Posts with tag hacks

Blizzard appears to be cleaning house in preparation for its StarCraft II release as well as its Battle.net revamp. In a recent announcement on the service's forums, Blizzard rep Bashiok revealed that over 300,000 accounts were punished for violations of the terms of service for Warcraft III and Diablo II for using hacks and illegal third-party tools (which are essentially hacks).

For those of you who have had past experience with Battle.net, these numbers probably don't surprise you. The network has had a long reputation of being fairly easy on people using hacks as Blizzard tends to save up over a long period of time in order to do a massive batch of bans at once. This means that those who are using hacks have a long period of time to abuse the system before anything is done about it. The hacks for some games were rampant enough that other players began using hacks that detect other hacks. Regardless of the reason behind using a hack, it is still against the terms of service and means if you get caught, you're out.

Welcome back to The Queue, WoW.com's daily Q&A column where the WoW.com team answers your questions about the World of Warcraft. Alex Ziebart will be your host today.

The video embedded in today's edition of The Queue isn't a silly music video this time around, I'm afraid. No funny business today. Today is for game faces. Today is for serious business. Today is for italic letters.

Sashay asked...

"I have found a glitch that has caused many people to have their hearts broken.

This glitch is the "underground" mining technique that people use so they will not be attacked by enemies. Does this happen because they found a "Under Stormwind" glitch somewhere in Northrend? Maybe they put their toon in the tourney castle before it was built and now they are under everything?"

In reading the commentary on the site concerning the brouhaha surrounding Martin Fury and The Marvel Family's steamrolling of raid content, there were a lot of assertions made that left an impression on me, but the overwhelming feeling I had coming away from it was the players were treating it as a TOS issue when ultimately it's not. For obvious reasons, Blizzard doesn't spend a lot of time creating specific rules for what happens when players get ahold of items that are not officially supposed to exist. I do, however, believe it to be a moral issue.

Was Karatechop wrong to use the shirt, or just wrong past a certain point?

Someone made of stricter stuff than myself would probably say that it was wrong to use the shirt at all, but I have to admit -- I don't have it in me to condemn Karatechop's initial impulse to try it out. GM items don't officially exist for players; we know about them only because they've been data-mined, and you'd have to be a fairly frequent habitué of Warcraft fan sites to have any inkling that they're in the game at all. If I'd been in Karatechop's position, like many players I would've believed that Martin Fury was a joke when I first saw it. Who honestly expects to run across an item like that, let alone one that was mailed to a guildie's level 13 Warlock? I don't believe Karatechop was wrong to try the shirt when he had no reason to believe it was anything other than a joke or some bizarre glitch.

WoW Insider had a chance to sit down today and talk with Karatechop, the man at the center of the cheating scandal that has been rocking World of Warcraft to its core.

We'll have the full interview up for you soon (later today hopefully, or tomorrow at the latest), however one thing we learned from the interview is that his account has been closed, permanently. While we cannot verify this with Blizzard directly, as there are privacy concerns that forbid them from talking about other people's accounts, we can verify that the account administrator who dealt with the closure is real, and that the template used in disseminating the account closure information is legitimate.

The account closure email was forwarded to us from Karatechop during the interview, and we are confident in its authenticity. You can see the full email after the break. We have his express permission to reproduce and report on the actions taken against his account.

The other thing to note is that despite claims on other websites, he is not an employee of Blizzard. There is no evidence to support such claims, and he made a point of telling us today that he is in no way affiliated with Blizzard Entertainment, which we believe.

The full account closure email, sans personally identifiable information, after the break!

Update April 30th, 2009: Karatechop's account has been closed. Read the fully story here.

We first received a tip on a mysterious guild that was blowing through Ulduar's hardest achievements one after the other, all in one day, about a day or two ago. Their gear and raid experience stated very well that they were in no position to do any of those achievements, but we sort of shrugged and let it pass by. It was odd that these players were barely in Naxxramas gear, and their first recorded Kel'thuzad kill was only two weeks prior to their explosion of Ulduar achievements, but we initially ignored these reports because surely, nobody could be hacking the game. On top of that, the forum threads submitted to us all had so many posts deleted from them that they were completely incomprehensible. There was nothing solid about any of it.

