Blizzard has just announced that they suffered a security breach!
Even when you are in the business of fun, not every week ends up being fun. This week, our security team found an unauthorized and illegal access into our internal network here at Blizzard. We quickly took steps to close off this access and began working with law enforcement and security experts to investigate what happened.
According to the statement released by Blizzard, no financial data such as credit card numbers of billing addresses were accessed. However the hackers were able to get some data including:
- Email addresses for Global Battle.Net users outside of China
- Persona security question answers, Mobile Authenticator data, and Dial-In Authenticator data was also accessed from the North American servers (includes players from Latin America, North America, New Zealand, Australia, and Southeast Asia)
Blizzard also said that encrypted passwords were also stolen from their North American servers, but they also stated that it is extremely difficulty for the hackers to decrypt the passwords thanks to SRP (Secure Remote Password). This site seems to believe otherwise however. In any case, you would be wise to change you password even if you do not play on the North American servers as quickly as possible. You should also change your password for other services if you use the same or similar password for them.
In the coming days, we'll be prompting players on North American servers to change their secret questions and answers through an automated process. Additionally, we'll prompt mobile authenticator users to update their authenticator software.
Blizzard also warned about phishing emails in the coming days which will ask you for your login details. Don't fall for these!
A Faq on the situation can be found here.
Share this news with your friends!