 Cricket [SPORT]
World Cup 2022
Tech Support
How to clean a TTe Thermaltake keyboard? Computer Build, Upgrade & Buying Resource Thread
TL Community
The Automated Ban List
Blogs
Major Shifts in the Gaming I…
TrAiDoS
An Exploration of th…
waywardstrategy
I'm an arrogant trash talke…
FlaShFTW
Gauntlet SC2: A Retrospectiv…
Ctone23
ramps on octagon
StaticNine
Funny Nicknames
LUCKY_NOOB
Customize Sidebar...

Website Feedback

Closed Threads



Active: 4016 users

Blizzard Security Breach - Page 7

Forum Index > SC2 General
442 CommentsPost a Reply
Prev 1 5 6 7 8 9 23 Next All
MyLastSerenade
Profile Joined February 2010
Germany710 Posts
August 10 2012 00:06 GMT
#121
unbelievable......
Medrea
Profile Joined May 2011
10003 Posts
August 10 2012 00:08 GMT
#122
Well it's not like they kept the passwords in plaintext.
twitch.tv/medrea
Corrosive
Profile Joined August 2010
Canada3741 Posts
August 10 2012 00:11 GMT
#123
Stuff like this happens often to companies like this. As long as blizzard didn't store everything in plaintext like Sony did, everything should be fine.

If you want to see how long it would take your password to be cracked check this out
http://howsecureismypassword.net/
Maruprime.
creamer
Profile Joined February 2011
Canada128 Posts
August 10 2012 00:11 GMT
#124
If they have a half decent encryption on the passwords (which I'm sure they do), I'm not worried at all about my account being accessed.
MKP - Best player of all time
andReslic
Profile Joined January 2012
216 Posts
August 10 2012 00:11 GMT
#125
I feel like people that bought accounts will feel safer after beign able to change the secret question

Wuster
Profile Joined May 2011
1974 Posts
Last Edited: 2012-08-10 00:16:42
August 10 2012 00:14 GMT
#126
On August 10 2012 08:51 Virtue wrote:
Show nested quote +
On August 10 2012 08:30 netherh wrote:
It's lucky they don't do anything stupid like make all the passwords case insensitive... Oh wait.


Usually at this point after a hack, case of the characters in your passwords doesn't matter. They are just going to brute force (Try every possible combination of characters for a certain length) and when a computer is just calculating hashes and comparing them it doesn't make it harder or easier. Thankfully, it seems like Blizzard's password storage protocol is a lot better than most encryption methods at standing up to brute forcing their hashes. (Might even be impossible.)


I'm by no means an expert, so I'm wondering if you could explain how a storage protocol could be better or worse against brute force. Do you mean things like individual salts or increased entropy?

Because all I'm thinking is that once someone has the actual hash you can't slow their velocity when it comes to brute-force attacks (which Blizzard does when you enter passwords through the game client / web).

Edit: I do agree that case actually is a red herring here, because the allowable character set and password lengths already have plenty of permutations to prevent someone easily cracking one password let alone all of them.
v3chr0
Profile Blog Joined April 2010
United States856 Posts
August 10 2012 00:17 GMT
#127
My password is pretty crazy, I think I'll be alright. Will be changing my secret q/a when prompted though.
"He catches him with his pants down, backs him off into a corner, and then it's over." - Khaldor
Sikly
Profile Joined June 2011
United States413 Posts
August 10 2012 00:20 GMT
#128
On August 10 2012 09:17 v3chr0 wrote:
My password is pretty crazy, I think I'll be alright. Will be changing my secret q/a when prompted though.


Why risk it? Using a new password takes minutes, getting a stolen account and all the other bullshit that comes with it could take you quite a lot of stressful hours.
Chunhyang
Profile Joined December 2011
Bangladesh1389 Posts
August 10 2012 00:20 GMT
#129
So, someone hacked? Or someone went all Mission Impossible on Blizzard HQ? The latter, I hope.

