a web site hacked

[deke913]

I was reading on their site that they had been hacked and they presumed that several email addresses were compromised.

Well I would like to confirm that this is true as I received a fake blizzard email today which was probably the most professional phishing attempt I've ever seen in my 5yrs of playing Wow.

All of the url was perfect and had no errors whatsoever from a normal blizz email!

I'm posting this for anyone who has an account with curse ..beware. Delete the email and go to the blizzard website thru your normal channels do not use the link in the email that says "click here".

The email stated that my password had been changed recently and to verify that it was me I needed to "click here" but everything else including the url was spot on perfect. Even the wording was an exact copy of the blizz support emails. Hope this helps someone.

*fyi I did not fall for it as I am well aware of how these things work and it had to be thru my curse email as I never download torrents or go to **** sites because I am a bible thumping christian. I have about 6 sites I go to daily and those are the only sites I go to, I have no kids and no one else uses this computer. Much love and peace

[Seerah]

wowace wasn't compromised. warcraftrealms.com was. And they've already fixed it.

[deke913]

interesting ...as ive never been to wow.com and as I stated only go to about 6 sites ....ever.

No intent to dog wowace or curse (which did however register a virus on one of their ads once but I digress) I may have simply been mistaken as I read the article on wowace.

I cant imagine how anyone would have gotten my email address since I never email anyone and am somewhat antisocial when it comes to the internet.

Im registered here and at curse and at gamespot ...no where else. very curious indeed...

[tralkar]

I had a fake email 3 days ago too it said-

When you receive this message when your World Of Warcraft Account means that there are serious security risks.
We have evidence to prove your account has been in different countries and regions, several attempts to login.
So we have to remind you to enter our web site as soon as possible http://www.************.com to account verification, otherwise, we will be lock your account.
In order to protect your interests.

[cloudwolf]

Grammar lessons not found. Please try again.
That's some seriously bad grammar and I should know I have horrid grammar.

[zero-kill]

My spam filter is pretty advanced. I wrote my own BS filter.

Originally Posted by zero-kill My spam filter is pretty advanced. I wrote my own BS filter.

Mine just takes any email containing the word "verify" and dumps it in my spam box. Surprisingly effective. Another one would be the word "wow" (I've yet to see Blizzard refer to World of Warcraft as "wow" in any official correspondence).

I do find myself a bit curious as to how many failed attempts this site finds in the iptables logs, though.

**EDIT** Nevermind, this place is hosted by GoDaddy. /shrug

**EDIT #2** ...and someone owns wowinterface.org. Also, wowinterface.com, wowinterface.net, and wowinterface.org (again...wtf???) are registered under three different people.

Fear not, though...wowinterface.edu is available.

If someone wants to start the School of Addons, I will administrate your site for a "modest" fee.

[Sythalin]

Same with me. I got two "password changed" with no link and a "someone hacked your account, supply info to verify it's yours" with the "click here".

Red Flag 1 - asked for a password
Red Flag 2 - asked for CD key
Red Flag 3 - mouseover link showed the address with a "1" replacing a letter

Just be observant guys and look for one or all of these things and you'll be fine.

[Amethyst]

Yup, I got a, "You have changed your password" email and it was almost identical to the real ones .... or so I thought, the url that they gave at the bottom had one character different to the real wow website.

Sneaky.