Posts with tag hacks

---

We know that all of our readers are swell guys and gals who would never cheat at World of Warcraft, but just in case you needed another reason to avoid that kind of thing, anti-virus maker AVG is reporting that 90% of game hacks contain malware. And beyond the fact that using a hack will get your account banned by Blizzard, malware has a good chance to steal your WoW account and other sensitive information -- like bank account information or credit card numbers.

We know it seems to take forever to grind for gold or levels sometimes, but if you see something offering to get you gold, levels, achievements, or anything else with the click of a button -- don't click! If these things sound too good to be true, they probably are. So instead, keep your account secure by avoiding hacks and being sure you only download addons from trusted sources. Your account, safe and secure, will thank you!

[Via The Escapist]

---

After years of keyloggers and trojans from unsafe browsing, unsecured computers, or just plain bad luck, WoW players should be pretty used to the concept of a compromised account and how said compromises happen. Unfortunately, Diablo III players don't appear to be as familiar with them, which has resulted in some pretty maddening discourse on the official forums and across the internet.

Just like WoW accounts, Diablo III accounts are worth real money. Blizzard has had experience dealing with compromised accounts for years. This is why it introduced the Battle.net Authenticator, a second level of security that makes it very, very difficult to get your account compromised. Authenticators don't make it impossible to get your account compromised, but they do make compromising your account much more trouble than it's worth in the face of mass keylogging, which is how accounts are normally stolen.

Some people who haven't had a WoW account before but bought Diablo III were undoubtedly surprised when their accounts were compromised, which is understandable. An editor at Eurogamer had his account hacked and responded with an article suggesting that players were getting their sessions hijacked by joining public games and that people were getting compromised with this method even with authenticators attached to their account. Unfortunately, sites all over the internet picked up the story and also reported the session hijacks and bypassed authenticators as fact.

The problem is that neither of those things were correct. In fact, Blizzard says it's actually impossible to do with Diablo III due to the way the infrastructure is set up.

Blizzard appears to be cleaning house in preparation for its StarCraft II release as well as its Battle.net revamp. In a recent announcement on the service's forums, Blizzard rep Bashiok revealed that over 300,000 accounts were punished for violations of the terms of service for Warcraft III and Diablo II for using hacks and illegal third-party tools (which are essentially hacks).

For those of you who have had past experience with Battle.net, these numbers probably don't surprise you. The network has had a long reputation of being fairly easy on people using hacks as Blizzard tends to save up over a long period of time in order to do a massive batch of bans at once. This means that those who are using hacks have a long period of time to abuse the system before anything is done about it. The hacks for some games were rampant enough that other players began using hacks that detect other hacks. Regardless of the reason behind using a hack, it is still against the terms of service and means if you get caught, you're out.

Welcome back to The Queue, WoW.com's daily Q&A column where the WoW.com team answers your questions about the World of Warcraft. Alex Ziebart will be your host today.

The video embedded in today's edition of The Queue isn't a silly music video this time around, I'm afraid. No funny business today. Today is for game faces. Today is for serious business. Today is for italic letters.

Sashay asked...

"I have found a glitch that has caused many people to have their hearts broken.

This glitch is the "underground" mining technique that people use so they will not be attacked by enemies. Does this happen because they found a "Under Stormwind" glitch somewhere in Northrend? Maybe they put their toon in the tourney castle before it was built and now they are under everything?"

In reading the commentary on the site concerning the brouhaha surrounding Martin Fury and The Marvel Family's steamrolling of raid content, there were a lot of assertions made that left an impression on me, but the overwhelming feeling I had coming away from it was the players were treating it as a TOS issue when ultimately it's not. For obvious reasons, Blizzard doesn't spend a lot of time creating specific rules for what happens when players get ahold of items that are not officially supposed to exist. I do, however, believe it to be a moral issue.

Was Karatechop wrong to use the shirt, or just wrong past a certain point?

Someone made of stricter stuff than myself would probably say that it was wrong to use the shirt at all, but I have to admit -- I don't have it in me to condemn Karatechop's initial impulse to try it out. GM items don't officially exist for players; we know about them only because they've been data-mined, and you'd have to be a fairly frequent habitué of Warcraft fan sites to have any inkling that they're in the game at all. If I'd been in Karatechop's position, like many players I would've believed that Martin Fury was a joke when I first saw it. Who honestly expects to run across an item like that, let alone one that was mailed to a guildie's level 13 Warlock? I don't believe Karatechop was wrong to try the shirt when he had no reason to believe it was anything other than a joke or some bizarre glitch.

WoW Insider had a chance to sit down today and talk with Karatechop, the man at the center of the cheating scandal that has been rocking World of Warcraft to its core.

We'll have the full interview up for you soon (later today hopefully, or tomorrow at the latest), however one thing we learned from the interview is that his account has been closed, permanently. While we cannot verify this with Blizzard directly, as there are privacy concerns that forbid them from talking about other people's accounts, we can verify that the account administrator who dealt with the closure is real, and that the template used in disseminating the account closure information is legitimate.

The account closure email was forwarded to us from Karatechop during the interview, and we are confident in its authenticity. You can see the full email after the break. We have his express permission to reproduce and report on the actions taken against his account.

