The Glade 4.0
https://gladerebooted.net/

Battle.net Acct Hacked
https://gladerebooted.net/viewtopic.php?f=7&t=3727		 Page 1 of 3
Author:  Lenas [ Thu Aug 05, 2010 12:22 pm ]
Post subject:  Battle.net Acct Hacked
= lame.

Phone queue is full, can't take my call. Took my authenticator off for one day and of course this happens. Email / pw / card already changed and I can't get in.
Author:  Müs [ Thu Aug 05, 2010 12:24 pm ]
Post subject: 
Why would you take your authenticator off?

I mean, its not like it feels better without protection or anything...
Author:  Lenas [ Thu Aug 05, 2010 12:29 pm ]
Post subject: 
Switched phones.
Author:  Müs [ Thu Aug 05, 2010 12:29 pm ]
Post subject: 
Ah, gotcha :)
Author:  darksiege [ Thu Aug 05, 2010 12:56 pm ]
Post subject: 
this is what makes me glad that I have the authenticator for both my blackberry and my iPod. Plus I have an actual authenticator on my daughters account to use if I so choose. I just decide which one to switch to, swap it out right away and tada.

Sorry Lenas, hope you get good resolution on this.
Author:  Vladimirr [ Fri Aug 06, 2010 3:01 pm ]
Post subject: 
Took me just short of two weeks to get everything back. The good news is they restored everything in the guild bank AND all the stuff that was on me, which means I got two copies of a lot of stuff. They restored all my badges AND all the gems the hacker bought with the badges, so anyway, it wasn't so bad in the long run. From what I understand they aren't as forgiving the second time though...
Author:  Diamondeye [ Fri Aug 06, 2010 7:25 pm ]
Post subject:  Re: Battle.net Acct Hacked
I don't get this "phone authenticator" buisness.. do you guys really play WoW or SC2 on your phones?
Author:  Lenas [ Fri Aug 06, 2010 7:27 pm ]
Post subject: 
It's not to play the game on our phone. It's an authenticator application that gives you a code so you don't need to plug in/carry a dongle with you.
Author:  Micheal [ Fri Aug 06, 2010 7:29 pm ]
Post subject: 
Phone Authenticator adds another level of security to the log in process, that is all. You press a button, the authenticator flashes a code, and you have only so much time to use it to log into WoW. This is in addition to your regular password.

Reportedly, it has dramatically cut having accounts hacked by those who use them.
Author:  DFK! [ Fri Aug 06, 2010 10:16 pm ]
Post subject: 
Heh. Dongle just sounds funny to me.

Carry on.
Author:  Diamondeye [ Sat Aug 07, 2010 10:41 am ]
Post subject:  Re:
Lenas wrote:
It's not to play the game on our phone. It's an authenticator application that gives you a code so you don't need to plug in/carry a dongle with you.


I'm even more confused now.
Author:  Micheal [ Sat Aug 07, 2010 11:02 am ]
Post subject: 
WoW is not played on either the dongle or the Smart Phone (yet). WoW is still played on your computer (or someone else's).

The dongle is a stand alone device, small, something you can attach to your key-chain like a little calculator. It is in communication with WoW/Blizzard in some wireless way. You push a button, it flashes a randomly generated code you use to log in to WoW. Again, it is in addition to your regular password. This adds a basically unhackable level of security to your log in process because the code changes every time and is only good for a short time.

The smart phone application does the very same thing, is a free download, and lets you not have to be dependent on the dongle.

The dongle is a lot cheaper (under $10) than getting a smart phone for the purpose, but the app is free if you already have a smart phone.

Making sense yet DE?

To confuse matters, there is a smart phone application that can be used to follow your auctions and bids in the WoW Auction houses.
Author:  Müs [ Sat Aug 07, 2010 12:21 pm ]
Post subject:  Re: Re:
Diamondeye wrote:
Lenas wrote:
It's not to play the game on our phone. It's an authenticator application that gives you a code so you don't need to plug in/carry a dongle with you.


I'm even more confused now.


http://us.blizzard.com/store/details.xml?id=1100000822

Link for you.
Author:  Midgen [ Sat Aug 07, 2010 2:23 pm ]
Post subject: 
DE, if you've ever used an RSA key dongle, it's identical to that.

Once the service is activated (fob associated with your account), every time log into the game client, along with your battle.net credentials, you are asked to enter a 6 digit code, which is displayed on the dongle (or your phone app, etc...).

FAQ

Image

With this service activated, the account cannot be accessed without having access to the dongle. Unless of course you are moderately adept at social engineering and possess enough information about the account to convince Blizzard that you lost it and need it deactivated.

Buy the token here. If you prefer the phone app version for your favorite smart phone, just download the app from the appropriate marketplace.
Author:  Talya [ Sat Aug 07, 2010 5:49 pm ]
Post subject:  Re:
Micheal wrote:
It is in communication with WoW/Blizzard in some wireless way.



This is a misunderstanding we get from lots of people at work. (We use an RSA authentication system for remote access that is pretty much identical to the blizzard authenticator.)

The keyfob-dongly-token-thingie just follows a predetermined algorithm for generating the next number in sequence that is unique to it and it alone. Every time you enter a code from it, the blizzard authentication server checks to see if the code you've entered is a valid one for your authenticator, accurate to within a couple minutes. It is NOT exact, and because the stand-alone keyfobs have no method of external communication, they can and do gain or lose time compared to the servers. Eventually you can be required to resynchronize your token to the server.

