Blizzard Account Phishing Email

Proving again that World of Warcraft is big business, I got a phishing email this morning trying to get me to send all my account information to somebody in order to keep my account from being suspended.

HELLO!

It has come to our attention that you are trying to sell your personal World of Warcraft account(s).

As you may not be aware of, this conflicts with the EULA and Terms of Agreement.

If this proves to be true, your account can and will be disabled.

It will be ongoing for further investigation by Blizzard Entertainment’s employees.

If you wish to not get your account suspended you should immediately verify your account ownership.

You can confirm that you are the original owner of the account by replying to this email with:

Use the following template below to verify your account and information via email.

  • First and Surname
  • Date of birth
  • Address
  • Zip code
  • Phone number
  • Country
  • Account e-mail
  • Account name
  • Account password
  • Secret Question and Answer

Please enter the correct information

If you ignore this mail your account can and will be closed permanently.

Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.

Regards,

Account Administration Team
Blizzard Entertainment

This follows the pattern of dozens of similar emails I have seen advising me that I needed to provide information for my eBay, PayPal, or financial institution account.

  • I’ve been accused of doing something that I am quite clearly not doing to provoke me into responding quickly without thinking.  The idea is to get you in the mood to quickly clear your good name.
  • I am asked for information to confirm that the account in question is mine.  This includes information that Blizzard always tells you that no Blizzard representative will ever ask you for.
  • I am asked to respond to an address, in this case the email reply-to address that looks close to valid.  This time it was “blizzard@mail-blizzard.com.”  The address actually displayed as “blizzard@blizzard.com” until I hit reply, and the reply-to was different.

Now getting an email like this isn’t exactly news.  As I said, I have seen dozens of variations of this sort of thing.  But I figured it was timely, what with Tobold also writing about account security, to just check and make sure that we all know NOT to respond to an email like this.

In my case, this email showed up in the in-box of an account which has no association with any of my Blizzard accounts, but one I use to create accounts on gaming sites where I may or may not return, so it is easy to remember with a standard password that is not very secure.

Blizzard, like any company that faces such account hacking threats, has a long page of information about various hacking and phishing threats, how you can help avoid them, and what you should do if you are a victim.

I personally did what Blizzard requested on the page, which was to forward the email with “show headers” enabled to “hacks@blizzard.com” so they are aware of yet another phishing attempt.

5 thoughts on “Blizzard Account Phishing Email

  1. mbp

    Dear Mister Ancient

    My name is mudakiLLa and I sorry you for contact in this unusual way. I saw your toon in Iron Forge and you looked like a leet player who I can trust.

    My brother was officer in a MAJOR LEET RAID GUILD until noobs gang up and got him kicked for ninja. BEfore he go he take all the gold from the guild bank: 214,748 that is TWO HUNDRED AND FOURTEEN THOUSAND SEVEN HUNDRED AND FORTY EIGHT GOLD. Sadly the noobs reported him and now his account is ban but before he kicked he gave all the gold to my toon. Now I have gold but the noobs know I am his brother and if they see me with the money they report me and get me ban too. I need help to transfer the money to a new character that the noobs do not know. If you help me with this I give you TWENTY PERCENT that is 42,0000 GOLDS for help me.

    I feel you are trusty player who knows the ropes and I am sure you help me with this. Once you give me your accounts details and password I can make the transfer and give you FORTY TWO THOUSANDS OF GOLD.

    Once you send me your accounts

    Like

  2. Wilhelm2451 Post author

    Wow, after getting scammed by that email announcing that I had won the Darnassus Microsoft Internet Lottery, this is the way to recoup my losses!

    Like

  3. We Fly Spitfires

    It’s crazy that this stuff works but it does… it only needs to affect 0.001% of people to be a success really.

    Had a similar thing over in Scotland where people were advertising apartments to rent and then when you contacted them, they would give some bull story about being out of the country and you should send them the first month’s deposit and they’ll send you the keys etc. I couldn’t people anyone would fall for something so blatantly treacherous until my wife told me that her friend did it and got screwed!

    It’s even worse with computer emails that look official because a lot of people are very naive about anything technical.

    Like

  4. Vett

    I recently returned to WoW on a casual basis (via their free retrial) and after a few days my account was hacked by gold sellers.How exactly did this happen is still a mystery to me since I am always VERY careful with emails (I’ve seen ones like Wilhelm posted) scanning my computer, etc…. VERY TRAMATIC experience but within a week Blizzard had me all put back together! Since then I have got myself the Blizzard authenticator and I can’t say enough about. For $6.50 you get a cool pet and the peace of mind that your account is safe from those nasty gold sellers!!!!!! Just thought I’d share….

    Like

  5. Ben

    Hey. Just got a similar email, the only difference being that now they seem to have updated their scam with a look alike login page as opposed to asking you to reply with you account info via email.

    Like

Voice your opinion... but be nice about it...

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s