I have not posted in this thread since starting it because I had nothing new to add - I had done and continue to do everything possible to be careful with my internet security, but I did not have an authenticator so could not claim with any certainty if the problem was on my end or Blizzard's end.
I am on a Mac and check for software updates every day, and last night I was offered a Java security update that was supposed to address a security vulnerability with the Java plug-in for the Safari web browser. Who knows, maybe that's how my account managed to get compromised.
I've learned an important lesson about not relying on the "it won't happen to me" security plan and have attached an authenticator, which I of course should of had from the start. I consider the issue closed, and suggest all those who were 100% adamant that their security was fool-proof and the problem was with Blizzard to be more open-minded and wait for all the information before rushing to judgment in the future.
Getting an authenticator should be mandatory. Websites like this are key targets for hackers to try and launch keyloggers and catch people who aren't protected. The Curse network has to work extra hard because there are thousands of accounts tied to the games they support who could get royally hosed. It's happened in the past.
Hackers are going to try and gain access anywhere gamers browse. You have to be prepared for it. Complaining that Blizzard is fail (not you, but some people in this thread) won't keep you safe.
He should be busy lickin' his greasy lips sat in his mother's basement.
I know there is a language barrier and you are trying hard to write everything in English, but I really have no clue what you just said. You can keep resorting to insults because you are wrong, and I am right. Again, you can keep crying about not having an authenticator. Your original post in this thread was bashing Blizzard because you felt an exploit was on their end, and not because you're an idiot for not taking care of your account's security. What more feedback do you need from people here when they tell you to get an authenticator to reduce your problems to zero?
I'll go make out with my authenticator right now because she keeps me safe from the mean Chinamen trying to take my gear and gold.
I wished you were caught in that Ohio University shooting, how about that?
Lawless commies? Brush up on your general knowledge, hard knuck.
Maybe you'll get drowned and swept away one day in your endless numbers of tornadoes, floods and tsunamis.
Hopefully your authenticator will save you then.
Ok little girl, I'm done wasting my time going back and forth with you. Keep crying about your account, and get an authenticator. I did chuckle about getting swept away in a tsunami.. because Ohio is real close to the ocean with tons of major earthquakes that cause tsunamis over a thousand miles inland.
Just logged in again, and I'm still not hacked. Yay me for spending $6, boohoo for you.
I'm not saying some kind of issue doesn't exist, my stance is that kids are too lazy/poor to get a free authenticator or one that costs $6 from Blizzard. I don't feel bad for them.
Please explain how suddenly tens of thousands of people are being hacked, even those with authenticators, in a very short window, can all be attributed to individual cases of user error.
Few theads on BNET forums = tens of thousands of people apparently.
it actually goes further than just IP address. It checks your ip address, MAC address and probably some SID's or hardware ID's. If you so much as reformat your computer, it will think its a new login location and ask for the authenticator again even if your IP and MAC addresses and hardware ID's are the same. So when people claim they get hacked with an authenticator because of the "don't ask every time" option, I just dont believe it, because theres so much more involved than some people realize.
Good point, I agree they would store that information too.
I just read the bnet forums and it just amazes me how many people have no clue how the authenticator works. I keep reading "HE HAS AN AUTH BRO ITS BLIZZ FAULT."
First off, when you log in, Blizzard stores your IP address so that when you have the "authenticate every time" option unchecked, it won't bother you every time. I think once a week is the frequency it will require you to authenticate.
When you log in from another computer or someone tries to hack you from China, the authenticator kicks in immediately, regardless of the option you have checked. It senses a different IP and stops you from logging in unless you authenticate. I sometimes play at my PC, and then go to my laptop later at night. When I try to play on my laptop, I have to authenticate every single time, then authenticate again on my PC. That's the design of it for your protection.
Last year I tried to play WoW in Mexico while on a work trip, and Blizzard sensed a different IP and immediately locked my account and required me to go to bnet to authenticate and change my password for proof.
Blizzard just won't let these people waltz into your accounts without any protection, so I have no doubt that the people claiming they were hacked with an authenticator really did not have one.
If somebody is using an authenticator and they still got hacked, it is a server side issue.
The chances of hacking an account with an authenticator are very, very small. It is possible, but extremely small because the code timeframe is just a few seconds. Let's say you were browsing sites you shouldn't be browsing, and all of a sudden lost your account later that day.. What would you tell people, or tell Blizzard? You are going to say you have an authenticator of course, so that you get the sympathy or empathy you are looking for, and not being ridiculed for trying to download a bot or look at a site with known bugs/hacks.
