Page 1 of 2 12 LastLast
Results 1 to 10 of 15
  1. #1
    glissonmike's Avatar
    Join Date
    May 9th, 2009
    Posts
    11

    Keeping your account secure!

    I agree the Blizzard authenticators are the best thing Blizzard has come up with since creating WOW. There are a few other things you can do to increase account security, authenticator added or not, to help you sleep a little better at night.

    1. Use Long passwords that alternate between letter and number (1a2b3c4d) and change it often (I change it once a week). That is the one of the hardest passwords to crack.

    2. To get around key loggers, open your typing program (MS Word, Word Perfect, etc) and type your password only, save the file to your desktop and just Copy/Paste the password on the login screen. Most key loggers record what letters are typed when a certain program is loaded (WOW, Everquest, etc).

    3. Don't get sloppy even if you have an authenticator. There have been a lot of people on the servers that I play on that have had there accounts hacked and they all had authenticators attached. The authenticators (in hand, not Ipod apps) have a fixed number of codes that are on a fixed loop. I have seen the same numbers pop up on mine several times and I'm betting the key loggers can keep track of that too, all you have to do is enter the next number in the sequence and your in.

    4. If the address doesn't have blizzard.com or Battle.net, IGNORE IT!
    Most people see something like that and think its real. Ask yourself one thing, would a blizzard employee send me a message from a yahoo.com or hotmail.com account? Would Blizzard send me a message in game telling me to go to any other site other than Blizzard.com? Everything WOW is on worldofwarcraft.com and everything Blizzard is on Blizzard.com or Battle.net.

    Hope this helps, I have been hacked and know how painful it is to find everything you worked long and hard for be destroyed by a greedy little... (insert expletive here). Good luck to all.

  2. #2

    KAPT Guide [Know your account protection tips]

    =====================
    | KAPT Guide version 1.21 |
    =====================


    First off I will have to say that the state in which people have been getting hacked is in and of itself inadvertently the cause of their own lack of knowledge. Its like an adult stealing money from a little kid by shorting him by using his own superior knowledge of math. I personally for one am not a trusting individual and I have yet to have been hacked by anyone but my own friend a few years ago.


    First off, bring protection. Have your laughs at that but really, what virus protections are you using? Is it that hard to do research and find the one that's right for you? There are free virus protection programs like Avast, and Avg. Even Comodo for a firewall, that one is amazing. Every computer I've had has had a combination of the 3 [obviously switching avast or avg to avoid conflict].


    Secondly, do not trust strangers. Know your official notices and know your scammers blizzard will never just whisper you in game about anything without proof of their identity. In many cases You can tell by the grammar! You should know by now that phishers are trying harder than ever to get your own hard earned gold and your very account and they wont care how much time you've spent on your glorious toons to get it. They are out for one thing, business.


    If 'blizzard' is sending you emails, check the email out. Does it have blizzards official header, footer? Does it state that your account has been compromised and urges you to click their link? Well, that is a obvious tactic, they want to make it seem like your in danger. After all, if you've put your heart and soul into something you would do just about anything to protect it... right? So they assume you will click their link.


    Never, never click a link within a email stating something like this. Do yourself a favor, and delete it. For good measure, manually type the link to the official blizzard website in your web browser manually and change your password.

    The more you use a password the more compromised it becomes, If you sign up within even your trusted guilds website its still a risk. Its even more a risk seeing as you have to use your email to go along with it in most cases. For all occasions, Keep your passwords unique. You can only blame yourself. For added measure, use a separate email address for things like that.
    [This tip courtesy of "Kordd" from the server Vashj.]

    The whispers you get in-game that will denounce your account as suspended or has been compromised is 9 out of 10 times wrong, add another 1 point to that 9 if you get a message from someone that does not have the blatantly obvious 'blizzard' crown next to their name even in whispers, secondly why would blizzard whisper you in game on an account that is compromised or suspended? Think about that for a second.

    Most browsers like firefox and internet explorer show you where the link sends you, if you hover it over the link itself. Is it a link that does not exactly match the WoW official website? Then that will clue you in to how valid this email from 'blizzard' is.

    Whilst I stick to my habit of never clicking links in emails. If you are concerned that any of that is true it is a very good thing to know the validity of the sender by checking the accuracy of the link(s) in the email itself.
    [This tip curtosy of moderator Kamchak of the forums of zygorguides.]


    Methods of protection You do need to arm yourself just like you do in game. You arent gonna do a end game raid with shoddy green quest gear right? Here are methods listed simply below.

