Battle.net hacked, Aussie account data compromised

Powered by SC Magazine
 

Hackers access encrypted passwords, recovery questions from North American servers.

Hackers have broken into the Battle.net online gaming community owned by Blizzard and accessed email addresses, encrypted passwords and account recovery details.

The hack was detected this week and affected gamers outside of China.

Passwords, recovery questions and “mobile and dial-in authenticators” were compromised on accounts that use Blizzard's North American servers. This included players from Australia, New Zealand, Southeast Asia and the US.

The information was not enough for accounts to be accessed, Blizzard president Michael Morhaime said in a statement.

He did not reveal how the hackers broke in but said financial data was not compromised.

Passwords were encrypted with the Secure Remote Password Protocol (SRP) which made recovery difficult.

However, Blizzard will soon force gamers on the North American servers to change their recovery questions and passwords, and has recommended they change those passwords re-used on third party web sites.

Morhaime said Blizzard “quickly took steps to close off [the vulnerability] and began working with law enforcement and security experts to investigate what happened”.

“At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised.”

Morhaime warned users that only phishing emails would ask users to enter login details.

“We take the security of your personal information very seriously, and we are truly sorry that this has happened,” he said.

Affected users can read Blizzard's account security advice page.

Copyright © SC Magazine, Australia


Battle.net hacked, Aussie account data compromised
 
 
 
Top Stories
Photos: iTnews Benchmark Awards countdown begins
Just a few days left until entries close for 2014.
 
Australian Govt to rethink cyber security strategy
Six-year old policy to be refreshed.
 
The failure of the antivirus industry
[Blog post] Insights from AVAR 2014.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  8%
 
Your telco, ISP or utility
  7%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  15%
 
A State Government agency (Health dept, etc)
  5%
TOTAL VOTES: 1035

Vote