Hacked account advice

[Gadzooks]

Update......

As of this message, all but one toon has been restored. (this particular toon was on a different realm and had not been played in quite some time) All of the guild's bank items/gold/toons gear/toons gold/bank items, ect.... have been sent back to each via in-game e-mail.

It's difficult to actually determine if anything was left out, but I'd say that Blizzard has done a great job at fixing this issue and returning the items that were stolen.

Now............ to try and figure out what actually caused this in the first place.

I do know that I do not frequent ANY sites that could have captured any info that may have compromised my WoW account. As mentioned in my initial post... I am a strong advocate of security software and keeping current A/V software up to date as well as firewall software on my system. That's what makes this difficult to solve. Some have said my e-mail account had been compromised, others believe there may have been a keylogger installed on my system, none of which I want to believe, but one thing is for sure, my WoW account was hacked.

I don't have the answers yet, but I'm going to dig into it as far as I can to try figure what went wrong. If I do find what exactly happened or probably happened I'll post it back here.

Thanks to all who responded/contributed to this thread, hopefully it'll not happen to anyone else.



Best regards

Ñightsham

One tip: the GMs on the WoW customer service forums have mentioned several times they are on the lookout for a keylogger that only runs when the WoW Loader.exe is running, and it's a nasty one. Start up Loader, and run your scans. They are asking for people to let them know when they find it.

You could have also gotten on via Flash or another vulnerability. They are *everywhere* these days, and not just for WoW, they're out there for other games, and more seriously, for bank accounts and PayPal accounts.

You mentioned something in your original post about Battlenet - I hope you don't think it's the cause. Battlenet is not causing people to be hacked, but the douchebags ARE using it to lock down accounts when they steal them. But, there is not one reported case of an exploit happening because of Battlenet. BNet may in fact be a huge boon to players, because it's almost impossible to have an account detached, unless you can prove you own the account.

The Authenticator is THE number one solution to the problem, if you don't use it, you're just playing with fire. If you can't afford it, put it at the top of your xmas list.

I use a Mac, and I still use an Authenticator, the iPhone version. The Flash vulnerability showed that they can get to Macs, and it's only a matter of time before they figure it out and start stealing more Mac based accounts. There's too much money involved to ignore all the Macs. I suspect they've been trying things in the ads served to the forum over at WoW, because every week or so, going there will crash my Mac (running Firefox) when it tries to load the ads. It will clear up eventually after a day or so. I *never* crash in Firefox, and I go to a lot of sites daily, even more weekly. The Wow forums are the only place I have *ever* had Firefox crash. (Safari crashes, but it's a POS browser)