I woke up this morning to a text message from Commonwealth Bank (big bank in Australia) telling me my MasterCard had been used by an airline in Saudi Arabia. Luckily the bank declined the $310 withdrawal, but someone else had managed to withdraw $1.67 so basically they shut off my card.
The reason why I'm posting this story here is that the only time I've used my MasterCard online recently was a few nights ago to preorder D3. So I think that my card details were somehow stolen from Blizzard.
Has anyone else had bank security issues after dealing with Blizzard? I'm expecting you're all going to say that our details are 100% safe with them, but I can't think of how else my details could have been stolen.
Edit: just realised I should have posted this in the General Discussion forum.
If someone was hacking Blizzard to obtain credit card details, I believe Blizzard would know by now, while they would inform us aswell. You are the only one I heard it happened to.
And seriously... you think Blizzard wants to use your money on trips in Saudi Arabia? Do you SERIOUSLY think they use 310$ from your account to that? I think Blizzard is aware that would be a stupid thing to do.
No, I never said anything about Blizzard stealing my money, and I'm not stupid enough to even think that. Please read the post properly before insulting me. I just thought that someone might have been able to get my details off their site. But as other people pointed out, it's probably a keylogger or something.
PFT, my bank got compromised and some people cleaned out my checking. ($500) I was in Korea at the time, NOT using my card at all. I was just using it to pay back loans. Got it all back though. $1.67 ain't nothing.
Rollback Post to RevisionRollBack
"The Unchosen" Pain of Admirance Sigil (For those without -Feat of Strength-):
Yeah, this is pretty much guaranteed to be something other than Blizz, sorry to say (or not sorry, as it's probably reassuring that this isn't Blizz! heh).
Also, you say "online recently" which I assume means you've used it online in the past. This would thus mean that any previous vendors you've dealt with could have easily been compromised and your details taken.
And what about at an actual store? I've had my CC card scanned and used without my permission by a random store (can't remember which) in Chinatown when I visited Sydney a year or two ago. This is actually the primary reason I still have a credit card with Commonwealth Bank, like yourself, as they are very good with picking up on this sort of thing... and it's so common these days that you're likely to be hit at some point regardless of how careful you are. I'm more than happy to pay Comm Bank's exorbitant fees for peace of mind.
There has been lots of news about hacking and bots in beta lately. If you googled about it and went to a questionable site, you could have gotten a keylogger. Hackers like to fish like that. Some hacks, bots, and addons have been known to have backdoor access to your computer as well.
Yeah, this is pretty much guaranteed to be something other than Blizz, sorry to say (or not sorry, as it's probably reassuring that this isn't Blizz! heh).
Also, you say "online recently" which I assume means you've used it online in the past. This would thus mean that any previous vendors you've dealt with could have easily been compromised and your details taken.
And what about at an actual store? I've had my CC card scanned and used without my permission by a random store (can't remember which) in Chinatown when I visited Sydney a year or two ago. This is actually the primary reason I still have a credit card with Commonwealth Bank, like yourself, as they are very good with picking up on this sort of thing... and it's so common these days that you're likely to be hit at some point regardless of how careful you are. I'm more than happy to pay Comm Bank's exorbitant fees for peace of mind.
Yeah, I hadn't thought of physical scanners in a store, I guess that could have happened. As for other sites, I don't think I've put my details in for months. It's sounding likely that it's a virus, but I'm a bit worried about what happens if the scan doesn't pick anything up. Just out of curiosity, how many of you use virtual keyboards to type in your bank info?
PFT, my bank got compromised and some people cleaned out my checking. ($500) I was in Korea at the time, NOT using my card at all. I was just using it to pay back loans. Got it all back though. $1.67 ain't nothing.
This is why I always take a low-limit CC if I go overseas. Much better to lose $500-1000 than $5000-10000+.
Yeah, I hadn't thought of physical scanners in a store, I guess that could have happened. As for other sites, I don't think I've put my details in for months. It's sounding likely that it's a virus, but I'm a bit worried about what happens if the scan doesn't pick anything up. Just out of curiosity, how many of you use virtual keyboards to type in your bank info?
I should but am too slack (and generally trust my own security). Do Comm bank even offer this? Or do you mean the Windows one? Speaking of which, you gotta love banks that LIMIT your password to 8 chars or 6 chars or something. Not that it really matters with keyloggers, but it's quite hilarious how poor the restrictions on some of those online portals is.
PFT, my bank got compromised and some people cleaned out my checking. ($500) I was in Korea at the time, NOT using my card at all. I was just using it to pay back loans. Got it all back though. $1.67 ain't nothing.
I'm not upset about losing that money. I was simply interested in figuring out the most likely causes so that I can try to avoid it in the future. Would hate to lose $500, that sucks, but good to hear you got it back.
I should but am too slack (and generally trust my own security). Do Comm bank even offer this? Or do you mean the Windows one? Speaking of which, you gotta love banks that LIMIT your password to 8 chars or 6 chars or something. Not that it really matters with keyloggers, but it's quite hilarious how poor the restrictions on some of those online portals is.
Yeah, I mean the Windows keyboard. I've never used it but might start now.
Apart from the aforementioned ideas, check your wi-fi network. It's not as hard as you think to brute force a weak password, and then, not even https can save you. Always set wifi to WPA2 and use a long password (12 characters) including a few symbols and numbers and different casing. It makes it almost immune to brute force attacks. If you are paranoid, change that password each month, and then they would need a supercomputer to hack it before it changes.
Thanks for the tip. I use 128bit WEP, can't remember why I chose that over the other options, but maybe I'll change to WPA2.
