WoW Petopia Community

So I got this email from blizzard (specifically, <noreply@blizzard.com>). It was saying my account was "under investigation" because they think I have sold or traded my account.

I have no idea why they would think that! Any ideas what flagged me for something like that? I'm just hoping it's sorted out soon and I don't get blamed for anything.

Wow that is wierd. You should call the customer service number and get this straightened out.

HALT HALT HALT HALT HALT!!!!

It's a scam! This has been an identified phishing and account stealing scam by Blizzard for a very long time now... DO NOT GO TO THE LINKED WEBSITE!!!

Double check the email address again, very closely.. you might notice something.

Helio wrote:HALT HALT HALT HALT HALT!!!!

It's a scam! This has been an identified phishing and account stealing scam by Blizzard for a very long time now... DO NOT GO TO THE LINKED WEBSITE!!!

Double check the email address again, very closely.. you might notice something.

Ayupp. From Blizzards own site:

So, if the sending address of an email is showing as @blizzard.com or @battle.net, then the email is definitely legitimate?



Actually, no. Even if you receive an email from an @blizzard.com or an @battle.net address, it's still important to remain cautious. This is because it's possible to change how a sending address appears in the "From" field of an email. The process is known as "spoofing" and may cause a phishing email to initially look like it's been sent by Blizzard Entertainment. To determine the actual sending address of an email, you will need to check the email's header information.


How do I access email header information?



Email headers contain information about the sender (who sent the email message), the path the email took to reach your inbox, and things that may have happened to the email before arriving. This information is very important and can be used to determine whether or not an email is malicious.

Most email providers and applications will allow you to view an email's header information with just a few mouse clicks. We've included instructions regarding how to access email headers using some of the more common email providers and applications below.



For Gmail:

* Open the email message and click the "down" arrow next to the "Reply" button. Select "Show Original."



For Yahoo:

* Open the email message and then click on the "Full Headers" option in the lower right-hand corner.



For AOL:

* Open the email message and click "Details" under the "To" field.



For Windows Live:

* Right-click the email message and select "View Source."



For Hotmail and MSN:

* Right-click the email message and select "View Message Source."



For more information on how to view the header, please review the help documentation provided by the e-mail provider or the software package. Additional details regarding how to locate header information using some of the more common applications and web-based e-mail providers can be found here.

Yeah, first thing I thought was it's probably a phishing scam and you should follow the above advice, Ryno. If you are still unsure, call customer support.

But I'm 100% certain it's a scam designed to get you to go to a website which will install a keylogger to your PC which will allow hackers to steal your account.

Well, of course, it was late at night, and the email is deleted since then, but...

The address linked was a battle.net site. Can scammers use a link to a battle.net site to steal my info?

I like to think I'm smart enough to not click a link to some really odd site. But the link (I googled it, and my internet security said it was safe) just took me to a battle.net page that was about password recovery or something.

Helio wrote:Double check the email address again, very closely..

I checked it as best I could, it was like I typed it in the first post. Of course now I can't do that thingy to see if it really was Blizzard or not in the post above, but oh well... I did open a GM ticket last night, hoping to get an answer before bed. But I checked in the morning and it still wasn't answered.

Why'd you delete it? o_O

Chrizesu wrote:Why'd you delete it? o_O

It was really early in the morning, and I emptied spam folder out of habit.

Note, I have gotton other emails from Blizzard (usually something about my WoW time about to expire) in that folder before.

And, after browsing the WoW tech forum, it looks like it might have been a scam. Just kinda odd they linked to a battle.net site, or if they had their site there it was ridiculously sneaky.

My security program says nothing bad is on my computer, so in the end I think I'm good.

change your password as fast as you can just to be safe.

Ryno wrote:The address linked was a battle.net site. Can scammers use a link to a battle.net site to steal my info?

Wrong. The address you saw was a battle.net site. It's possible to make perfect mirrors of websites and the average, casual user wouldn't be the wiser until their account is closed. Also, Blizz doesn't ask you to click on links from their emails. They ask you to go to the battle.net login page and log onto your account.

Best course of action if you get mails like that is to call. Always verify that the mail is from Blizz. The nice people on the phone can then tell you what's what with your account and you can take it from there.

For now, scan your system (since opening a mail makes it possible for scripts to run on your comp, especially if there's an embedded picture in the mail - a logo or some such) with WoW open and gibberish in all three fields (some keyloggers only run when you have WoW open). Once your system is clean, go change your password.

Zangor wrote:i used to get the letters to and i just shifted my battle.net account over to a new Email that exists only for blizzard stuff

This is what my husband and I have done too. Our battle.net emails are only for Blizzard. That way, we know that any emails we get on our other accounts are scams.

If there was something wrong with your account I don't think you would be able to logg into it. I always however my mouse over links to see where they really go to. You can get a link claiming to be blizz net or whatever but the real link is something different and bad.

AdamSavage wrote:[...]You can get a link claiming to be blizz net or whatever [...]

The best fake address I got was blizard-safe-battle-net-login.cn .

If you fall for that, you DESERVE what they've got coming for ya.

No no, it was a battle.net site, or so it looked like it. Guess it was a mirror site.

I think I logged in there, just to see if I could click something to look at why this happened, but I'm not sure if it was at the linked spot or not.

I just logged into my account, no problems.

So should I change my email still? And password?

WHERE ARE YOU ADMIRAL ACKBAR WHEN I NEED YOU?!?!?

Ryno wrote:So should I change my email still? And password?

Oh god yes. You logged in through the link? Doubly so! You're not certain this site was a true battle.net site, and you're not certain the mail was from Blizz.

Edit: Change your password. Changing the email is not necessary, it's more a matter of convenience. If you like the idea of knowing that the email you use for Blizzard doesn't get used for anything else, so that you won't have these nagging doubts, then do it.

Do you have an authenticator? If not, get one. It drastically reduces the chance that hackers can take over your account, even if they do get a hold of your information.

Another thing that people seem to forget when talking about hacking and keyloggers: As a WoW player, you're a target for hackers because, apparently, people are still dumb enough to make gold selling a lucrative business. (Seriously kids. Don't buy gold, you'll go blind. Or something.) What this means is that your computer becomes a target for keyloggers that log everything you do. Netbanking? Logged. Online purchases with a credit card? Logged. Paypal? Logged. See where I'm going with this?

Using firefox with NoScript and AdBlock Plus makes your surfing more safe, but for your own sake, be safe while surfing. Stay away from gold selling websites (seriously, you'll go blind.) and anything that seems questionable. Don't click on links unless you know the source. The internet's out to get you, no word of a lie.

I know this is no laughing matter but WTF cat made me lol in the library thats a BAD thing <.< LOL

Nevar wrote:I know this is no laughing matter but WTF cat made me lol in the library thats a BAD thing <.< LOL

I'm in a library too. >_> I few times I've had to muffle my giggles.

Cat?

The picture he posted lol it cracked me up look at the first post