® Account Security & Diablo® III

Blizzard Archive
1 2 3 209 Next
Update: Additional security tips can be found here:

We'd like to take a moment to address the recent reports that suggested that® and Diablo® III may have been compromised. Historically, the release of a new game -- such as a World of Warcraft® expansion -- will result in an increase in reports of individual account compromises, and that's exactly what we're seeing now with Diablo III. We know how frustrating it can be to become the victim of account theft, and as always, we're dedicated to doing everything we can to help our players keep their accounts safe -- and we appreciate everyone who's doing their part to help protect their accounts as well. You can read about ways to help keep your account secure, along with some of the internal and external measures we have in place to help us achieve our security goals, at our account security website here:

We also wanted to reassure you that the Authenticator and Mobile Authenticator (a free app for iPhone and Android devices) continue to be some of the most effective measures we offer to help players protect themselves against account compromises, and we encourage everyone to take advantage of them. In addition, we also recently introduced a new service called SMS Protect, which allows you to use your text-enabled cell phone to unlock a locked account, recover your account name, approve a password reset, or remove a lost Authenticator. Optionally, you can set up the SMS Protect system to send you a text message whenever unusual activity is detected on your account, keeping you aware of important (and possibly unwanted) changes.

For more information on the Authenticator, visit

For more on the Mobile Authenticator, visit

For more on SMS Protect, visit

We also have other measures built into to help protect players. Occasionally, when detects unusual login activity that differs from your normal behavior -- such as logging in from an unfamiliar location -- we may prompt you for additional information (such as the answer to one of your security questions) and/or require you to perform a password reset through the website. World of Warcraft players might be familiar with this security method already, and Diablo III players may begin to encounter it as well.

As always, if you think you've been the victim of an account compromise, head to the "Help! I've Been Hacked!" tool at for assistance. SMS sounds very useful. :)
I did not get hacked, but I will still defend everyone who did. With that said, what is being done for those who lost all of their stuff?
Was a breeze to get rolling on the account as well.
What's this gonna do for the session ID spoofing victims?

Also i've been on hold for almost 1.5 hours now I spoke with someone and now I've been on hold for another 20 minutes since he said he was gonna go ask someone.
What will prevent this from happening again? To those of us hacked, not wishing to start playing again for fear of losing it all over.
Interesting to see how this is all going to unfold in the coming months.
Is this a joke? Your basically calling those that got forced logged off, and a friend watched their character log online and drop items onto a level 1 worthless.

Especially those with authenticators.
1) What is happening though?

2) Why are passwords not case sensitive?

Thank you for the reply though, it helps.
No offense but when your own logs show that nobody has logged in between me logging out for the night and logging in after work and my account is stripped then don't try and peddle any addon.

When one of your astute coworkers can tell me the difference between a pnp and an npn common emitter and common base collector on a transistor then I will be inclined to listen.
There's something else here.
still waiting for my rollback 12 hours later

Join the Conversation

Return to Forum