I think authenticators should be required. In the last month alone, my guild's bank has been hacked somewhere between 5 and 10 times. I've honestly lost track at this point. The GL got hacked, officers have gotten hacked, members have gotten hacked and someone got access to the bank while hacked (or weren't demoted after getting mats from the bank). I can honestly say that if authenticators were required, none of that would have happened.

I have another friend that's been hacked 3 times. He wasn't hacked a single time when he had his authenticator, but it broke and he never called in the warranty. He was hacked a couple weeks ago.

I understand it isn't foolproof, but an extra layer of security makes sense. It's only $6, and if you refuse to buy one or if it's too much work for you to type in 8 digits, then you deserve to be hacked.

On the blaming the victim crap that always surfaces in these convos: you might think you're a victim, but you're not. You're not a victim if you invite the burglar in and blindfold yourself and sit on the couch, then tell him to have fun in your house. Blizzard is the real victim here because players expect Blizzard to compensate them for their ignorance for no additional fees.

Your $15/month would probably barely pay a GM for their work on your escalated ticket. It's a smart business decision to offer a lesser option. Please note that it's only an option. They're still offereing the full restore, but shouldn't.

Wal-mart doesn't replace my TV if I hand it to a burglar, Blizzard shouldn't replace your gear/items/gold/badges if you hand them to an account thief.