Phishers Going After WoW Subscribers

Within the last week, hackers have seemingly beefed up their attempts to trick Blizzard customers into installing malware and/or stealing their personal information. Below is an actual email I've personally received twice within the last seven days, leading to an unsecure "secure" website where I can supposedly confirm I'm the owner of my World of Warcraft account.

Other than the fact that I don't have an active subscription to World of Warcraft (but an active Battle.net account), and the email itself was sent to another personal email address not associated with Battle.net, the link itself is a dead giveaway, taking users to an external "us.battle.woribofwarcraft.com" website (WHOIS) which in itself pulls up a "Bad Request" error. The actual email was also sent from "Blizzard Entertainment" aka kekhrwm@cap.jqbuk.net.

Here' the email:

Greetings,

It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership.

You can confirm that you are the original owner of the account to this secure website with:


http://us.battle.woribofwarcraft.com/?ref=https://us.battle.net/account/management/index.xml&app=bam&t=1

Login to your account, In accordance following template to verify your account.

* Account name
* Account password
* First and Surname
* Secret Question and Answer
Show * Please enter the correct information

If you ignore this mail your account can and will be closed permanently.

Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.

Regards,

Account Administration Team
Blizzard Entertainment
http://www.blizzard.com/support/
World of Warcraft , Blizzard Entertainment 2010

Please retain all history if you reply to this mail.

Thankfully this email ended up in my spam box. Still, there may be many Blizzard customers who may think this is a legit request. Just pay attention to the "secure" link. If you don't have an active World of Warcraft subscription (but currently play Diablo 2, StarCraft 2), there's nothing to worry about other than the fact that someone has figured out you have a Battle.net account and my be a possible WoW target.

Create a new thread in the US News comments forum about this subject
This thread is closed for comments
38 comments
    Your comment
    Top Comments
  • Welcome to 4 years ago. Great reporting.
    21
  • These have been around for a long time. Pretty much since WoW went live lol. And yes, don't ask me how but people do fall for these.
    16
  • It asks you for your secret question, and your answer? Boy, I hope nobody actually falls for that. If they do, they probably have a hard time breathing and blinking at the same time.
    10
  • Other Comments
  • It asks you for your secret question, and your answer? Boy, I hope nobody actually falls for that. If they do, they probably have a hard time breathing and blinking at the same time.
    10
  • These have been around for a long time. Pretty much since WoW went live lol. And yes, don't ask me how but people do fall for these.
    16
  • This is not new, I don't even have a wow account and get this stuff(in my spam folder :)).
    7