Unfortunatly cybercrime is on the rise, I just heard over the news that it roughly equals the worldwide drug crime by now :(.
If you know for sure that your pc has been compromised (in your case you are almost 100% sure as the odds of Blizz getting hacked compared to your pc are minimal) I would advise seeking manual malware removal help on Majorgeeks or techguy forums (its free and its the only way to be sure you get a clean pc again. Might take some time for them to respond though).
If you want to look into it yourself also here's some tips:
1. Make sure all drivers and everything (like flash) is updated on your pc.
2. Make sure you have some solid antivirus + firewall (it won't stop any hacker if your pc/ip is a target but it will stop drivebys and malware download to an extent).
3. There are two tools I usually recommend when I help people with this: http://support.kaspe.../?qid=208280684
Be adviced that you should use them for detection ONLY and unless you know what you are doing don't use them for removal, as it can crash your system.
Other than that you have the option of making a clean install of course.
Great, thanks a lot for the help, I'll try these.
Edit: Kaspersky TDSSKiller found no threats, but when I tried to run the Avast scanner, my own Kaspersky software told me that it was trying to download a driver in a hidden way. Should I be scared of it?
Also, it is not necessaily certain that your card info was stolen when you make the D3 purchase. There is still a chance it was stolen long before that and just recently they tried to use it.
But, it never hurts to make sure your PC is clean.
You must not use 2 antivirus programs at the same time. Also the safest thing is to format your pc keep every file you want on a separate drive, reinstall your OS, install an antivirus (I recommend Microsoft Security Essentials which is quite good and free) and use it to scan your other drive.
Also setting the security to WPA may not allow some devices to connect, like the old ds (dsi and newr have wpa encryption i think); that's why you might have had WEP.
I'd personally recommend Norton 360 over all other options currently. If you seriously are unwilling to pay, Malewarebytes is the best free program.
What you can do is use a CC with a very low limit for your buys on the internet This would really limit problems in case of a breach. (well 1000/2000 CC are common, a 500$ loss is still a problem if something happen).
Meanwhile do what other people in this thread have suggested for your computer.
Rollback Post to RevisionRollBack
To post a comment, please login or register a new account.
I woke up this morning to a text message from Commonwealth Bank (big bank in Australia) telling me my MasterCard had been used by an airline in Saudi Arabia. Luckily the bank declined the $310 withdrawal, but someone else had managed to withdraw $1.67 so basically they shut off my card.
The reason why I'm posting this story here is that the only time I've used my MasterCard online recently was a few nights ago to preorder D3. So I think that my card details were somehow stolen from Blizzard.
Has anyone else had bank security issues after dealing with Blizzard? I'm expecting you're all going to say that our details are 100% safe with them, but I can't think of how else my details could have been stolen.
Edit: just realised I should have posted this in the General Discussion forum.
No, I never said anything about Blizzard stealing my money, and I'm not stupid enough to even think that. Please read the post properly before insulting me. I just thought that someone might have been able to get my details off their site. But as other people pointed out, it's probably a keylogger or something.
How much porn do you do on the internet? Cracked software? Peer to peer downloading? Low name gaming sites? Or 4chan?
All of the above are the computer equivalent of Fucking a homeless prostitute without a condom.... It's a guaranteed disease (in this case virus).
And no... macs aren't STD proof. With the growth in popularity, macs are getting more and more viruses now too.
http://i.imgur.com/O7Oeo.png
I received TWO beta keys. Eat it and like it.
Also, you say "online recently" which I assume means you've used it online in the past. This would thus mean that any previous vendors you've dealt with could have easily been compromised and your details taken.
And what about at an actual store? I've had my CC card scanned and used without my permission by a random store (can't remember which) in Chinatown when I visited Sydney a year or two ago. This is actually the primary reason I still have a credit card with Commonwealth Bank, like yourself, as they are very good with picking up on this sort of thing... and it's so common these days that you're likely to be hit at some point regardless of how careful you are. I'm more than happy to pay Comm Bank's exorbitant fees for peace of mind.
Yeah, I hadn't thought of physical scanners in a store, I guess that could have happened. As for other sites, I don't think I've put my details in for months. It's sounding likely that it's a virus, but I'm a bit worried about what happens if the scan doesn't pick anything up. Just out of curiosity, how many of you use virtual keyboards to type in your bank info?
Fixed, yes I should have done this.
I can think of tons of things worse!
This is why I always take a low-limit CC if I go overseas. Much better to lose $500-1000 than $5000-10000+.
I should but am too slack (and generally trust my own security). Do Comm bank even offer this? Or do you mean the Windows one? Speaking of which, you gotta love banks that LIMIT your password to 8 chars or 6 chars or something. Not that it really matters with keyloggers, but it's quite hilarious how poor the restrictions on some of those online portals is.
I'm not upset about losing that money. I was simply interested in figuring out the most likely causes so that I can try to avoid it in the future. Would hate to lose $500, that sucks, but good to hear you got it back.
Yeah, I mean the Windows keyboard. I've never used it but might start now.
Thanks for the tip. I use 128bit WEP, can't remember why I chose that over the other options, but maybe I'll change to WPA2.
Great, thanks a lot for the help, I'll try these.
Edit: Kaspersky TDSSKiller found no threats, but when I tried to run the Avast scanner, my own Kaspersky software told me that it was trying to download a driver in a hidden way. Should I be scared of it?
But, it never hurts to make sure your PC is clean.
I'd personally recommend Norton 360 over all other options currently. If you seriously are unwilling to pay, Malewarebytes is the best free program.
Meanwhile do what other people in this thread have suggested for your computer.