Sorry if there is already a topic on this (I didn't see one), or if I'm posting this in the wrong place.
In case you aren't aware, there has been quite a number of reports of accounts being hacked on the Us servers. The thread on the bnet forums has reached 21 pages at the time of this writing (http://us.battle.net...49008518?page=1), and there is also an article about it at http://www.examiner....diablo-3-hacked
Unfortunately I was one of those hacked. I logged in today to find all the items on the character I had last played gone, my gold gone, and my stash cleaned out. All other characters still had all their gear and items in their inventories. Blizzard offered a limited restore that would likely cause me to lose progress on other characters. If I took the restore they would ban my account from the RMAH until I attached an autenticator, and if a second restore was ever necessary my account would be permanently banned from the RMAH.
There seems to be some question at the moment if the vulnerabilities were client-side or server-side. Many people, including myself, are quite certain that they have never shared their account details and that their computers are free of viruses and spyware. A few people have even claimed that their accounts were hacked despite using the authenticator, including the author of the article I linked. Many people in the bnet thread have said that Blizzard has stopped responding to tickets about this, so I suspect they are investigating further to try to figure out what's going on.
Onscreen VIRTUAL keyboard (not the one Windows has) bypasses keylogger as it can't do anything when you do everything with mouse clicks, authenticator keeps you pretty safe and having an ok AV plus Thunderbird or another good email client keeps you safe from all 'bad' emails. Been doing 'ethical' hacking as sysop, most common intrusions are weak and detected easily if you use Windows + AV.
A virtual keyboard doesn't send anything that can be captured by a keylogger that doesn't record your screen, Kaspersky VK is just one of many examples, trace the behavior and all keylogger sees is 'noise'. In any case, if your computer is safe, keyloggers and other garbage will not get in
My account is not hacked becasue I use updated malware and spyware detection software. I recently visited a website that tried to install keylogger in my computer. I was lucky that my software was able to detect the treat and prevent the website from installing it in my computer.
I typically don't feel sorry for people who get keyloggers because they are usually visiting sites they shouldn't be. I bet most of those people were googling something stupid like "Ultimate Inferno farming bot" or the likes and got owned. A lot of people in WoW got fooled thinking they were downloading bots and other things, then cried about losing their accounts while the Chinese were laughing it up as they stripped accounts.
It's your fault for not having an authenticator fob or the FREE app for your phones if you really cared about account security. Instead of worrying about virtual keyboards, you need to worry about the sites you are visiting.
^ Look at the post above me. I bet that link in his sig phishes people too and kids think they are getting the game for free.
I will almost guarantee these issues are client side and not server side. I agree with Doez even though I do feel sorry for the people who get hacked. It is their own fault the majority of the time. Good luck to everyone having these Issues, but from what the OP said you will likely need to purchase an authenticator if you want your account restored.
I just got hacked as well. My password was unique for D3, and I know what I'm doing, so my system is completely safe. There is no way anyone could have gotten my password off of my computer. Just no way. Because of the amounts of people being hacked, I think the issues may be server-side.
If somebody is using an authenticator and they still got hacked, it is a server side issue.
The chances of hacking an account with an authenticator are very, very small. It is possible, but extremely small because the code timeframe is just a few seconds. Let's say you were browsing sites you shouldn't be browsing, and all of a sudden lost your account later that day.. What would you tell people, or tell Blizzard? You are going to say you have an authenticator of course, so that you get the sympathy or empathy you are looking for, and not being ridiculed for trying to download a bot or look at a site with known bugs/hacks.
If Blizzard came out and said that their databases have been compromised and that authenticators no longer work because of it, I'll quit D3 forever and eat crow from you all to the point of no returning to DFans. It's worth betting that the kids with compromised accounts do not have authenticators.
If somebody is using an authenticator and they still got hacked, it is a server side issue.
The chances of hacking an account with an authenticator are very, very small. It is possible, but extremely small because the code timeframe is just a few seconds. Let's say you were browsing sites you shouldn't be browsing, and all of a sudden lost your account later that day.. What would you tell people, or tell Blizzard? You are going to say you have an authenticator of course, so that you get the sympathy or empathy you are looking for, and not being ridiculed for trying to download a bot or look at a site with known bugs/hacks.