Tips on it are still flooding our mailboxes today and a bit more information has surfaced, so let's look into it a little, shall we? The guild is The Marvel Family of US-Vek'nilash. The character Karatechop is the one that has attracted the most attention, and you'll see why in just a moment. If you look over his gear, it's not that bad, really. Epic tank gear, a lot of it from Naxxramas, so it's feasible that he could make some progress through Ulduar. It gets weird when you go to his Statistics and/or Achievements panels. Let's go to his statistics first.

We've received an interesting report on the WoW Insider Tip Line today. Two large World of Warcraft hacking and account trading websites, Markee Dragon and MMOwned, are offline.

Article Update: According to MMOwned, they are moving servers, which is the reason their site is offline for some.

Attempts to reach the sites prove unsuccessful.

This is a good thing for everyone that wants to have a more legitimate gameplay experience in WoW, as both of these sites actively encouraged people to exploit bugs, break the ToS, and do all other sorts of tom-foolery that destroyed the game for legitimate players.

Our tipster mentioned that these sites were taken down in part by action taken by Blizzard, however we don't have any proof of that.

I've selected the angry baby picture for this article, since that's how the exploiters and account traders are feeling right now. Buh-bye.

DIII.net has a great writeup of everything Blizzard has said so far about the new Battle.net features, and while most of the information applies more to Diablo III and Starcraft II, there's some good tidbits in there for WoW fans as well. Battle.net is Blizzard's oldest online service -- it predates WoW by a few years and was notably used to play Warcraft 3, Diablo 2 and Starcraft online. It's making a return with a revamp for the release of Starcraft II, and in addition to the previously mentioned ability Battle.net will give playes to track achievements across all Blizzard games, the system will have a much more social feel than the previous incarnation of the service.

Player accounts, avatars, icons, and friend lists are all planned, and odds are that services like the Armory and even the WoW sign in may be tied to your Battle.net account in some way. Tournaments and rankings will be included (though it remains to be seen how this might be implemented in World of Warcraft), and Battle.net will even offer players the ability to save and share replays of Starcraft II games, and other e-sport-like features.

That last feature would be a perfect fit for WoW's Arenas, of course, but as much as players would like to be able to spectate Arena matches, odds are that there would have to be a lot of behind-the-scenes coding done on Blizzard's side. Starcraft is being built from the ground up to record matches, of course, but WoW's Arena system doesn't have that ability built in, and putting it in might be more work than Blizzard wants to do on that one area of the game. No word yet on when we might get the new Battle.net (odds are it'll come out right around the Starcraft II release, whenever that is), but from the look of it, Blizzard has big plans to expand the social networks they've built into World of Warcraft towards all of their properties.

There has been a YouTube video that has been circulating around the internet lately claiming to show how to get into the Wrath of the Lich King beta via a backdoor security flaw. The video directs you to another site, which you then must enter your user name and password that you use to get into WoW. Surprise, surprise: this is nothing but another trick to steal your account.

This video has been showing up in links around the WoW community lately just about as much as a certain great music video. This initially caught my attention when it was posted here in our comments a few times.

Since the real beta signups are under way, and access to the beta is expected to begin any time, we were expecting and indeed seeing a large uptick in the number of beta scams. Be sure to protect yourself.

We've already reported that the Blizzard Authenticator is sold out, but here's another twist to the story. WoW Insider reader Ryan told us that he placed his order last Monday, before the sell out was announced.

However, instead of getting his Authenticator, he instead got an unexplained refund. With no other word from Blizzard, they simply canceled the order and refunded the money. He talked to a coworker who had also ordered the Authenticator and found that he had the same experience. As of yet, Blizzard has not explained the refund to him.

