Important Security Update - Aug. 9, 2012

Community Manager
Please click here to read an important security update about your Battle.net account.
Edited by Nethaera on 8/9/2012 3:37 PM PDT
Reply Quote
90 Human Warlock
12950
Whelp, that's terrifying.

/paranoid D:
Reply Quote
MVP - Customer Support
90 Tauren Druid
12960
Thanks for letting us know.

There's a lot more details here:
http://us.battle.net/support/en/article/important-security-update-faq
________________________________________________
Customer Support Forum MVP
HDL - http://hdl-the-guild.com/~nodrama/
E-mail - neppyman.no@spam.gmail.com
"I don't think that's how 'Moon Tiara Magic' works." -- Sarah Jones
"Maybe they been doin' it wrong." -- The Commander
Reply Quote
86 Human Priest
6905
Jesus Christ, how horrifying.

/changes password.
Reply Quote
90 Tauren Paladin
10110
Eh, it was time to change my password anyway.
Reply Quote
90 Night Elf Druid
18360
08/09/2012 03:41 PMPosted by Moosader
Eh, it was time to change my password anyway.

This.. this is probably true for me also
Reply Quote
90 Night Elf Warrior
5825
I just changed my email and password after reading this. Now how do I change my secret question/answer?

(italics reflect edits.)
Edited by Güitarist on 8/9/2012 4:06 PM PDT
Reply Quote
90 Night Elf Druid
13385
Thank you very much for the heads up, I have been requesting something to change my secret question, I guess this will do the trick!
Reply Quote
86 Blood Elf Death Knight
12455
Thanks for the update. :)
Reply Quote
90 Night Elf Priest
10915
"Oh noes, our email addresses were stolen and useless encrypted hashes...What will we ever do?" - It could be SOOOOOOO much worse. At least they're not hiding from us for weeks and claiming nothing's wrong at all.
Reply Quote
MVP - Customer Support
90 Tauren Druid
12960
08/09/2012 03:42 PMPosted by Güitarist
Now how do I change my secret question/answer?


You can't... yet. They're working (very quickly, I'd imagine) on a way of doing it. Read the FAQ I linked for more details.
________________________________________________
Customer Support Forum MVP
HDL - http://hdl-the-guild.com/~nodrama/
E-mail - neppyman.no@spam.gmail.com
"Real men (and tauren) wear kilts" -- Pahanda
Reply Quote
85 Human Rogue
14390
Very appreciative of the update, thank you for letting the community know :)
Reply Quote
90 Night Elf Priest
16240
Nethaera - That links to http://sea.blizzard.com/securityupdate
Which is a broken page - Oceanic people can not read it - please fix this
Edited by Ihearvoices on 8/9/2012 3:46 PM PDT
Reply Quote
90 Human Hunter
8595
I just changed my password after reading this. Now how do I change my secret question/answer?

You can't yet. There was no system in place to do this previously (It was not allowed at all, except in the most extreme cases, and even that required calling Account Administration.)
They are building in a way, but it is not currently available.

Nethaera - That links to http://sea.blizzard.com/securityupdate
Which is a broken page - Oceanic people can not read it - please fix this

Try going directly to the US version (rather than the www version.) Hopefully it doesn't redirect.
http://us.blizzard.com/en-us/securityupdate.html
http://us.battle.net/support/en/article/important-security-update-faq#q-12

Edit: The SEA region site has been updated to include the relevant information. Neth's link should now work for people in the SEA region.
Edited by Sakana on 8/9/2012 4:51 PM PDT
Reply Quote
90 Undead Rogue
13715
My question is, Why is this information still on a server that can be remote accessed? Why is this information not on a secured server with no external access?

Its hilarious that China didn't get targeted as more than likely the people who attacked your server software were from China, but still the point still stands, why is this information even available to be remote accessed in any way shape or form.

I can understand e-mail and passwords as they have to be open for login, but everything else shouldn't be able to be accessed. I can only hope and pray that your company didn't lose access to credit-card information as well, as that along with personal information, billing information and others basically means 3+ million North American users just got their identities stolen.

Be honest and forth coming in a expendiant manner if that's the case Blizzard.
Reply Quote
90 Night Elf Druid
13385
08/09/2012 03:42 PMPosted by Güitarist
I just changed my password after reading this. Now how do I change my secret question/answer?


You don't, at least not on the web site, if you read the post by Mr. Morhaime it states "In the coming days, we'll be prompting players on North American servers to change their secret questions and answers through an automated process"

So give it a few days and I am sure we might either see something on the log in screen or a email to your address asking to log into the web site.... to be honest I don't know how they are going to ask.
Reply Quote
86 Gnome Warlock
19150
CS forum trolls no longer get to say Blizzard's security is impeccable.

I will breathe easier once they confirm no financial or personal data was taken

At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised.
Reply Quote
90 Draenei Death Knight
12775
08/09/2012 03:42 PMPosted by Güitarist
I just changed my password after reading this. Now how do I change my secret question/answer?


You can't yet. According to the post, they will send a region-wide notification with the process on how to update it.
Reply Quote
90 Draenei Paladin
9070
Some hacker decided phishing wasn't enough.

/changepassword

Ruin my day of nothing to do....*grumble*

Is everyone okay? Does anyone need a hug?
Reply Quote
86 Dwarf Hunter
3155
Well for those that have accused Blizzard of staying silent and/or lying about security breaches, now you know - they don't. They informed us as soon as was practical to do so.
Reply Quote

Please report any Code of Conduct violations, including:

Threats of violence. We take these seriously and will alert the proper authorities.

Posts containing personal information about other players. This includes physical addresses, e-mail addresses, phone numbers, and inappropriate photos and/or videos.

Harassing or discriminatory language. This will not be tolerated.

Forums Code of Conduct

Report Post # written by

Reason
Explain (256 characters max)
Submit Cancel

Reported!

[Close]