If Blizzard came out and said that their databases have been compromised and that authenticators no longer work because of it, I'll quit D3 forever and eat crow from you all to the point of no returning to DFans. It's worth betting that the kids with compromised accounts do not have authenticators.
I agree. The only evidence we have is somebody said they were using an authenticator and there is motive to lie, embarrassment. I'd put the odds at 80% in Blizzard's favor that the servers are safe, because there is no proof of server side hacks. Reason for 20% doubt is because credit card companies, credit beareaus, and Sony have all spent more $ than blizzard on cyber security and still have had their data compromised
Pretty crazy though that stuff is getting stolen now, before there is a real $ auction house. I wonder if each item has a unique ID and can be tracked which accounts have "owned" it. Or if Blizzard can find the "mule" account which logged into the compromised account's game to steal its items. Hopefully the Auction house makes Blizzard a lot of money so they have an incentive to play Cops.
This was actually expected. Bunch of people not used to Bnet, didn't have authenticators, and are absolutely 'sure' their stuff was clean. Check closer, and/or stop sharing credentials, or using them on other accounts.
They weren't clean. If Blizzard was broken, you'd have thousands upon thousands of exploits in WoW, SC2, and D3 all at the same time.
As far as getting around an authenticator, it *still* requires the client to be compromised, so that the login credentials can be redirected to the hackers, and the authenticator data is used in real time. So, not likely, but possible. I combed the forums looking at this stuff, and just about anyone *directly asked* if they had an authenticator said no.
I work in IT security, and as I said, I expected a rash of hacking to hit people w/o authenticators. If you're on bnet, get one. It makes you a much harder target if/when you get compromised.
As far as the accusations that it's server-side? That's just people looking for someone to blame. We'd have more problems than a few hundred or even a few thousand D3 hacks if that was the case. (Keep in mind that if you estimate 1 million users, and I think that's low, 1000 is only .1% of the users.)
Edit: To anyone who personally has gotten hacked, I'm not trying to be insulting. Sorry, but, the hole's on your end in some way. You may be rootkitted and not know it. I've seen several of those lately that didn't get caught by some of the better-known (and rather crappy, but I digress) AV packages. If it's Norton or McAfee...replace it. Really.
I just read the bnet forums and it just amazes me how many people have no clue how the authenticator works. I keep reading "HE HAS AN AUTH BRO ITS BLIZZ FAULT."
First off, when you log in, Blizzard stores your IP address so that when you have the "authenticate every time" option unchecked, it won't bother you every time. I think once a week is the frequency it will require you to authenticate.
When you log in from another computer or someone tries to hack you from China, the authenticator kicks in immediately, regardless of the option you have checked. It senses a different IP and stops you from logging in unless you authenticate. I sometimes play at my PC, and then go to my laptop later at night. When I try to play on my laptop, I have to authenticate every single time, then authenticate again on my PC. That's the design of it for your protection.
Last year I tried to play WoW in Mexico while on a work trip, and Blizzard sensed a different IP and immediately locked my account and required me to go to bnet to authenticate and change my password for proof.
Blizzard just won't let these people waltz into your accounts without any protection, so I have no doubt that the people claiming they were hacked with an authenticator really did not have one.
I dont get why people don't just use an authenticator. a good antivirus, strong password, and solid web browser are all good ideas, but the authenticator gives 100x more protection then anything else ever will. Multi-factor authentication is the way to go.
Rollback Post to RevisionRollBack
To post a comment, please login or register a new account.
In case you aren't aware, there has been quite a number of reports of accounts being hacked on the Us servers. The thread on the bnet forums has reached 21 pages at the time of this writing (http://us.battle.net...49008518?page=1), and there is also an article about it at
http://www.examiner....diablo-3-hacked
Unfortunately I was one of those hacked. I logged in today to find all the items on the character I had last played gone, my gold gone, and my stash cleaned out. All other characters still had all their gear and items in their inventories. Blizzard offered a limited restore that would likely cause me to lose progress on other characters. If I took the restore they would ban my account from the RMAH until I attached an autenticator, and if a second restore was ever necessary my account would be permanently banned from the RMAH.
