Hackers breach Battle.net gaming community

Powered by SC Magazine
 

Aussie encrypted passwords, email details stolen.

Hackers have broken into the Battle.net online gaming community owned by Blizzard and accessed email addresses, encrypted passwords and account recovery details.

The hack was detected this week and affected gamers outside of China.

Passwords, recovery questions and “mobile and dial-in authenticators” were compromised on accounts that use Blizzard's North American servers. This included players from Australia, New Zealand, Southeast Asia and the US.

The information was not enough for accounts to be accessed, Blizzard president Michael Morhaime said in a statement.

He did not reveal how the hackers broke in but said financial data was not compromised.

Passwords were encrypted with the Secure Remote Password Protocol (SRP) which made recovery difficult.

However, Blizzard will soon force gamers on the North American servers to change their recovery questions and passwords, and has recommended they change those passwords re-used on third party web sites.

Morhaime said Blizzard “quickly took steps to close off [the vulnerability] and began working with law enforcement and security experts to investigate what happened”.

“At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised.”

Morhaime warned users that only phishing emails would ask users to enter login details.

“We take the security of your personal information very seriously, and we are truly sorry that this has happened,” he said.

Affected users can read Blizzard's account security advice page.

Copyright © SC Magazine, Australia


Hackers breach Battle.net gaming community
 
 
 
Top Stories
ANZ looks to life beyond the transaction
If digital disruptors think an online payments startup could rock the big four, they’ve missed the point of why people use banks, says Patrick Maes.
 
What InfoSec can learn from the insurance industry
[Blog post] Another way data breach laws could help manage risk.
 
A ten-point plan for disrupting security
[Blog post] How can you defend the perimeter when it’s in the cloud?
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
What is delaying adoption of public cloud in your organisation?







   |   View results
Lock-in concerns
  29%
 
Application integration concerns
  3%
 
Security and compliance concerns
  27%
 
Unreliable network infrastructure
  9%
 
Data sovereignty concerns
  21%
 
Lack of stakeholder support
  3%
 
Protecting on-premise IT jobs
  4%
 
Difficulty transitioning CapEx budget into OpEx
  3%
TOTAL VOTES: 1040

Vote