Patch 5.4 patch notes
Virtual Realms feature revealed
The Proving Grounds are coming
The latest patch 5.4 newsBlizzard's new Warden, and our privacy
by Mike Schramm 
Nov 15th 2007 at 3:28PM
Tech community Slashdot is going mad over a little present Blizzard apparently included with patch 2.3 this week: a brand new version of Warden (the program Blizzard uses to check for hacks, bots, and keyloggers) that they say effectively gives Blizzard total control over our computers. The technical stuff is a little hard to understand, but apparently Warden is what's called a "polymorphic program"-- that means that it actually hides from anyone looking at it exactly what it's doing and which files it's changing with a random code. Obviously, Blizzard wants to keep the program's activities secret from attackers-- if a hacker knows what Warden does, then he can more easily avoid it.In previous versions of Warden, this randomization was "easy to predict," but Slashdot is saying that the new version effectively hides from even the user exactly what Blizzard is doing on your computer. Now, there is no clear reason why Blizzard would want to do anything bad with your computer-- odds are that this new software is the most effective version they've yet developed at making sure you can play the game without fear of hacks or keyloggers, and that's all they want to do with it.
But you should know that, according to "Captain Kirk," who wrote this article, Blizzard effectively has access to anything and everything on your computer, and can now edit or retrieve information at will without even you knowing what has happened. There's no reason not to trust Blizzard-- they're a high profile company with a long reputation of developing great software. But if a wayward employee at Blizzard wanted to steal your private information from your computer, or install a virus or malware on your PC, we're being told that this program will let them do it without your knowledge. You agreed to this-- it's in Section 14 of the Terms of Use-- and so it's up to you whether you trust Blizzard with your computer or not.
WoW Insider has contacted Blizzard and asked them to clarify the situation if necessary-- we'll let you know if we hear anything from them.
Filed under: Analysis / Opinion, Blizzard, News items
Reader Comments (Page 4 of 4)
Kruncher Nov 16th 2007 10:27AM
"Blizzard effectively has access to anything and everything on your computer, and can now edit or retrieve information at will without even you knowing what has happened."
Where exactly in Section 14 of the ToS does it say this? If it's there, please let me know what it says because I'm totally missing it.
ThorinII Nov 16th 2007 10:31AM
How's that old saying go???? Oh yeah....
"The sky is falling! The sky is falling!"
Read the agreement. They aren't asking for and you aren't giving them permission to access your personal data. It is looking at running software, hardware spec's, and machine info, not personal data.
That isn't to say they can't it just means they shouldn't and if they do they are legally liable for doing it.
It also says it can/will log your chat/activities and can/will give them to the police if asked like in the case where the adult guy was staking the teen girl a couple weeks back. This is not a bad thing unless you are a bad person!
Perrins Nov 16th 2007 3:01PM
ohhhhh the coming of SKYNET!!!
Karl Nov 16th 2007 11:48AM
@39 and 40,
No. You have a lot to learn about computers and processes apparently. A web browser does not have access to everything on my system. If you were still running an unpatched version of Win95...sure. Companies are now doing everything they can to separate processes in an attempt to stop this very problem. Linux (or whatever flavor of Unix you want to pick) and Vista are both good examples. Both separate Kernel access from the OS. My web browser does not interact with my "X" application unless I tell it specifically to do so and give it permission. What has been done here is a work-around to have the WoW client give permission to other areas of your system without you permitting it. It is the same thing as a Trojan Horse or Root Kit (pick one). The bottom line is that it is wrong.
jyeliang Nov 16th 2007 11:55AM
Don't be too fast to give up your privacy rights.. And especially don't trust commercial organizations with upholding those rights.
Heck, remember the introduction of videocamera's surveillance in NYC ? They'd be very careful with the information and respect our privacy. If you think putting a suicide record on youtube is exactly that, then be my guest and give 'em all the space they want. The "old" privacy rights we had/knew are already gone since the introduction of internet (or should I say, since people massively started using google), don't let all of those rights slip right out of your hands that easy.
Jim Nov 16th 2007 1:54PM
OMFG you mean Blizz will find my hidden stash of tranny porn??
Kiwibird Nov 16th 2007 6:46PM
Blizzard already has my credit card information. They know my WoW account name and password. What else could they do? Hack my bank account? Read through my MSN chat logs? Find out what naughty sites I've visited? OH NOES! THE SKY IS FALLING!
The only people who would freak out about stuff like this:
1) People who are paranoid about their privacy because they don't really understand how computers work
2) Hackers/cheaters - trying to stir crap up because they can't hack/cheat anymore
It's like freaking out about standing on the sidwalk because a huge plane containing explosives could POTENTIALLY crash on the exact spot you're standing on. *rolls eyes* People are overreacting.
Torcie Nov 16th 2007 8:04PM
Can I point out the obvious?
You ALREADY give Blizzard your private details when you open your account, and if you pay for your account by credit card, they already know plenty about you. You've happily installed at least 4 CD's worth of software from the company - if you don't trust them, uninstall the game.
Noone is forcing you to play WoW - if people are that opposed to warden, vote with your wallet and stop playing.
Otherwise you are just supporting the ridiculously hypocritical and self righteous botting community.
badpenguin455 Dec 16th 2007 9:10PM
Ok if you dont like this new Warden here are your choices:
1. deal with it.
2. quit WoW.
3. download some program that can block your running processes and realize a company that made a very good game makes enough money off you so that your little credit card info and or social security (which shouldnt be on a computer anyway) means almost nothing to them.
4. attempt to hack and quit WoW with a bang.
Ive made my decision, how bout you?
David Dec 4th 2007 2:44PM
It starts to make me paranoid. Here are 2 scenarios 2 ponder:
1) Blizzard is run by the CIA/FBI/MI6 (enter secret govt agency here) and have had a plan to monitor millions across the world concealed as a game.
2) Terrorism. What if Blizzard where hijacked? They would have access to the world. Not just children play this game but i have seen this installed on work computers across companys. Even who dont have it installed at work might have it installed on there personal laptop/desktop and might remote into work? This means Blizzard has all the information they need to gain access.
3) Disgruntled Blizzard employee: New virus's spread like wildfire but imagine if the virus didnt have to be hidden and executed through the game in one hit. So some employee didnt get a xmas bonus and decides to cripple a few million people across the world, or steal there money, life, identity?
I would never have thought of these scenarios in the past but in this day and age anything is possible.