Filed under: Account Security
Posts with tag Account-Security
Following the link in the tweet above will take you to their page on account security that is just packed with helpful tips to secure your battle.net account, and your computer. Some of the most common causes of account theft relate to lax security on the side of the user, and following these tips can really help you avoid that.
There's also legitimate links to all the major sources of free anti-virus software, and the article is packed with other tips to avoid things like phishing sites, spyware, and malicious processes. In the absence of physical items on the battle.net store, there's also advice on retailers that can sell you authenticators.
Filed under: Account Security
- Make sure you have an authenticator attached to your account, which makes it less likely your account will get locked for something like this. (And if you use the mobile authenticator app, be sure you have your restore code written down or screenshotted in case you run into issues with your phone.)
- Enable SMS Protect, which can let you bypass your authenticator using your cell phone if you run into any problems.
Filed under: Account Security
But fortunately, it's easy enough to keep your account under (virtual) lock and key by taking some precautions in advance -- and when we say "in advance," we mean these are things you should do right now. We'll walk you through the very basics of keeping your account secure with a good password and an authenticator. Read on for all you need to know about getting started with good security!
What I really found interesting, however, was Takralus' takedown of a very old argument by players about Blizzard's stance on botting.
Thanks to the introduction of account-wide achievements, GuildOx, along with any other site that is smart enough to extract this information from the API, can use the cross-account information to tell you exactly who that new player's alts are that's applying to your guild. So, if someone claims to have amazing gear, and anything else that isn't a linkable achievement on an alt, you can now check it out on GuildOx.
The functionality could allow a guild leader to see if the new person they're picking up is actually the worst trade chat troll on the server, for example. As GuildOx says, this can provide extra insight into applicants when recruiting new guild members. If you think you'd benefit from this, then you can check it out on GuildOx's new service by viewing one of the site creator's characters, and all their alts.
There is, of course, a down side.
Filed under: Mists of Pandaria
In addition to the security question update, players may now also update their Mobile Authenticators as well. Please note, this is only in regards to North American accounts; players in Europe need to do neither of these things. And remember, if you are a North American player and have not changed the password on your account, doing so is an excellent idea.
The full post is below.
Blizzard issues its security alert because many players who play various Blizzard games like WoW and Diablo III or StarCraft II also play League of Legends; therefore, if they use the same email address for Battle.net as League of Legends or the same passwords, those Battle.net accounts may also be at risk.
This is not an announcement that Blizzard itself has been hacked, mind you. It's simply a precaution based on the habits of players of many games to use the same passwords and login information for multiple accounts. If you're not a League of Legends player in the affected EU regions, there's no way for this to affect you.
The full announcement is after the break.
Just like WoW accounts, Diablo III accounts are worth real money. Blizzard has had experience dealing with compromised accounts for years. This is why it introduced the Battle.net Authenticator, a second level of security that makes it very, very difficult to get your account compromised. Authenticators don't make it impossible to get your account compromised, but they do make compromising your account much more trouble than it's worth in the face of mass keylogging, which is how accounts are normally stolen.
Some people who haven't had a WoW account before but bought Diablo III were undoubtedly surprised when their accounts were compromised, which is understandable. An editor at Eurogamer had his account hacked and responded with an article suggesting that players were getting their sessions hijacked by joining public games and that people were getting compromised with this method even with authenticators attached to their account. Unfortunately, sites all over the internet picked up the story and also reported the session hijacks and bypassed authenticators as fact.
The problem is that neither of those things were correct. In fact, Blizzard says it's actually impossible to do with Diablo III due to the way the infrastructure is set up.
The change, aimed to make authenticators less of a hassle for those who log on from the same computer quite a bit, caused an odd uproar on the official forums from players who were worried that this change somehow made their account less secure. Addressing these concerns, Blizzard Community Manager Zarhym announced today that Blizzard is working on providing an opt-out option for this convenience feature.
Details were scarce since, as Zarhym noted, Blizzard hasn't quite nailed down specifics yet, but he assured players that it's something Blizzard's been looking into since the authenticator change was first announced.
The full announcement post and followups are after the break.
At this point, there's pretty much no reason not to have an authenticator -- they're 6 bucks and free to ship for a physical device and no cost at all for a software version available for every major mobile platform. Just get it!
Blizzard wants make the authentication process less intrusive and this is a first step towards that goal. Right now, having to input a code each and every log in is a pain, sure, but it also makes me feel secure. I'm never going to say no to more security, however, and if the system is something that can accurately figure out where I am and let me on, that's great.
This doesn't take into consideration the circumstance where you use an authenticator to prevent access to WoW, even from the home PC. I know some parents who use a simple password that their kids can remember but use the authenticator as the gate to prevent unwanted play. Maybe there will be an opt-out feature of some kind to always ask for the code.
You can check out the Battle.net account security page or check out the Blizzard mobile site for application information. For more information on this specific change to the authenticator system, follow me after the break.
Writing The Lawbringer has taught me a lesson in trends. Over the past few months, specific questions are sent to me in topical batches. Sometimes it is a few emails about selling accounts. Other times, I get four to five emails about account security or compromise. May's email topic of choice was transferring accounts to family members.
Blizzard is very restrictive about what you can and cannot change regarding your account information. On the one hand, it is your account, right? Shouldn't you have ultimate control over the information you provide for the facilitation of a service you pay for? On the other hand, there is a certain degree of problem mitigation that comes with restrictive change. If Blizzard can control certain aspects of what you do with your account and the information it is all filed under, problems can get mitigated before they appear. Today's topic is really all about damage mitigation.
Filed under: The Lawbringer