Change Your Battle.net Password

@Lurkero: LOL. Correct-horse-battery-staple.

cool, they can play as much Diablo III as they want because i could not care less about that fucking game.

they said something about global accounts too.

Can you even change your security questions?

@Bell_End said:

this is why we need biometrics as security pronto. nobody would be able to hack my face

Well, you say that, but in all honesty it's just a different form of password. To verify what your face/eye/fingerprint look like Blizzard still need to keep a copy of it, right? So hackers could just steal that, and write a program that presents that data when asked for your biometrics. That's all scanners do, convert real world shit to data, and data is easy to copy.

All the more reason to get a fucking authenticator.

¡Viva la revolución! Haha

If only I had real answers to the secret questions maybe I would remember them better.

Oh, those hackers!

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

Unprofessional... companies need to be held accountable for the security of our personal information!

@Bell_End: Are you fucking serious? Its Blizzard's fault for not having enough security, as much as it is the hackers fault for breaking in.

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

@_Horde said:

The security question is "banana".

I think you mean BANANER

I used to think hackers were cool, in-line skating, club kids who fought "the Man" in between sexing up a young Angelina Jolie. I dug their non-conformist lifestyle and their appreciation of classic television. My illusions have been shattered, my admiration is no more.

This is why we can't have nice things...then again, I don't think I have a Battle.net account so who am I to complain? Really, I wanted an excuse to reminisce about Angelina Jolie's breasts.

Because of the Real Money auction house, Blizzard might actually be breaking the law by not notifying people about the security breach sooner.

@Demoskinos said:

@theanticitizen

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

Only if you are dumb enough to keep the same password for both services.

I don't think it's dumb really.

I work tech support for clinics and we have close to 20 different systems we have to keep seperate passwords for, this does not include our personal accounts, so keeping them the same, or at least similar, is almost a must.

GG Blizzard. Good to know all those monthly money is going to good use.

@Xeirus said:

@Demoskinos said:

@theanticitizen

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

Only if you are dumb enough to keep the same password for both services.

I don't think it's dumb really.

I work tech support for clinics and we have close to 20 different systems we have to keep seperate passwords for, this does not include our personal accounts, so keeping them the same, or at least similar, is almost a must.

No it's dumb, critical services should never share the same password.

Come on hackers, stop being so dumb.

Just another reason to have two-factor authentication wherever you do business. Because this way, you don't give a fuck even if someone gets your password.

"Greetings!
 
It has come to our attention that you are trying to sell your personal Diablo III account(s).
As you may not be aware of, this conflicts with the EULA and Terms of Agreement.
If this proves to be true, your account can and will be disabled. 
It will be ongoing for further investigation by Blizzard Entertainment's employees.
If you wish to not get your account suspended you should immediately verify your account ownership. 
 
You can confirm that you are the original owner of the account to this secure website with:
https://us.battle.net/login/en/?ref=http%3A%2F%2Fus.battle.net%2Fd3%2Fen%2Findex&app;=com-d3
 
Login to your account, In accordance following template to verify your account.
 
* First and Surname
* Secret Question and Answer
Show * Please enter the correct information
 
If you ignore this mail your account can and will be closed permanently.

Once we verify your account, we will reply to your e-mail informing you that we have dropped the investigation.
 
Regards,
 
Account Administration Team
Blizzard Entertainment 
http://www.blizzard.com/support/
Diablo III , Blizzard Entertainment 2012"

Well.

@Rawson said:

All the more reason to get a fucking authenticator.

You think a company failing to keep your info safe deserves more of your hard earned cash ? ... For failing ? No no! I'll change my password and not give them money, thank you very much.

@Korwin said:

@Xeirus said:

@Demoskinos said:

@theanticitizen

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

Only if you are dumb enough to keep the same password for both services.

I don't think it's dumb really.

I work tech support for clinics and we have close to 20 different systems we have to keep seperate passwords for, this does not include our personal accounts, so keeping them the same, or at least similar, is almost a must.

No it's dumb, critical services should never share the same password.

Feel free to try and manage 20-30 different passwords and get back to me.

Been a while since I signed in, thanks for the heads up.

I can hardly wait for the all digitial future... the future where we have a unique logon for every single publisher required to play games and this kind of thing happens every week.

@Xeirus said:

@Korwin said:

Feel free to try and manage 20-30 different passwords and get back to me.

With that many passwords, you should just write them down on paper. These days it's a hell of a lot more likely that some server somewhere will get hacked then someone will break into your house and steal the notepad in your desk drawer.

@Xerxes8933A said:

@Xeirus said:

@Korwin said:

Feel free to try and manage 20-30 different passwords and get back to me.

With that many passwords, you should just write them down on paper. These days it's a hell of a lot more likely that some server somewhere will get hacked then someone will break into your house and steal the notepad in your desk drawer.

Here's an idea. Book-encode your passwords. Use the same formula for all your passwords (the third word of chapters 5 9 and 12 for instance) and make that your password, but use a different book for each password.

@Xeirus @Korwin yes, because, you know, having different passwords GUARANTEES that hackers cannot change/access passwords and information right? Surely they've never thought of that.

For what it's worth -

I saw a few people saying that Blizzard uses Case Sensitivity -- they don't. And through a blog (which I don't remember anymore, I'm sorry!) a former Blizzard security guy gave a pretty good explanation as to why they don't need to be. All the same, he admitted that it would still be a rather convenient step.