I'm not worried.
If you could reason with haters, there would be no haters. YGTMYFT
achristes
Profile Blog Joined March 2011
Norway653 Posts
August 10 2012 00:25 GMT
#130
Did anyone know that if you type your bnet password on TL it automatically turns into stars?
Here's mine: *******
Pretty sick.

On a serious note, looks like blizz handled it nicely.
youtube.com/spooderm4n | twitch.tv/spooderm4n | Random videos and games I feel like uploading
nath
Profile Blog Joined May 2010
United States1788 Posts
August 10 2012 00:26 GMT
#131
On August 10 2012 07:38 Probe1 wrote:
So change your passwords. Got it.

(Before anyone says "Oh no Probe u sux at reading", cryptographically scrambled versions.. do you trust your account and information on that? Do you?")

as a programmer, yes.
Founder of Flow Enterprises, LLC http://flow-enterprises.com/
Vorenius
Profile Blog Joined December 2010
Denmark1979 Posts
August 10 2012 00:26 GMT
#132
On August 10 2012 09:11 Corrosive wrote:
If you want to see how long it would take your password to be cracked check this out
http://howsecureismypassword.net/

1 million years.

I'll take my chances.
Kaasstengel
Profile Joined July 2012
Netherlands15 Posts
August 10 2012 00:27 GMT
#133
Thanks for posting this! I'm playing on the European server but changed my password and question anyone, never can be too certain these days!
leo23
Profile Blog Joined November 2010
United States3075 Posts
August 10 2012 00:30 GMT
#134
T_T oh my god ...
banelings
trifecta
Profile Joined April 2010
United States6795 Posts
August 10 2012 00:30 GMT
#135
On August 10 2012 09:06 MyLastSerenade wrote:
unbelievable......



Why is this unbelievable? Security is a really hard problem of asymmetric warfare. At least Blizzard, as far as we know, didn't make any obvious mistakes like keeping passwords in plaintext. As the Apple/Amazon story from a few days ago reinforced, users have to share the responsibility of security (don't reuse passwords, use strong passwords, keep backups etc)–you can't expect even the largest corporations to keep out all attackers all the time.
Laneir
Profile Joined September 2010
United States1160 Posts
August 10 2012 00:31 GMT
#136
No bueno hope they fix this fast
Follow me on Instagram @Chef_Betto
xrapture
Profile Blog Joined December 2011
United States1644 Posts
Last Edited: 2012-08-10 04:33:35
August 10 2012 00:31 GMT
#137
Everyone is either delusional, a nihlilst, or dead from suicide.
Eufouria
Profile Blog Joined March 2011
United Kingdom4425 Posts
August 10 2012 00:32 GMT
#138
On August 10 2012 09:26 Vorenius wrote:
Show nested quote +
On August 10 2012 09:11 Corrosive wrote:
If you want to see how long it would take your password to be cracked check this out
http://howsecureismypassword.net/

1 million years.

I'll take my chances.

128 decillion years
Possible Combinations: 16 sexdecillion

I'm quietly confident.
zergrushkekeke
Profile Joined November 2010
Australia241 Posts
August 10 2012 00:33 GMT
#139
On August 10 2012 09:17 v3chr0 wrote:
My password is pretty crazy, I think I'll be alright. Will be changing my secret q/a when prompted though.


That is not how passwords work, if you have a crazy long and difficult password and someone steals it, they don't care how long or complicated it is, they will more likely be copy/pasting it.

And to the other post about using a webpage to check how secure your password is, i seriously hope you didn't use your real one, how secure is a secret you told someone about to see if they have heard it?
KEKEKE
Shenghi
Profile Joined August 2010
167 Posts
August 10 2012 00:33 GMT
#140
On August 10 2012 08:16 R1CH wrote:
Show nested quote +
On August 10 2012 08:08 Shenghi wrote:
Assuming Blizzards implementation of the RSP-protocol is correct and they use sufficiently large numbers, and there is no reason to assume otherwise, then the passwords of the NA accounts are still just as safe as they were before, with the minor difference that more attempts at breaking them could now be made per second. However, for strong passwords this doesn't matter, as strong passwords take billions of years to break anyway.

While SRP is very secure, there are many services (like the battle.net website) that can't use SRP, so it seems reasonable to conclude that some password-equivalent data is stored somewhere and that it could have been leaked.

Even so, it can reasonably assumed that Blizzard sufficiently salts and otherwise obscures the password before hashing it with a safe hash, so the point stands. Weak passwords remain weak, strong ones remain strong.

Nevertheless, everyone affected should of course still change their passwords, just to make sure.

On August 10 2012 08:26 thurst0n wrote:
LOL SO TRUE!

I seriously cannot have a password for each site because I cannot remember that many passwords. I have to change my password at work every 10 weeks, and I'm running out of options, I cannot use ANY password I've previously used... security questions I have a little trick for, that this hacker ruined. I always answer the same 3 things for security questions, and they are complete bullshit, so it doesn't matter what questions are asked, just the random answers i have selected, it makes it hard when sites ask me in random order.

Bleh, I guess I'll have to write down my passwords at home, and start making them different for everything. Luckily I already use seperate password for things i care about, like banking/personal email. Fuck you hackers

The sad part is that changing your password every 10 weeks doesn't even increase security. If your password is strong, then it's strong. If it's weak, then it's weak. In fact, having to change it often will probably lead to much weaker passwords, such as "thissux10" and then just increment it every time you are forced to change it.

As for security questions, don't get me started. They are pretty much the bane of my existence. If I can avoid having to answer them, I will. If that means I have to avoid a certain service, so be it.

Don't write your passwords down. Use KeePass, like some people have already suggested.

On August 10 2012 08:43 Pufftrees wrote:

This is just... unacceptable. What the flux.

+ Show Spoiler +
Blizzard is such a joke

This happens to every major company and every government. Nothing you can do about it. Attackers are always ahead of defenders. Not Blizzards fault, and in fact, as far as we can tell they're handling it better than most.

On August 10 2012 08:45 RoyGBiv_13 wrote:
I went to a talk at DEFCON about fuzzing d3, where they showed just how secure blizzard's password system is. I would not be worried about them breaking you password hash (a properly salted and hashed password is a difficult thing to unravel). The security questions are a real risk though.

Always those dang security questions...

On August 10 2012 08:51 Virtue wrote:
Show nested quote +
On August 10 2012 08:30 netherh wrote:
It's lucky they don't do anything stupid like make all the passwords case insensitive... Oh wait.


<snip>

Still, when it comes to passwords length is all that matters. I work for a company that audits IT and when we get hashes of passwords like these guys did, we can usually crack all of an institutions passwords in a day. The only ones we can't crack no matter how long they are are ones that are long (Something like 13-15 characters or longer).

<snip>


Even if the hashing algorithm is known and only lower-case characters (no uppercase, no digits, no special characters, etc.) are used, then at 1 billion (1 000 000 000) attempts per second it takes ~50 000 years to break 15-character password, assuming the hash is safe (no collisions are known, or are expected to be found within that time frame.)

For a 20-character password, this would be ~631 billion years.

Note: The (possibly) fastest computer on earth can make about 75 billion attempts per second.

(Reinforcing your point here, not disputing it)

On August 10 2012 09:01 DertoQq wrote:
Actually, case does help. They are going to brute force it and if they have to take into account the case, it will increase the number of possibilities by A LOT.

It helps, but it won't change much for a password of desirable length. If it's impossible to get in a few billion years, then one way or the other, you'll be fine.

On August 10 2012 09:20 Sikly wrote:
Why risk it? Using a new password takes minutes, getting a stolen account and all the other bullshit that comes with it could take you quite a lot of stressful hours.

Memorizing a new, strong password takes more than minutes.

On August 10 2012 09:25 achristes wrote:
Did anyone know that if you type your bnet password on TL it automatically turns into stars?
Here's mine: *******
Pretty sick.

