Sign in with
Sign up | Sign in

Phishers Going After WoW Subscribers

By - Source: Tom's Hardware US | B 38 comments

There's an email scam out in the wild that's targeting Blizzard customers... namely World of Warcraft subscribers.

Within the last week, hackers have seemingly beefed up their attempts to trick Blizzard customers into installing malware and/or stealing their personal information. Below is an actual email I've personally received twice within the last seven days, leading to an unsecure "secure" website where I can supposedly confirm I'm the owner of my World of Warcraft account.

Other than the fact that I don't have an active subscription to World of Warcraft (but an active Battle.net account), and the email itself was sent to another personal email address not associated with Battle.net, the link itself is a dead giveaway, taking users to an external "us.battle.woribofwarcraft.com" website (WHOIS) which in itself pulls up a "Bad Request" error. The actual email was also sent from "Blizzard Entertainment" aka kekhrwm@cap.jqbuk.net.

Here' the email:

Greetings,

It has come to our attention that you are trying to sell your personal World of Warcraft account(s). As you may not be aware of, this conflicts with the EULA and Terms of Agreement. If this proves to be true, your account can and will be disabled. It will be ongoing for further investigation by Blizzard Entertainment's employees. If you wish to not get your account suspended you should immediately verify your account ownership.

You can confirm that you are the original owner of the account to this secure website with:


http://us.battle.woribofwarcraft.com/?ref=https://us.battle.net/account/management/index.xml&app=bam&t=1

Login to your account, In accordance following template to verify your account.

* Account name
* Account password
* First and Surname
* Secret Question and Answer
Show * Please enter the correct information

If you ignore this mail your account can and will be closed permanently.

Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.

Regards,

Account Administration Team
Blizzard Entertainment
http://www.blizzard.com/support/
World of Warcraft , Blizzard Entertainment 2010

Please retain all history if you reply to this mail.

Thankfully this email ended up in my spam box. Still, there may be many Blizzard customers who may think this is a legit request. Just pay attention to the "secure" link. If you don't have an active World of Warcraft subscription (but currently play Diablo 2, StarCraft 2), there's nothing to worry about other than the fact that someone has figured out you have a Battle.net account and my be a possible WoW target.

Display 38 Comments.
This thread is closed for comments
Top Comments
  • 21 Hide
    jkflipflop98 , June 13, 2011 5:54 PM
    Welcome to 4 years ago. Great reporting.
  • 16 Hide
    kingnoobe , June 13, 2011 5:48 PM
    These have been around for a long time. Pretty much since WoW went live lol. And yes, don't ask me how but people do fall for these.
  • 10 Hide
    macewrox , June 13, 2011 5:37 PM
    It asks you for your secret question, and your answer? Boy, I hope nobody actually falls for that. If they do, they probably have a hard time breathing and blinking at the same time.
Other Comments
  • 10 Hide
    macewrox , June 13, 2011 5:37 PM
    It asks you for your secret question, and your answer? Boy, I hope nobody actually falls for that. If they do, they probably have a hard time breathing and blinking at the same time.
  • 16 Hide
    kingnoobe , June 13, 2011 5:48 PM
    These have been around for a long time. Pretty much since WoW went live lol. And yes, don't ask me how but people do fall for these.
  • 7 Hide
    nukemaster , June 13, 2011 5:48 PM
    This is not new, I don't even have a wow account and get this stuff(in my spam folder :) ).
  • 7 Hide
    grieve , June 13, 2011 5:49 PM
    I first got this email about 6 months ago...

    I am in the same boat as you, i dont have an active sub and the email account is not the correct one.
    I bet this scam has nailed a few suckers.
  • 6 Hide
    davewolfgang , June 13, 2011 5:49 PM
    I've been getting these for years! They aren't just "going after" WoW subscribers recently.

    That one actually had all the words spelled correctly, and proper English grammar. Some of them are actually hilarious! And they all end up in my Spam Folder, but I do forward them to Blizz (their Hack/Phishing email), so they can also go after them.
  • 21 Hide
    jkflipflop98 , June 13, 2011 5:54 PM
    Welcome to 4 years ago. Great reporting.
  • 6 Hide
    thebigt42 , June 13, 2011 6:01 PM
    I am alway amazed and mystified on the stupidity of people using computers. We had a actual police officer that was phished not once but twice inside 6 months!

