Phishers Going After WoW Subscribers
There's an email scam out in the wild that's targeting Blizzard customers... namely World of Warcraft subscribers.
Within the last week, hackers have seemingly beefed up their attempts to trick Blizzard customers into installing malware and/or stealing their personal information. Below is an actual email I've personally received twice within the last seven days, leading to an unsecure "secure" website where I can supposedly confirm I'm the owner of my World of Warcraft account.
Other than the fact that I don't have an active subscription to World of Warcraft (but an active Battle.net account), and the email itself was sent to another personal email address not associated with Battle.net, the link itself is a dead giveaway, taking users to an external "us.battle.woribofwarcraft.com" website (WHOIS) which in itself pulls up a "Bad Request" error. The actual email was also sent from "Blizzard Entertainment" aka kekhrwm@cap.jqbuk.net.
Here' the email:
Greetings,
It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership.
You can confirm that you are the original owner of the account to this secure website with:
http://us.battle.woribofwarcraft.com/?ref=https://us.battle.net/account/management/index.xml&app=bam&t=1
Login to your account, In accordance following template to verify your account.
* Account name
* Account password
* First and Surname
* Secret Question and Answer
Show * Please enter the correct information
If you ignore this mail your account can and will be closed permanently.
Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.
Regards,
Account Administration Team
Blizzard Entertainment
http://www.blizzard.com/support/
World of Warcraft , Blizzard Entertainment 2010
Please retain all history if you reply to this mail.
Thankfully this email ended up in my spam box. Still, there may be many Blizzard customers who may think this is a legit request. Just pay attention to the "secure" link. If you don't have an active World of Warcraft subscription (but currently play Diablo 2, StarCraft 2), there's nothing to worry about other than the fact that someone has figured out you have a Battle.net account and my be a possible WoW target.
- Apple Turns Back on Windows XP for iCloud
- Developer Bringing Windows 8 UI to Windows 7
- Microsoft Loses $290 Million in Patent Battle Fail
- Deals for June 10: Dell 30% Off LCD & Multitouch
- Boring PCs Slow PC Industry, Says Gartner
- AMD: Llano Is An Intel Shocker
- DNF Launches Overseas with Mixed Reviews
- id Software Delays RAGE
- Google's Doodle Records, Shares Your Music
- Wizardry Reboot Gets MMORPG in 2012 Too
- Deals June 13: 51'' Samsung 3D 1080p Plasma HDTV + Free $200 eGift Card for $799.99
- Lion Boasts Chrome OS-like Browser Mode
- Bill Gates Gladly Admits That He's a Geek, And His Kids Are Still Banned From Apple Products
- Samsung's Stunning Flexible AMOLED for Q2 2012
- BioWare Repies to Star Wars: The Old Republic ''WoW Clone'' Comments
- NEC Says Its Memory Saves Info Without Power
- Free to Play Games Now Available on Steam
- Newegg Rejects Best Buy's Copyright Infringement Claim
It asks you for your secret question, and your answer? Boy, I hope nobody actually falls for that. If they do, they probably have a hard time breathing and blinking at the same time.
These have been around for a long time. Pretty much since WoW went live lol. And yes, don't ask me how but people do fall for these.
This is not new, I don't even have a wow account and get this stuff(in my spam folder
).
I first got this email about 6 months ago...
I am in the same boat as you, i dont have an active sub and the email account is not the correct one.
I bet this scam has nailed a few suckers.
I've been getting these for years! They aren't just "going after" WoW subscribers recently.
That one actually had all the words spelled correctly, and proper English grammar. Some of them are actually hilarious! And they all end up in my Spam Folder, but I do forward them to Blizz (their Hack/Phishing email), so they can also go after them.
Welcome to 4 years ago. Great reporting.
I am alway amazed and mystified on the stupidity of people using computers. We had a actual police officer that was phished not once but twice inside 6 months!
I need to flag down a passing flying saucer...I need to get off this planet very SOON!
At this point, anyone who clicks a link in ANY e-mail is playing with fire.
If you go ahead, click the link and then start punching in User/Password information, you're a stone-cold moron.