It's likely that Ryan was simply unlucky enough to place his order after they'd sold out but before they'd officially announced it, but there's other somewhat unfortunate implications. If they're refunding his order instead of honoring it, it suggests that they don't expect to have any new Authenticators ready for quite some time.

In an era where clicking on the wrong link while browsing the web could mean your account will get hacked, and one of your guild members clicking on the wrong link means your guild bank could get emptied as well, it's always good to protect yourself and keep abreast of web security issues.

In that vein, it's worth checking out a new report released by McAfee called Mapping the Mal Web Report Revisited. It tested 9.9 Million websites in 265 domains to find out which ones had a higher risk of exposing visitors to malware, spam, and malicious attacks via a red, yellow, and green system.

According to reports, a new wave of exploits has appeared taking advantage of a vulnerability Adobe Flash Player. Allegedly over 200,000 web sites now have redirects to malware, including keyloggers, through embedded Flash. And we all know how evil keyloggers can be. Flash Player 9.0.115.0 appear to be the affected version.

Adobe quickly responded to the issue, saying that the vulnerability is fixed in 9.0.124.0, the latest version of the player, so to make yourself secure, all you need to do is update your Flash. To check what version you are running, go to this Adobe page. Keeping your software up-to-date is one of the best ways to close security holes; if you're truly paranoid, you could always go the route of adding Flashblock and/or No-Script into your browser. And be sure to keep an eye on our new Azeroth Security Advisor column for more tips on how to keep yourself from being compromised. Once again, to update your Flash and patch this vulnerability go to Adobe's "Get Flash" page.

Update: It is possible that certain versions of 124 (namely, the standalone version for Linux and the standalone version with debug capabilities for Windows) are also affected by the exploits. At this time it is recommended to disable Flash if you are running those versions.

Update 2: It is currently believed that all versions of 124 are safe. Nevertheless, caution is generally a good idea.

While the Incgamers malware problem is fixed, it looks like there's another malware flare up in the world of addons. The WoW Ace Updater, according to many users, may be passing off a trojan from an ad in the guise of an antivirus program. The program, called Winfixer, pops up in a window and (in some cases automatically) installs malware while claiming your computer is compromised and that you need to buy the full retail version to fix it. It can be detected and removed by Spybot Search and Destroy and Vundofix, and Symantec includes instructions on how to manually remove it here.

Wowace.com site owner Kaelten has disabled the ads on WoW Ace Updater completely for now, and is talking to his Ad provider to find out what went wrong and which ads might be causing problems.

This isn't the first time a popular WoW site has had trouble with trojans in ads, and unfortunately, it is unlikely to be the last. Kaelten seems to be on top of it, though, so hopefully he'll get to the bottom of these claims. Since the ads are currently disabled, the program itself should already be safe to use. If you're feeling a bit skittish, though, you can check out some of Sean's recommendations for other upgrade programs here.

I should note that, being a religious user of WoW Ace Updater myself (I run it at least a good 5 times a week), I just made sure to scan my computer with the aforementioned Spybot Search and Destroy as well as AVG Free Edition. According to those programs, It has a clean bill of health.

Yesterday, I reported to you that Google (via Stopbadware.org) had marked wowui.incgamers.com (which redirects to wowui.worldofwar.net) as a bad site. Today, the site is reported as clean according to the same report (you can check it out here).

Rushter of Incgamers.com explained to us on the comments of the previous article that the problem was with a seperate attack on a different hosted site (which was quickly dealt with, and unrelated to worldofwar.net, says Rushster), but Google marked the whole site as bad. The worldofwar.net UI database was unaffected, he says, and after some back and forth, Google has now dropped the warning.

Of course, it's still always a good idea to check your computer for viruses, trojans, and keyloggers regularly, and realize that no website is completely safe (though having a good defense always helps). That said, at the moment it looks like wowui.incgamers.com, also known as wowui.worldofwar.net, is a safe spot to grab your addons from.