    I need to flag down a passing flying saucer...I need to get off this planet very SOON!
  • 6 Hide
    Netherscourge , June 13, 2011 6:20 PM
    At this point, anyone who clicks a link in ANY e-mail is playing with fire.

    If you go ahead, click the link and then start punching in User/Password information, you're a stone-cold moron.
  • 4 Hide
    Anonymous , June 13, 2011 6:32 PM
    When I played I used to get them all of the time, so i made a new email address for only WoW and never got one after that

    ezpk
  • 0 Hide
    eyemaster , June 13, 2011 6:34 PM
    of the 30+ junk mail I get each day, 30% are blizzard or WoW fishing spam. This isn't new.
  • 3 Hide
    AMD_pitbull , June 13, 2011 6:42 PM
    Gotta agree with the other folks on this one: You reply, you should be checked to make sure your IQ is at least double digits, and not harmful to society. This one is one of the better ones, with only the website mis-spelled, but, if you're falling for things like this, you probably also think some South African prince wants to give you his fortune, and gladly gave up your credit card info to obtain it. Long story short, ANY email asking for account info is checking to see how many people fail at life. Please tell your friends that need helmets and water wings, and pray that it's not too late.
  • 1 Hide
    carnage9270 , June 13, 2011 6:52 PM
    The Phishers get your email address from sites you register for. Whether it's guild registration on an unsecure site or applying for a membership for posting on a WoW-related site. What it really comes down to is you used your WoW email address to register somewhere and the phishers managed to get that information. This is why it is recommended to never use your login email to register for things. Keep those logins separate from everything. Also wise to make sure you don't get hit with malware (keyloggers etc). But you won't be receiving spam from a keylogger, you'll just log in and find your account compromised.

    It all comes down to you the user. If you don't understand internet security, you're doing yourself a serious disservice. Amazes me that this is a Tom's article though. This stuff has been happening since the release of WoW 6 years ago. Guess the Tom's bloggers need a lesson in internet security as well.
  • 6 Hide
    tommysch , June 13, 2011 7:09 PM
    I think this headline is about 7 years late...
  • 1 Hide
    illegalmonkey , June 13, 2011 7:10 PM
    this is news worthy? for real? this has been going on for years Tom, YEARS! i havent played Wow in about 2 years and i still get one or two of these A DAY. it's retarded. they always show as coming from noreply@blizzard.com so i can't straight up block them for fear of inadvertently blocking a real Blizzard email. I just make sure to log into my Battle.net account now and then to make sure it still belongs to me.
  • 1 Hide
    dgingeri , June 13, 2011 7:13 PM
    This is new somehow?? I've been getting stuff like this on my hotmail account since this game opened. Funny thing is that my hotmail account isn't attached to my battle.net account. So, for that reason alone I identify these as spam/phishing immediately. (I even once logged into one of these phishing sites with the hotmail account and a bogus password just to throw them off. I then emailed that info to Blizzard to see if they could track where the login would come from and catch the people doing it, but I never heard anything back from Blizzard about it.)
  • 0 Hide
    heerobya , June 13, 2011 7:14 PM
    Never click anything in an email.
    Navigate your browser to battle.net and log in, never use a link!

    Also make sure you get your addons from a secure site that verifies them like curse.
  • 2 Hide
    irtehyar , June 13, 2011 7:24 PM
    Maybe you guys can repost this article every couple of months, save some time. Or wait, is this from 2005?
  • 0 Hide
    gnookergi , June 13, 2011 7:31 PM
    Lol, I've been getting these e-mails for well over a year. Nothing new.
  • 2 Hide
    web11 , June 13, 2011 8:00 PM
    If you fall for this kind of stuff then you deserve it.
  • 0 Hide
    kastraelie , June 13, 2011 8:22 PM
    This email has been around in many forms since Burning Crusade, maybe even a bit longer. What's sad is that it can look good enough to fool people and some of my idiot friends have fallen for it.
Display more comments