On the plus side, it means you can totally enter your information with the caps lock on. So there's that.

@Xeirus: Get lastpass.

@GenocidalKitten said:

@Xeirus said:

@Korwin said:

@Xeirus said:

@Demoskinos said:

@theanticitizen

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

Only if you are dumb enough to keep the same password for both services.

I don't think it's dumb really.

I work tech support for clinics and we have close to 20 different systems we have to keep seperate passwords for, this does not include our personal accounts, so keeping them the same, or at least similar, is almost a must.

No it's dumb, critical services should never share the same password.

Feel free to try and manage 20-30 different passwords and get back to me.

I do and do you know how I do it 1Password. Easy

But, the fact that you have a bunch of passwords to manage and it's hard to do, doesn't make it any less dumb to have same password for stuff, all it does is justify why you do it.

I think you're all giving me advice for something I don't need... I've yet to be hacked (knock on wood) and I didn't really ask for advice. I was simply explaining why people keep their passwords similar and calling people stupid for doing it when 99% of people are guilty of it just rang a little hollow and pompous.

@Forcen said:

@Xeirus: Get lastpass.

That's a really cool software, I doubt I'll use it, but thanks for sharing I always wondered if something like that was available, maybe one day :)

@GenocidalKitten said:

@Xeirus said:

@Korwin said:

@Xeirus said:

@Demoskinos said:

@theanticitizen

@Xeirus

@TheMasterDS said:

I'm going to trust them and leave the password as it is. I really don't care if someone plays my Diablo 3 or Starcraft II account, there's nothing of value there. Well, I suppose if someone got in and deleted my progress or sold off all my stuff that'd be a bummer, but seeing as I haven't played Diablo 3 in months it wouldn't be that much of one.

I felt the same way, haha. I'm not even mad, because I just don't care.

The thing is they would also have access to your email account tied to your battle.net account, and if that's tied to any sort of financial information...well...

Only if you are dumb enough to keep the same password for both services.

I don't think it's dumb really.

I work tech support for clinics and we have close to 20 different systems we have to keep seperate passwords for, this does not include our personal accounts, so keeping them the same, or at least similar, is almost a must.

No it's dumb, critical services should never share the same password.

Feel free to try and manage 20-30 different passwords and get back to me.

I do and do you know how I do it 1Password. Easy

But, the fact that you have a bunch of passwords to manage and it's hard to do, doesn't make it any less dumb to have same password for stuff, all it does is justify why you do it.

This. My job involves me having privileged access to multi government systems... needless to say there's a lot to keep track of and fairly strict security requirements.

So what about the ol' hackers vs crackers? Does anyone still care (or ever cared) about the difference?

@Majkiboy:

I think people stopped caring around the time Matthew Lillard started screaming "HACK THE PLANET!"

must use this as an excuse to remind everyone how little i care about D3. after playing it for 400 hours

don't worry though guys every time a thread or news story even remotely mentions Blizzard or D3 i will remind you all just how much i don't care and i will always finish the sentence with something witty and clever like FUCK YOU BLIZZARD or sometimes even just FUCK YOU

@Majkiboy: Not much to discuss there, generally people who root iPhones and Android phones are cool dudes in most people's books while Chinese hackers that steal your identity should be shot.

Why did it take so long for them to tell us? The battle.net post is dated 9th of August and they got hacked on the 4th. I seem to remember people bitching at Sony when they took too long to tell people that they had been hacked. Maybe people are just getting used to it, which kind of sucks. Fucking A-hole hackers.

My account already got hacked, lost all my items and gold, and the funny thing is I was on the second act in normal so I basically had shit gear. So now I have to start the game over... Great

Never played a Blizzard game. Kinda stoked now I haven't.

sometimes i wonder if its always the same person who breaks into these companies' databases and takes our info. Some sort of Dr. Evil-like maniac who plans to hold our email addresses ransom for ONE MILLION DOLLARS. But of course that cant be true...

As an Australian using a UK copy of the game because it was slightly cheaper, consider me mildly pleased I've avoided this.

Yea.... So I may have forgotten my secret question answer..... meh then again haven't played starcraft in a while.

@JoeyRavn said:

@CrossTheAtlantic said:

@Ravenlight said:

@Bell_End said:

this is why we need biometrics as security pronto. nobody would be able to hack my face

You say that, but it would only be a matter of time.

Clearly, @Bell_End hasn't seen Mission Impossible. It's only a matter of time, people!

Nicholas Cage is way ahead of you guys. Waaay ahead.

I see your Cage and raise you another Criuse: Minority Report :D

But that's a rather more er...extreme form of identity theft lol

@Bell_End: No, it's possible. I'm pretty sure I saw that in a Nicholas Cage movie, so it's gotta be true. Wesley Snipes did it with an eyeball on a pen in Demolition Man. you want to lose your eyeball!!?!

I want my money back...and the time you stole from me Blizzard...and a baby murlock toy.

I just went through the battle.net password recovery system to figure out just how easy it would be for someone to change my password and log into my account. Seems like Blizzard sends a code to the mobile phone you registered with the account, and only then can you reset the password. So I guess the danger is minimal at best.