Battle.net hacked, Aussie account data compromised

Powered by SC Magazine
 

Hackers access encrypted passwords, recovery questions from North American servers.

Hackers have broken into the Battle.net online gaming community owned by Blizzard and accessed email addresses, encrypted passwords and account recovery details.

The hack was detected this week and affected gamers outside of China.

Passwords, recovery questions and “mobile and dial-in authenticators” were compromised on accounts that use Blizzard's North American servers. This included players from Australia, New Zealand, Southeast Asia and the US.

The information was not enough for accounts to be accessed, Blizzard president Michael Morhaime said in a statement.

He did not reveal how the hackers broke in but said financial data was not compromised.

Passwords were encrypted with the Secure Remote Password Protocol (SRP) which made recovery difficult.

However, Blizzard will soon force gamers on the North American servers to change their recovery questions and passwords, and has recommended they change those passwords re-used on third party web sites.

Morhaime said Blizzard “quickly took steps to close off [the vulnerability] and began working with law enforcement and security experts to investigate what happened”.

“At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised.”

Morhaime warned users that only phishing emails would ask users to enter login details.

“We take the security of your personal information very seriously, and we are truly sorry that this has happened,” he said.

Affected users can read Blizzard's account security advice page.

Copyright © SC Magazine, Australia


Battle.net hacked, Aussie account data compromised
 
 
 
Top Stories
Australia passes data retention into law
Mammoth last-ditch effort by Greens, indies knocked back.
 
ATO to kill off e-Tax
Veteran software to be replaced by more modern myTax.
 
CSC embroiled in CBA IT bribery scandal
ServiceMesh named in alleged dodgy dealing.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Do you support the Government's data retention scheme?

   |   View results
Yes
  8%
 
No
  92%
TOTAL VOTES: 1259

Vote