The other thing to note is that despite claims on other websites, he is not an employee of Blizzard. There is no evidence to support such claims, and he made a point of telling us today that he is in no way affiliated with Blizzard Entertainment, which we believe.

The full account closure email, sans personally identifiable information, after the break!

Update April 30th, 2009: Karatechop's account has been closed. Read the full story here.

We first received a tip on a mysterious guild that was blowing through Ulduar's hardest achievements one after the other, all in one day, about a day or two ago. Their gear and raid experience stated very well that they were in no position to do any of those achievements, but we sort of shrugged and let it pass by. It was odd that these players were barely in Naxxramas gear, and their first recorded Kel'thuzad kill was only two weeks prior to their explosion of Ulduar achievements, but we initially ignored these reports because surely, nobody could be hacking the game. On top of that, the forum threads submitted to us all had so many posts deleted from them that they were completely incomprehensible. There was nothing solid about any of it.

Tips on it are still flooding our mailboxes today and a bit more information has surfaced, so let's look into it a little, shall we? The guild is The Marvel Family of US-Vek'nilash. The character Karatechop is the one that has attracted the most attention, and you'll see why in just a moment. If you look over his gear, it's not that bad, really. Epic tank gear, a lot of it from Naxxramas, so it's feasible that he could make some progress through Ulduar. It gets weird when you go to his Statistics and/or Achievements panels. Let's go to his statistics first.

We've received an interesting report on the WoW Insider Tip Line today. Two large World of Warcraft hacking and account trading websites, Markee Dragon and MMOwned, are offline.

Article Update: According to MMOwned, they are moving servers, which is the reason their site is offline for some.

Attempts to reach the sites prove unsuccessful.

This is a good thing for everyone that wants to have a more legitimate gameplay experience in WoW, as both of these sites actively encouraged people to exploit bugs, break the ToS, and do all other sorts of tom-foolery that destroyed the game for legitimate players.

Our tipster mentioned that these sites were taken down in part by action taken by Blizzard, however we don't have any proof of that.

I've selected the angry baby picture for this article, since that's how the exploiters and account traders are feeling right now. Buh-bye.

DIII.net has a great writeup of everything Blizzard has said so far about the new Battle.net features, and while most of the information applies more to Diablo III and Starcraft II, there's some good tidbits in there for WoW fans as well. Battle.net is Blizzard's oldest online service -- it predates WoW by a few years and was notably used to play Warcraft 3, Diablo 2 and Starcraft online. It's making a return with a revamp for the release of Starcraft II, and in addition to the previously mentioned ability Battle.net will give playes to track achievements across all Blizzard games, the system will have a much more social feel than the previous incarnation of the service.

Player accounts, avatars, icons, and friend lists are all planned, and odds are that services like the Armory and even the WoW sign in may be tied to your Battle.net account in some way. Tournaments and rankings will be included (though it remains to be seen how this might be implemented in World of Warcraft), and Battle.net will even offer players the ability to save and share replays of Starcraft II games, and other e-sport-like features.

That last feature would be a perfect fit for WoW's Arenas, of course, but as much as players would like to be able to spectate Arena matches, odds are that there would have to be a lot of behind-the-scenes coding done on Blizzard's side. Starcraft is being built from the ground up to record matches, of course, but WoW's Arena system doesn't have that ability built in, and putting it in might be more work than Blizzard wants to do on that one area of the game. No word yet on when we might get the new Battle.net (odds are it'll come out right around the Starcraft II release, whenever that is), but from the look of it, Blizzard has big plans to expand the social networks they've built into World of Warcraft towards all of their properties.

There has been a YouTube video that has been circulating around the internet lately claiming to show how to get into the Wrath of the Lich King beta via a backdoor security flaw. The video directs you to another site, which you then must enter your user name and password that you use to get into WoW. Surprise, surprise: this is nothing but another trick to steal your account.

This video has been showing up in links around the WoW community lately just about as much as a certain great music video. This initially caught my attention when it was posted here in our comments a few times.

Since the real beta signups are under way, and access to the beta is expected to begin any time, we were expecting and indeed seeing a large uptick in the number of beta scams. Be sure to protect yourself.

We've already reported that the Blizzard Authenticator is sold out, but here's another twist to the story. WoW Insider reader Ryan told us that he placed his order last Monday, before the sell out was announced.

However, instead of getting his Authenticator, he instead got an unexplained refund. With no other word from Blizzard, they simply canceled the order and refunded the money. He talked to a coworker who had also ordered the Authenticator and found that he had the same experience. As of yet, Blizzard has not explained the refund to him.

It's likely that Ryan was simply unlucky enough to place his order after they'd sold out but before they'd officially announced it, but there's other somewhat unfortunate implications. If they're refunding his order instead of honoring it, it suggests that they don't expect to have any new Authenticators ready for quite some time.

In an era where clicking on the wrong link while browsing the web could mean your account will get hacked, and one of your guild members clicking on the wrong link means your guild bank could get emptied as well, it's always good to protect yourself and keep abreast of web security issues.

In that vein, it's worth checking out a new report released by McAfee called Mapping the Mal Web Report Revisited. It tested 9.9 Million websites in 265 domains to find out which ones had a higher risk of exposing visitors to malware, spam, and malicious attacks via a red, yellow, and green system.