    1.) Get Virus Protection and a Fire Wall.
    2.) Put an authenticator on it! These things do work or they wouldn't be selling that much
    2a.)Download the authenticator software onto your Iphone or Ipod if you can, this is cheaper in the long run and more variant of codes apparently. [Tip curtsy of trevo66 of the Zygor guides forum]
    3.) Don't share your account info with your friend, because you are placing your account safety in his hands.
    4.) Don't Click Links in emails stating that your account is dire jeopardy of any sort, don't be lazy and type it out.
    5.) Get the badboy addon from the official curse website. It will weed out false whispers if you have trouble deciphering which one is an official message and which one is fake.
    6.) Use a Unique password everywhere you go.
    7.) Check for the blizzard crown in whispers ingame.
    8.) Check the validity of the links you get in emails, by moving your mouse over it.


    [I will be adding more suggestions as I see good ones within the post to this one. If you want you can add your own short suggestions I will get around to adding them when I can.]

  3. #3
    Administrator Zygor's Avatar
    Join Date
    October 7th, 2008
    Posts
    3,737
    Great post, thanks! :-)

  4. #4
    Kamchak's Avatar
    Join Date
    November 13th, 2009
    Posts
    2,970
    First of all, excellent post.

    I will add one important check you can perform on these "links" that are sent out to you in an email.

    Mouse over the link and check the bottom of your browser window. Most browsers will show where the link will take you, or the address the link sends you to.

    Further, if you are ingame and get a whisper that your account is suspended, consider this question..... how the heck are you playing in a game to get a whisper that the account you are playing on has been suspended?
    "The voices in my head may not be real, but they have some good ideas."

  5. #5
    I will amend it with that tip right away.

  6. #6
    Newbie
    Join Date
    May 25th, 2009
    Posts
    81
    Great post with great advise

    One thing, I advise gamers with iphones and itouches to get the downloaded version of Authenticator. The Keyring type is not as secure. The keyring type (although it has a large rotation of codes) can over time be predictable. The downloaded version is far more random in its codes.

    I would like to ask one question....

    Do other players get random "hello, how are you" from people in game? Pretty much everytime Im online I get these from people I dont know.....always level 1 toons, which I find odd as all my toons are 80....so we are no where near each other for some one to say hi.
    My question is.....who are these people and what are they trying to achieve?

    Thanks

  7. #7

    Join Date
    December 5th, 2009
    Posts
    1,027
    Gold sellers, just ignore them.

  8. #8

    Join Date
    March 5th, 2009
    Posts
    17
    I've recently noticed a large influx of email messages directed to the email address that I use for Curse. This address is not associated with my WOW account in any way. When I mouse over the link that has the blizzard.com address, I see a completely different address listed. These thieves are getting better everyday. None of my other email addresses get these hacker messages. I am really starting to wonder what the heck is going on over at Curse. Are they releasing their database of subscribers to anyone that writes an AddOn?? Every hacker email message has had my full name and my Curse email address.
    Very strange. Regarding protection, I have always used anti-virus, anti-spyware and a hardware firewall that checks the IP address of every Internet connection both incoming and outgoing. I also never open any ports that game manufacturers insist that you open. The hackers know these ports too. I was shocked the last time that I read my firewall log. So many port scans. It looks like I'm going to have to change my name to an alias over at Curse.

  9. #9
    Kamchak's Avatar
    Join Date
    November 13th, 2009
    Posts
    2,970
    There are companies (most of them in fact) that sell, rent, or lease your information to 'sales listing' companies.
    This is where most of your information is going, on a list available to everyone that has the $$ to buy it.

    It is for this reason alone I place a different name and email on everything. This way, when I get something in an email addressed to 'john doe III' I know its crap and can toss it away.

    IMPORTANT NOTE: anytime... anytime you get any message to log into this that or another and are offered a web address to go to, do not use it.
    Yesterday, ingame, I was given a message from user "blizznotices" that told me I had a mount I had not collected, and a web address to go to. However, when I go into the "manage account" tab from the wow launcher, there is no such mount waiting for me. Also, there was no email sent to me to my main account.
    Yes, the slimballs are getting very creative. If only they worked half as hard to make an honest dollar.
    "The voices in my head may not be real, but they have some good ideas."

  10. #10

    Join Date
    November 21st, 2009
    Posts
    7
    Of course if you do get an ingame message from a 'gm' ask them to appear in front of you in game, most are quite happy to do this.

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •