The eula you signed on last patch literally states that they offer no warranty in any case.
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
The eula you signed on last patch literally states that they offer no warranty in any case.
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
Not really sure how it's handled, but I kind of doubt they would do anything about the transaction after it has already gone through. An item was sold for money. The account being compromised doesn't have anything to do with it. The person who actually owns the account may either be SoL or get their item back, but the transaction probably wouldn't be affected. It's not really exploitable tbh.
The eula you signed on last patch literally states that they offer no warranty in any case.
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
Not really sure how it's handled, but I kind of doubt they would do anything about the transaction after it has already gone through. An item was sold for money. The account being compromised doesn't have anything to do with it. The person who actually owns the account may either be SoL or get their item back, but the transaction probably wouldn't be affected. It's not really exploitable tbh.
How is it not exploitable? I could essentially log in from a Proxy (which I've already done), change my password, and sell all of my items on the RMAH, and then claim that my account was compromised after I emptied the paypal balance into my wallet. If Blizzard simply reimburses all of my items, I just pocketed some serious cash, and effectively duped every item I own. Think about it.
Sure i read that a rollback will then disable rmah for future, plus you need autheticator to use rmah and sms setup on your phone/mobile to use it
You cant trasnfer funds either to a bank etc - theyre forever on your account
Lots of people with Authenticator's have already been hacked. Even Kripparrian was hacked while live streaming, and using an Authenticator. And yes, you can empty your paypal account.
Sure i read that a rollback will then disable rmah for future, plus you need autheticator to use rmah and sms setup on your phone/mobile to use it
You cant trasnfer funds either to a bank etc - theyre forever on your account
Lots of people with Authenticator's have already been hacked. Even Kripparrian was hacked while live streaming, and using an Authenticator. And yes, you can empty your paypal account.
I said bank not paypal, and to log into support website where the balance is - requires an authenticator everytime unlike the game.
The eula you signed on last patch literally states that they offer no warranty in any case.
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
Not really sure how it's handled, but I kind of doubt they would do anything about the transaction after it has already gone through. An item was sold for money. The account being compromised doesn't have anything to do with it. The person who actually owns the account may either be SoL or get their item back, but the transaction probably wouldn't be affected. It's not really exploitable tbh.
How is it not exploitable? I could essentially log in from a Proxy (which I've already done), change my password, and sell all of my items on the RMAH, and then claim that my account was compromised after I emptied the paypal balance into my wallet. If Blizzard simply reimburses all of my items, I just pocketed some serious cash, and effectively duped every item I own. Think about it.
It gos to the verified and linked paypal account, so unless you can go through the full process of removing and adding a new account then go ahead, but it needs to be linked to the main account on paypal with the same billing address.
The transfer is also not instant.
And again, you need authenticator and sms setup to work with rmah, and to login to the support website where authenticator is needed everytime.
The eula you signed on last patch literally states that they offer no warranty in any case.
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
Not really sure how it's handled, but I kind of doubt they would do anything about the transaction after it has already gone through. An item was sold for money. The account being compromised doesn't have anything to do with it. The person who actually owns the account may either be SoL or get their item back, but the transaction probably wouldn't be affected. It's not really exploitable tbh.
How is it not exploitable? I could essentially log in from a Proxy (which I've already done), change my password, and sell all of my items on the RMAH, and then claim that my account was compromised after I emptied the paypal balance into my wallet. If Blizzard simply reimburses all of my items, I just pocketed some serious cash, and effectively duped every item I own. Think about it.
You are going to deposit the funds into YOUR paypal not the "hackers", which Blizzard will see, and claim you were hacked? I smell ban+paypal dispute+refund to the buyer. Actually probably just a ban and a paypal dispute, and blizzard will keep the 250 and the person the item, and you will have no items or account.
After that probably some legal action from Blizzard and Paypal.
Probably just let you off with a temp ban and not to bother customer service with false reports.
Sure i read that a rollback will then disable rmah for future, plus you need autheticator to use rmah and sms setup on your phone/mobile to use it
You cant trasnfer funds either to a bank etc - theyre forever on your account
Lots of people with Authenticator's have already been hacked. Even Kripparrian was hacked while live streaming, and using an Authenticator. And yes, you can empty your paypal account.
Unless you're talking about the smart phone authenticator, this has not been proven yet. According to Blizzard, not a single case of someone with a physical authenticator has been hacked.
Possible? Yes. Will it ever happen to anyone, anywhere? No.
If you have an authenticator and you've enabled the SMS protect service, you are safe. There's no way around a system that requires an account name, a password, a 6 digit keycode with 60 second expiration and an SMS text code.
Idd all of the above security measures are free of charge if you have a smartphone, and even if you dont several other phones can have a authenticator added, for a very small fee.
Lets say the hackers are so danm good that its posible to do all the stuff discribed.. well then we are fucked anyway cos then your battlenet account are the least of your problems. Your bank account paypal account and alot of other infomations are compromised as well then and they will empty them as well.
