Actually, I you shouldn't have to enter any password information into SimCraft, so I don't think it was this program that compromised your security.

Edit: "Actually, you shouldn't..."

I used the Mac version, and yes you had to login through a site in order for it to read your info. Armory was one of these sites, and from there it can store your information. Its the only new app I've used for the game in months, and the day after I used and installed this, my account was hacked. No, not a conincidence, and a GM confirmed I'm not the only one who had this happend from this program.

http://forums.worldofwarcraft.com/thread.html?topicId=22749565836&postId=227466889623&sid=1#1

If you downloaded your copy of SimulationCraft from anywhere other than the official googlecode site, then you probably got stuck with a keylogger hidden in a hacked version of the program. The official program DOES NOT require your password login information, nor does it contain any malicious code as determined by several anti-virus, spy-ware and malware tools. In fact, to confirm this, I downloaded and tested a copy and it only requires the URL of your toon from the Armory or WoWHead. I hope you get your account fixed, though, as it really sucks that people are building keyloggers into tools that, for the good of all internet users, employs the OpenGNU license (which essentially makes it viable for hackers to tweak the code for malicious purposes).

GOOD LUCK! =D

Browser that SC uses is not like real browsers. Its not secure anyway its just simple coded and slapped in place it seems. So its less secure than IE or Firefox cos it has no fancy security things.
Thats why you should never log in with program like that.

Authenticator