Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




BDFL
49529 posts

Uber Geek
+1 received by user: 4376

Administrator
Trusted
Geekzone
Subscriber

Topic # 107373 10-Aug-2012 12:11 Send private message

Just received and posted information about Blizzard Entertainment leaked data:


The unauthorized access included email addresses associated with Battle.net accounts in all regions, outside of China. Additional information from accounts associated with the North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) was also accessed.

The company says the information includes cryptographically scrambled versions of passwords but not the actual passwords, the answer to a personal security question, and information relating to Mobile and Dial-In Authenticators. 

Blizzard says that even with all this information hackers would not be able to gain access to Battle.net accounts.

Based on Blizzard’s investigation to this point, credit card and other customer payment data does NOT appear to have been accessed or affected. As a precaution, however, Blizzard encourages players to change their Battle.net password and any similar passwords used for other purposes.






Create new topic
392 posts

Ultimate Geek
+1 received by user: 3


  Reply # 670887 11-Aug-2012 08:28 Send private message

My account just got locked out for "hacking", seems to much of a coincidence for these two events to be unrelated.

2462 posts

Uber Geek
+1 received by user: 223

Trusted
Subscriber

  Reply # 670955 11-Aug-2012 11:32 Send private message

Good thing I have one of those handy tokens (that even my bank won't offer me) I guess. Best $6 + $20 shipping ever spent.

7682 posts

Uber Geek
+1 received by user: 266

Trusted
Subscriber

  Reply # 671189 11-Aug-2012 21:26 Send private message

Embarrassing for Blizzard but they are such a high profile target anyone not using their two factor authentication (battle.net authenticator) is crazy.

It's even available as a free app for android and iphone., best $0 I ever spent.

https://play.google.com/store/apps/details?id=com.blizzard.bma

http://itunes.apple.com/nz/app/battle.net-mobile-authenticator/id306862897?mt=8



BDFL
49529 posts

Uber Geek
+1 received by user: 4376

Administrator
Trusted
Geekzone
Subscriber

  Reply # 671193 11-Aug-2012 21:36 Send private message

Kyanar: Good thing I have one of those handy tokens (that even my bank won't offer me) I guess. Best $6 + $20 shipping ever spent.


They had access to the token and the recovery information - whoever got that can get in anyway, unless you change your password now.


Ragnor: It's even available as a free app for android and iphone., best $0 I ever spent. 


And Windows Phone as well. 




710 posts

Ultimate Geek


  Reply # 671731 13-Aug-2012 11:18 Send private message

Changed PW.

Good timing hackers (Not!) just when expansion due out next month.




Worst Response To A Crisis:
From a readers' Q and A column in TV GUIDE: "If we get involved in a nuclear war, would the electromagnetic pulses from exploding bombs damage my videotapes?"



2462 posts

Uber Geek
+1 received by user: 223

Trusted
Subscriber

  Reply # 671869 13-Aug-2012 16:02 Send private message

freitasm:
Kyanar: Good thing I have one of those handy tokens (that even my bank won't offer me) I guess. Best $6 + $20 shipping ever spent.


They had access to the token and the recovery information - whoever got that can get in anyway, unless you change your password now.


Ragnor: It's even available as a free app for android and iphone., best $0 I ever spent. 


And Windows Phone as well. 


Only the software tokens.  The RNG seed for the physical authenticator (which is a Digipass Go 6 device) is still secure as only the HSM has that info.

Now with the recovery information, they could theoretically call up and get Blizzard to reset my password and/or disconnect my hardware authenticator.  Since we can't actually change our security question answers though, I don't see changing my password making a whit of difference.  One would hope though that Blizzard has instructed their CSRs to require physical identification prior to actioning any password reset/authenticator lockout type calls.

Create new topic




Twitter »
Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:




News »

Trending now »
Hot discussions in our forums right now:

Does NZ need better gun laws?
Created by mattwnz, last reply by heylinb4nz on 2-Sep-2014 11:41 (96 replies)
Pages... 5 6 7


Warning: Rage Ahead - Campbell Live and childhood poverty
Created by kawaii, last reply by Dingbatt on 2-Sep-2014 11:47 (62 replies)
Pages... 3 4 5


Judith Collins: I am resigning
Created by Presso, last reply by gzt on 2-Sep-2014 11:42 (109 replies)
Pages... 6 7 8


Cirque du Soleil Cellphone Hijack
Created by myopinion, last reply by PhantomNVD on 1-Sep-2014 18:01 (21 replies)
Pages... 2


VideoEZY OnDemand
Created by Andib, last reply by nigelj on 2-Sep-2014 11:39 (41 replies)
Pages... 2 3


Orcon Global Mode launched
Created by freitasm, last reply by shk292 on 1-Sep-2014 11:32 (132 replies)
Pages... 7 8 9


Lightbox press event release
Created by freitasm, last reply by IcI on 30-Aug-2014 17:54 (562 replies)
Pages... 36 37 38


Lightbox quality comments
Created by ronw, last reply by freitasm on 2-Sep-2014 09:15 (101 replies)
Pages... 5 6 7



Geekzone Live »
Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.