I suspect the smartphone-based versions run their algorithm off of some blizzard time server rather than the phone's internal timer (probably their ONLY communication to blizzard) so they never lose synchronization.
Author:  Diamondeye [ Sat Aug 07, 2010 5:54 pm ]
Post subject:  Re: Battle.net Acct Hacked
You've got to be **** kidding me. All this bullshit to protect a battle.net account? How many accounts per day are actually getting hacked?

The principle it works on makes sense, but it seems like a pain in the *** and one more thing to lose. Couldn't they add some other method of authentication, like answering having you put in answers to 20 questions, and then having you answer a random one when you log in?
Author:  shuyung [ Sat Aug 07, 2010 6:46 pm ]
Post subject: 
They could, but that's not really a more secure option to offer to customers.
Author:  Raltar [ Sat Aug 07, 2010 7:25 pm ]
Post subject: 
I cannot believe people don't have one for their Battle.net accounts in this day and age. But, honestly...Blizzard should box one in every game they sell. I understand why they don't. But they should, just the same. I totally got a limited edition Blizzcon Starcraft 2 Spectre authenticator from Blizzcon last year. It's totally awesome.
Author:  Midgen [ Sat Aug 07, 2010 8:19 pm ]
Post subject: 
DE,

Its $6 worth of pretty decent insurance against getting your account hacked.

And yes, there is big money (yen) in stolen accounts.they are used for farming and bought and sold for real dollars (yen).

Not to mention the customer service costs associated with dealing with recovering hacked accounts.

Losing it isn't a big concern for most, as it usually just sits on your desk next to your keyboard, unless you have the phone based version. And if you do lose it, it should just be a matter of calling customer service and proving some security details.
Author:  darksiege [ Sat Aug 07, 2010 9:57 pm ]
Post subject:  Re: Re:
Talya wrote:
I suspect the smartphone-based versions run their algorithm off of some blizzard time server rather than the phone's internal timer (probably their ONLY communication to blizzard) so they never lose synchronization.


The smart phone based authenticators run on the devices internal timer, but give an option for resyncing with the server manually. It is not in constant communication.

DE.. I do not know what kind of phone you use, but they have a mobile authenticator for several different phones now. The iPod touch/iPhone mobile authenticator is free. The one I got for my blackberry cost me $0.99 to download from the company that makes it.
Author:  Midgen [ Sat Aug 07, 2010 10:08 pm ]
Post subject: 
They are free for the Android phones as well. Just search the marketplace for 'battle.net'.
Author:  Lenas [ Sun Aug 08, 2010 7:16 pm ]
Post subject: 
After four days of full call queues plus an hour waiting on hold today, finally got my account back.
Author:  Vladimirr [ Mon Aug 09, 2010 6:56 am ]
Post subject:  Re: Battle.net Acct Hacked
Diamondeye wrote:
You've got to be **** kidding me. All this bullshit to protect a battle.net account? How many accounts per day are actually getting hacked?

The principle it works on makes sense, but it seems like a pain in the *** and one more thing to lose. Couldn't they add some other method of authentication, like answering having you put in answers to 20 questions, and then having you answer a random one when you log in?


It's not as much of a pain in the *** as you'd think. You keep it near your PC or on your keyring, and it adds maybe 10 seconds to the login process. The only thing I'd like to see added is some kind of luminescent backlighting for when you try to log in in the dark.

We use an RSA token for work though, so I'm used to the concept.
Author:  Diamondeye [ Mon Aug 09, 2010 7:17 am ]
Post subject:  Re: Re:
darksiege wrote:
Talya wrote:
I suspect the smartphone-based versions run their algorithm off of some blizzard time server rather than the phone's internal timer (probably their ONLY communication to blizzard) so they never lose synchronization.


The smart phone based authenticators run on the devices internal timer, but give an option for resyncing with the server manually. It is not in constant communication.

DE.. I do not know what kind of phone you use, but they have a mobile authenticator for several different phones now. The iPod touch/iPhone mobile authenticator is free. The one I got for my blackberry cost me $0.99 to download from the company that makes it.


The kind of phone I use is the one plugged into the wall at home. I don't have a cell phone of my own; I share my wife's when I need to have one with me. Even if I did, I wouldn't own some fancy phone. When I do get another one, which I probably will need to soon, it won't be any Iphone or anything with "apps"; it will be the kind that flips open and has numbers on the front.. with no camera. I doubt that I will be able to use one of any other type.

I also play on a laptop; there is no desktop for me to keep the authenticator conveniently on.

As for the timing system for the phones/blizzard, it seems more likely that Blizzard would run its timer off the satellite time used by the phones, which they need in order to to make their GPS systems work right. It would be simpler for Blizzard to just pull their time off communications and GPS systems rather than come up with their own timer that would then have to be re-synched in order to make the phone authenticators work.

Timing is a major pain in the *** with commo. With SINGCARS you have to have all the radios on a net within 4 seconds of each other (IIRC) to frequency-hop and be able to talk. The master radio pulls all the others back into time with it if they're within that 4 seconds, but if some ******* loaded the wrong time on his radio to begin with, he won't be able to talk. If he was suppsed to be the master station, then he can talk on that net IF everyone else was close enough to get pulled in, but then if you switch to another net... no talking for you!
Author:  Uinan [ Mon Aug 09, 2010 8:59 am ]
Post subject: 
Stealing Blizzard accounts is sadly a multi million dollar industry.

Snagging an Authenticator seems to be worth it. I recently got one for my Itouch.
Page 1 of 3 All times are UTC - 6 hours [ DST ]
Powered by phpBB® Forum Software © phpBB Group
https://www.phpbb.com/