Authenticators for B.net were last gotten around a couple years ago in WoW, with a man-in-the-middle attack, involving a few machines absolutely full of malware, including the trojan that redirected WoW login traffic to the hackers. Without that compromise, it wouldn't have been possible.
Blizzard has since put some kind of countermeasures in place, and no authenticator-attached (the mobile or keyfob, dial-in doesn't count, as it doesn't work for D3) account has been hacked for D3 at all. Despite what some tell you, it simply hasn't happened. The hackers aren't going to bother with man-in-the-middle when there's all these other people w/o authenticators to hit.
Also, why would they go to all the trouble of using *your* account to sell your stuff, when they can just move the items to their own account, and sell them? The coupling of SMS phone code to post auctions on the RMAH, and the authenticator to log in and change any settings, actually makes it basically not worth bothering for the hackers.
As someone said, to do any of that, they would have to compromise your phone and your machine, and be waiting to steal your stuff in real time. They're not going to bother, because that's too much work for the return. They'll find someone else who doesn't have an authenticator, and is using the same or almost the same password as an account they've compromised at some point, and hack them instead. They'll just strip their stuff and their gold, and go sell it, whether it be their own RMAH account, or their own storefront.
Rollback Post to RevisionRollBack
To post a comment, please login or register a new account.
Will Blizzard still rollback your account?
What happens to the $250.00? IE. how does Blizzard get it back from the hacker?
If Blizzard cannot retrieve said $250.00, does the buyer lose the item and simply not get a refund, or - ?
That wasn't my question. I want to know how they handle it as I know at least 5 people who had their accounts hacked before the RMAH. In every instance Blizzard granted them a rollback, but now that the RMAH is live, I wonder if they will still be able to do this and how it is possible to keep this from being exploited?
Not really sure how it's handled, but I kind of doubt they would do anything about the transaction after it has already gone through. An item was sold for money. The account being compromised doesn't have anything to do with it. The person who actually owns the account may either be SoL or get their item back, but the transaction probably wouldn't be affected. It's not really exploitable tbh.
You cant trasnfer funds either to a bank etc - theyre forever on your account
How is it not exploitable? I could essentially log in from a Proxy (which I've already done), change my password, and sell all of my items on the RMAH, and then claim that my account was compromised after I emptied the paypal balance into my wallet. If Blizzard simply reimburses all of my items, I just pocketed some serious cash, and effectively duped every item I own. Think about it.
Lots of people with Authenticator's have already been hacked. Even Kripparrian was hacked while live streaming, and using an Authenticator. And yes, you can empty your paypal account.
I said bank not paypal, and to log into support website where the balance is - requires an authenticator everytime unlike the game.
It gos to the verified and linked paypal account, so unless you can go through the full process of removing and adding a new account then go ahead, but it needs to be linked to the main account on paypal with the same billing address.
The transfer is also not instant.
And again, you need authenticator and sms setup to work with rmah, and to login to the support website where authenticator is needed everytime.
You are going to deposit the funds into YOUR paypal not the "hackers", which Blizzard will see, and claim you were hacked? I smell ban+paypal dispute+refund to the buyer. Actually probably just a ban and a paypal dispute, and blizzard will keep the 250 and the person the item, and you will have no items or account.
After that probably some legal action from Blizzard and Paypal.
Probably just let you off with a temp ban and not to bother customer service with false reports.
Unless you're talking about the smart phone authenticator, this has not been proven yet. According to Blizzard, not a single case of someone with a physical authenticator has been hacked.
Idd all of the above security measures are free of charge if you have a smartphone, and even if you dont several other phones can have a authenticator added, for a very small fee.
Lets say the hackers are so danm good that its posible to do all the stuff discribed.. well then we are fucked anyway cos then your battlenet account are the least of your problems. Your bank account paypal account and alot of other infomations are compromised as well then and they will empty them as well.
/sajon
Blizzard has since put some kind of countermeasures in place, and no authenticator-attached (the mobile or keyfob, dial-in doesn't count, as it doesn't work for D3) account has been hacked for D3 at all. Despite what some tell you, it simply hasn't happened. The hackers aren't going to bother with man-in-the-middle when there's all these other people w/o authenticators to hit.
Also, why would they go to all the trouble of using *your* account to sell your stuff, when they can just move the items to their own account, and sell them? The coupling of SMS phone code to post auctions on the RMAH, and the authenticator to log in and change any settings, actually makes it basically not worth bothering for the hackers.
As someone said, to do any of that, they would have to compromise your phone and your machine, and be waiting to steal your stuff in real time. They're not going to bother, because that's too much work for the return. They'll find someone else who doesn't have an authenticator, and is using the same or almost the same password as an account they've compromised at some point, and hack them instead. They'll just strip their stuff and their gold, and go sell it, whether it be their own RMAH account, or their own storefront.