Oh, you read bash.org.
People are not born stupid, they choose to be stupid. If you made that choice, please change your mind.
Prev 1 5 6 7 8 9 23 Next All
Please log in or register to reply.
Live Events Refresh
Next event in 35m
[ Submit Event ]
Live Streams
Refresh
StarCraft 2
SortOf 210
SHIN 56
Ryung 33
StarCraft: Brood War
Hyuk 2537
Jaedong 610
Larva 575
Horang2 517
BeSt 305
Zeus 263
firebathero 244
Soulkey 232
actioN 207
Soma 168
[ Show more ]
Rush 125
Light 108
Pusan 86
Killer 84
ZerO 73
Mind 57
Free 48
ToSsGirL 48
Aegong 44
sorry 42
soO 42
Sharp 35
scan(afreeca) 32
hero 29
910 28
GoRush 26
[sc1f]eonzerg 25
ZergMaN 18
Bale 16
Noble 8
Dota 2
XaKoH 691
League of Legends
JimRising 426
Counter-Strike
olofmeister1965
Other Games
ceh9835
Pyrionflax228
ZerO(Twitch)14
Organizations
Other Games
gamesdonequick22457
StarCraft 2
TaKeTV418
Other Games
BasetradeTV212
Dota 2
PGL Dota 2 - Main Stream78
StarCraft 2
Blizzard YouTube
StarCraft: Brood War
BSLTrovo
[ Show 14 non-featured ]
StarCraft 2
• StrangeGG 69
• AfreecaTV YouTube
• intothetv
• Kozan
• IndyKCrew
• LaughNgamezSOOP
• Migwel
• sooper7s
StarCraft: Brood War
• BSLYoutube
• STPLYoutube
• ZZZeroYoutube
Dota 2
• lizZardDota281
League of Legends
• Jankos3609
• Stunt497
Upcoming Events
GSL
35m
Replay Cast
13h 35m
WardiTV Weekly
1d
PiGosaur Cup
1d 13h
The PondCast
1d 23h
Replay Cast
2 days
CrankTV Team League
3 days
Replay Cast
3 days
Replay Cast
3 days
CrankTV Team League
4 days
[ Show More ]
Replay Cast
4 days
RSL Revival
4 days
CranKy Ducklings
4 days
Afreeca Starleague
4 days
Snow vs Jaedong
YSC vs hero
RSL Revival
5 days
Sparkling Tuna Cup
5 days
Liquipedia Results

Completed

CSL Season 21: Qualifier 2
HSC XXIX
Eternal Conflict S2 E1

Ongoing

IPSL Spring 2026
Acropolis #4
YSL S3
CSL 2026 Summer (S21)
SCTL 2026 Spring
XSE Pro League 2026
IEM Cologne Major 2026
Stake Ranked Episode 2
CS Asia Championships 2026
Asian Champions League 2026
IEM Atlanta 2026
PGL Astana 2026
BLAST Rivals Spring 2026

Upcoming

Escore Tournament S3: W2
ASL Season 22:Wild Card Qualifier
CSLAN 4
Blizzard Classic Cup 2026
SC4ALL II: StarCraft II
Kung Fu Cup 2026 Grand Finals
RSL Revival: Season 6
CranK Gathers Season 4: BW vs SC2 Team League
Light Tournament 2026
Eternal Conflict S2 Finale
Eternal Conflict S2 E3
Eternal Conflict S2 E2
Heroes Pulsing #3
Logitech G Connect 2026
StarSeries Fall 2026
FISSURE Playground #5
BLAST Open Fall 2026
Esports World Cup 2026
BLAST Bounty Summer 2026
BLAST Bounty Summer Qual
Stake Ranked Episode 3
TLPD

1. ByuN
2. TY
3. Dark
4. Solar
5. Stats
6. Nerchio
7. sOs
8. soO
9. INnoVation
10. Elazer
1. Rain
2. Flash
3. EffOrt
4. Last
5. Bisu
6. Soulkey
7. Mini
8. Sharp
Sidebar Settings...

Advertising | Privacy Policy | Terms Of Use | Contact Us

Original banner artwork: Jim Warren
The contents of this webpage are copyright © 2026 TLnet. All Rights Reserved.