If Blizzard came out and said that their databases have been compromised and that authenticators no longer work because of it, I'll quit D3 forever and eat crow from you all to the point of no returning to DFans. It's worth betting that the kids with compromised accounts do not have authenticators.
I typically don't feel sorry for people who get keyloggers because they are usually visiting sites they shouldn't be. I bet most of those people were googling something stupid like "Ultimate Inferno farming bot" or the likes and got owned. A lot of people in WoW got fooled thinking they were downloading bots and other things, then cried about losing their accounts while the Chinese were laughing it up as they stripped accounts.
It's your fault for not having an authenticator fob or the FREE app for your phones if you really cared about account security. Instead of worrying about virtual keyboards, you need to worry about the sites you are visiting.
^ Look at the post above me. I bet that link in his sig phishes people too and kids think they are getting the game for free.
Getting an authenticator should be mandatory. Websites like this are key targets for hackers to try and launch keyloggers and catch people who aren't protected. The Curse network has to work extra hard because there are thousands of accounts tied to the games they support who could get royally hosed. It's happened in the past.
Hackers are going to try and gain access anywhere gamers browse. You have to be prepared for it. Complaining that Blizzard is fail (not you, but some people in this thread) won't keep you safe.
Battle.net Profile / Diablo Progress Profile
I know there is a language barrier and you are trying hard to write everything in English, but I really have no clue what you just said. You can keep resorting to insults because you are wrong, and I am right. Again, you can keep crying about not having an authenticator. Your original post in this thread was bashing Blizzard because you felt an exploit was on their end, and not because you're an idiot for not taking care of your account's security. What more feedback do you need from people here when they tell you to get an authenticator to reduce your problems to zero?
I'll go make out with my authenticator right now because she keeps me safe from the mean Chinamen trying to take my gear and gold.
Battle.net Profile / Diablo Progress Profile
Ok little girl, I'm done wasting my time going back and forth with you. Keep crying about your account, and get an authenticator. I did chuckle about getting swept away in a tsunami.. because Ohio is real close to the ocean with tons of major earthquakes that cause tsunamis over a thousand miles inland.
Just logged in again, and I'm still not hacked. Yay me for spending $6, boohoo for you.
Battle.net Profile / Diablo Progress Profile
I have been playing in public games all night. I'm shaking in my boots.
Battle.net Profile / Diablo Progress Profile
Battle.net Profile / Diablo Progress Profile
Few theads on BNET forums = tens of thousands of people apparently.
Battle.net Profile / Diablo Progress Profile
Good point, I agree they would store that information too.
Battle.net Profile / Diablo Progress Profile
First off, when you log in, Blizzard stores your IP address so that when you have the "authenticate every time" option unchecked, it won't bother you every time. I think once a week is the frequency it will require you to authenticate.
When you log in from another computer or someone tries to hack you from China, the authenticator kicks in immediately, regardless of the option you have checked. It senses a different IP and stops you from logging in unless you authenticate. I sometimes play at my PC, and then go to my laptop later at night. When I try to play on my laptop, I have to authenticate every single time, then authenticate again on my PC. That's the design of it for your protection.
Last year I tried to play WoW in Mexico while on a work trip, and Blizzard sensed a different IP and immediately locked my account and required me to go to bnet to authenticate and change my password for proof.
Blizzard just won't let these people waltz into your accounts without any protection, so I have no doubt that the people claiming they were hacked with an authenticator really did not have one.
Battle.net Profile / Diablo Progress Profile
The chances of hacking an account with an authenticator are very, very small. It is possible, but extremely small because the code timeframe is just a few seconds. Let's say you were browsing sites you shouldn't be browsing, and all of a sudden lost your account later that day.. What would you tell people, or tell Blizzard? You are going to say you have an authenticator of course, so that you get the sympathy or empathy you are looking for, and not being ridiculed for trying to download a bot or look at a site with known bugs/hacks.
If Blizzard came out and said that their databases have been compromised and that authenticators no longer work because of it, I'll quit D3 forever and eat crow from you all to the point of no returning to DFans. It's worth betting that the kids with compromised accounts do not have authenticators.
Battle.net Profile / Diablo Progress Profile
That's the spirit! Blame the game, not the stupid shit you do!
Battle.net Profile / Diablo Progress Profile
It's your fault for not having an authenticator fob or the FREE app for your phones if you really cared about account security. Instead of worrying about virtual keyboards, you need to worry about the sites you are visiting.
^ Look at the post above me. I bet that link in his sig phishes people too and kids think they are getting the game for free.
Battle.net Profile / Diablo Progress Profile