There seems to be some question at the moment if the vulnerabilities were client-side or server-side. Many people, including myself, are quite certain that they have never shared their account details and that their computers are free of viruses and spyware. A few people have even claimed that their accounts were hacked despite using the authenticator, including the author of the article I linked. Many people in the bnet thread have said that Blizzard has stopped responding to tickets about this, so I suspect they are investigating further to try to figure out what's going on.
It's your fault for not having an authenticator fob or the FREE app for your phones if you really cared about account security. Instead of worrying about virtual keyboards, you need to worry about the sites you are visiting.
^ Look at the post above me. I bet that link in his sig phishes people too and kids think they are getting the game for free.
Battle.net Profile / Diablo Progress Profile
Seeing him stripped of his gear made me purchase an authenticator right away.
That's the spirit! Blame the game, not the stupid shit you do!
Battle.net Profile / Diablo Progress Profile
And this:
http://www.eurogamer.net/articles/2012-05-21-diablo-3-accounts-hacked-gold-and-items-stolen
The chances of hacking an account with an authenticator are very, very small. It is possible, but extremely small because the code timeframe is just a few seconds. Let's say you were browsing sites you shouldn't be browsing, and all of a sudden lost your account later that day.. What would you tell people, or tell Blizzard? You are going to say you have an authenticator of course, so that you get the sympathy or empathy you are looking for, and not being ridiculed for trying to download a bot or look at a site with known bugs/hacks.
If Blizzard came out and said that their databases have been compromised and that authenticators no longer work because of it, I'll quit D3 forever and eat crow from you all to the point of no returning to DFans. It's worth betting that the kids with compromised accounts do not have authenticators.
Battle.net Profile / Diablo Progress Profile
I agree. The only evidence we have is somebody said they were using an authenticator and there is motive to lie, embarrassment. I'd put the odds at 80% in Blizzard's favor that the servers are safe, because there is no proof of server side hacks. Reason for 20% doubt is because credit card companies, credit beareaus, and Sony have all spent more $ than blizzard on cyber security and still have had their data compromised
Pretty crazy though that stuff is getting stolen now, before there is a real $ auction house. I wonder if each item has a unique ID and can be tracked which accounts have "owned" it. Or if Blizzard can find the "mule" account which logged into the compromised account's game to steal its items. Hopefully the Auction house makes Blizzard a lot of money so they have an incentive to play Cops.
They weren't clean. If Blizzard was broken, you'd have thousands upon thousands of exploits in WoW, SC2, and D3 all at the same time.
As far as getting around an authenticator, it *still* requires the client to be compromised, so that the login credentials can be redirected to the hackers, and the authenticator data is used in real time. So, not likely, but possible. I combed the forums looking at this stuff, and just about anyone *directly asked* if they had an authenticator said no.
I work in IT security, and as I said, I expected a rash of hacking to hit people w/o authenticators. If you're on bnet, get one. It makes you a much harder target if/when you get compromised.
As far as the accusations that it's server-side? That's just people looking for someone to blame. We'd have more problems than a few hundred or even a few thousand D3 hacks if that was the case. (Keep in mind that if you estimate 1 million users, and I think that's low, 1000 is only .1% of the users.)
Edit: To anyone who personally has gotten hacked, I'm not trying to be insulting. Sorry, but, the hole's on your end in some way. You may be rootkitted and not know it. I've seen several of those lately that didn't get caught by some of the better-known (and rather crappy, but I digress) AV packages. If it's Norton or McAfee...replace it. Really.
IMO, they're stockpiling gold to sell it on RMAH.
First off, when you log in, Blizzard stores your IP address so that when you have the "authenticate every time" option unchecked, it won't bother you every time. I think once a week is the frequency it will require you to authenticate.
When you log in from another computer or someone tries to hack you from China, the authenticator kicks in immediately, regardless of the option you have checked. It senses a different IP and stops you from logging in unless you authenticate. I sometimes play at my PC, and then go to my laptop later at night. When I try to play on my laptop, I have to authenticate every single time, then authenticate again on my PC. That's the design of it for your protection.
Last year I tried to play WoW in Mexico while on a work trip, and Blizzard sensed a different IP and immediately locked my account and required me to go to bnet to authenticate and change my password for proof.
Blizzard just won't let these people waltz into your accounts without any protection, so I have no doubt that the people claiming they were hacked with an authenticator really did not have one.
Battle.net Profile / Diablo Progress Profile