When I played I used to get them all of the time, so i made a new email address for only WoW and never got one after that
ezpk
of the 30+ junk mail I get each day, 30% are blizzard or WoW fishing spam. This isn't new.
Gotta agree with the other folks on this one: You reply, you should be checked to make sure your IQ is at least double digits, and not harmful to society. This one is one of the better ones, with only the website mis-spelled, but, if you're falling for things like this, you probably also think some South African prince wants to give you his fortune, and gladly gave up your credit card info to obtain it. Long story short, ANY email asking for account info is checking to see how many people fail at life. Please tell your friends that need helmets and water wings, and pray that it's not too late.
The Phishers get your email address from sites you register for. Whether it's guild registration on an unsecure site or applying for a membership for posting on a WoW-related site. What it really comes down to is you used your WoW email address to register somewhere and the phishers managed to get that information. This is why it is recommended to never use your login email to register for things. Keep those logins separate from everything. Also wise to make sure you don't get hit with malware (keyloggers etc). But you won't be receiving spam from a keylogger, you'll just log in and find your account compromised.
It all comes down to you the user. If you don't understand internet security, you're doing yourself a serious disservice. Amazes me that this is a Tom's article though. This stuff has been happening since the release of WoW 6 years ago. Guess the Tom's bloggers need a lesson in internet security as well.
I think this headline is about 7 years late...
this is news worthy? for real? this has been going on for years Tom, YEARS! i havent played Wow in about 2 years and i still get one or two of these A DAY. it's retarded. they always show as coming from noreply@blizzard.com so i can't straight up block them for fear of inadvertently blocking a real Blizzard email. I just make sure to log into my Battle.net account now and then to make sure it still belongs to me.
This is new somehow?? I've been getting stuff like this on my hotmail account since this game opened. Funny thing is that my hotmail account isn't attached to my battle.net account. So, for that reason alone I identify these as spam/phishing immediately. (I even once logged into one of these phishing sites with the hotmail account and a bogus password just to throw them off. I then emailed that info to Blizzard to see if they could track where the login would come from and catch the people doing it, but I never heard anything back from Blizzard about it.)
Never click anything in an email.
Navigate your browser to battle.net and log in, never use a link!
Also make sure you get your addons from a secure site that verifies them like curse.
Maybe you guys can repost this article every couple of months, save some time. Or wait, is this from 2005?
Lol, I've been getting these e-mails for well over a year. Nothing new.
If you fall for this kind of stuff then you deserve it.
This email has been around in many forms since Burning Crusade, maybe even a bit longer. What's sad is that it can look good enough to fool people and some of my idiot friends have fallen for it.
In other news, users have been leaving MySpace in favor of Facebook...
Come on - let's not report on something that is 3+ years old unless there is some new development in it.
With the mass amount of WoW players these particular emails are sent out to everyone because the chances they land in a WoW players inbox is pretty high. I too have recieved and have been recieving similar emails for years and have never played WoW more than 2 hours of a trial.
Kev, you can't post an article about your recent experience without first realizing it's a FOUR-YEAR OLD NEWS!!!!!!!!!
Thanks for the forward, grandma!
I have been receiving these for almost two years now
seriously your just finding this out now........I have been getting those emails for almost 5 years now on a daily basis lol. And I havent even played in like 3 1/2 years. This isn't news, it was news like 4 to 5 years ago lol.
2009 called. They want their news back.
I get at least 1 of these a day now, nothing really new. If there is a true problem with my account I'll deal with it when I'm unable to log into it anymore until then I don't read a single email related to wow that comes into my email which is linked to my battlenet account. Surprised anyone would fall for this now seeing their not new anymore.
I am surprised it took this long for phishers to catch up, or am I reading news from 4 years ago?
How did this make the news section? This has been going on for the past 2 years pretty steadily. I get one or two of these emails every week (to my spam email address that is not associated with my wow account). Here's the trick, use Gmail and make sure to use the plus sign feature. Example, blizzard things my email is johnsmith+blizwow@gmail.com when it's really just johnsmith@gmail.com but I know if the email is really from blizzard it will be sent to johnsmith+blizwow@gmail.com and if its not then it's a phisher.
johnsmith@gmail.com is not really my email. Obviously it's just one I made up as an example.