Overclock.net › Forums › Industry News › Video Game News › [Blizzard] Battle.net Hacked(Important security Update)
New Posts  All Forums:Forum Nav:

[Blizzard] Battle.net Hacked(Important security Update)

post #1 of 91
8/9/12 at 3:52pm
Thread Starter 
I didn't see this posted...

From the third paragraph:
Quote:
We also know that cryptographically scrambled versions of Battle.net passwords (not actual passwords) for players on North American servers were taken. We use Secure Remote Password protocol (SRP) to protect these passwords, which is designed to make it extremely difficult to extract the actual password, and also means that each password would have to be deciphered individually.

Source:

http://us.blizzard.com/en-us/securityupdate.html?utm_source=internal&utm_medium=launcher&utm_campaign=wow&utm_content=left-banner
New Shiny Case
(16 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i5-3570K Asus P8Z77-V LX EVGA GeForce GTX 660 Ti SC G.SKILL 8GB 1600MHZ 
Hard DriveHard DriveOptical DriveCooling
Samsung 840 250GB Toshiba DT01ACA200 2TB Pioneer BDR-207D Cooler Master Hyper 212 Plus 
OSMonitorKeyboardPower
Windows 8 Dell P2311 CM Storm QuickFire Rapid Corsair CX600 
CaseMouseAudioOther
Corsair C70 Deathadder 2013 ASUS Xonar DG Bamboo Connect 
View all
  hide details  
Reply
New Shiny Case
(16 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i5-3570K Asus P8Z77-V LX EVGA GeForce GTX 660 Ti SC G.SKILL 8GB 1600MHZ 
Hard DriveHard DriveOptical DriveCooling
Samsung 840 250GB Toshiba DT01ACA200 2TB Pioneer BDR-207D Cooler Master Hyper 212 Plus 
OSMonitorKeyboardPower
Windows 8 Dell P2311 CM Storm QuickFire Rapid Corsair CX600 
CaseMouseAudioOther
Corsair C70 Deathadder 2013 ASUS Xonar DG Bamboo Connect 
View all
  hide details  
Reply

Gear mentioned in this thread:

post #2 of 91
8/9/12 at 4:05pm
  • Shrak
  • (╯°□°)╯︵ ┻━┻
Not the first time, not the last.
Reply
Reply
post #3 of 91
8/9/12 at 4:08pm
Quote:
means that each password would have to be deciphered individually.

They say that like it's a hard thing to do. Renting EC2 servers from Amazon to do some quick deciphering before they realize a stolen credit card was used is quite easy actually.
Wish I was a Haswell
(10 items)
 
Google Nexus 7
(1 item)
  		 
CPUMotherboardGraphicsRAM
3770K @ 4.8 ASUS P8Z77-V Pro MSI TFIII 7950 @ 1150 G.Skill Trident X 2400 10-12-12-31 4x8GB 
Hard DriveCoolingPowerCase
Samsung 830 256 RAID 0 Noctua NH-D14 Corsair AX-1200 Corsair 800D 
MouseAudio
Logitech G500 Creative Titanium HD 
View all
Other
Google Nexus 7 8GB 
View all
  hide details  
Reply
Wish I was a Haswell
(10 items)
 
Google Nexus 7
(1 item)
  		 
CPUMotherboardGraphicsRAM
3770K @ 4.8 ASUS P8Z77-V Pro MSI TFIII 7950 @ 1150 G.Skill Trident X 2400 10-12-12-31 4x8GB 
Hard DriveCoolingPowerCase
Samsung 830 256 RAID 0 Noctua NH-D14 Corsair AX-1200 Corsair 800D 
MouseAudio
Logitech G500 Creative Titanium HD 
View all
Other
Google Nexus 7 8GB 
View all
  hide details  
Reply
post #4 of 91
8/9/12 at 4:12pm
I got a giggle out of the "should have got an authenticator" posts in the official thread on the D3 forums... redface.gif
Maxes Minesweeper
(9 items)
 
Winter Heater
(10 items)
  		 
CPUMotherboardGraphicsRAM
Phenom II X6 1055T  ASUS M4A87TD EVO XFX Radeon HD 5850 G. Skill F3 DDR3 1600 2x2GB 
Hard DriveHard DriveCoolingPower
32GB ADATA S596 Turbo SSD 1TB SAMSUNG Spinpoint F3 Scythe Mugen 2 Rev. B IN WIN COMMANDER 650W 
Case
COOLER MASTER HAF 932 
View all
CPUMotherboardGraphicsGraphics
i7 2600K Gigabyte P67A-UD3-B3 Galaxy GTX 460 768MB Galaxy GTX 460 768MB 
RAMHard DriveHard DriveCooling
Corsair XMS3 DDR3 1333 2x4GB 64GB ADATA S596 Turbo SSD WD Blue 500GB Scythe Big Shuriken 2 REV.B 
PowerCase
SeaSonic SS-650HT 650W Cooler Master Elite 360 
View all
  hide details  
Reply
Maxes Minesweeper
(9 items)
 
Winter Heater
(10 items)
  		 
CPUMotherboardGraphicsRAM
Phenom II X6 1055T  ASUS M4A87TD EVO XFX Radeon HD 5850 G. Skill F3 DDR3 1600 2x2GB 
Hard DriveHard DriveCoolingPower
32GB ADATA S596 Turbo SSD 1TB SAMSUNG Spinpoint F3 Scythe Mugen 2 Rev. B IN WIN COMMANDER 650W 
Case
COOLER MASTER HAF 932 
View all
CPUMotherboardGraphicsGraphics
i7 2600K Gigabyte P67A-UD3-B3 Galaxy GTX 460 768MB Galaxy GTX 460 768MB 
RAMHard DriveHard DriveCooling
Corsair XMS3 DDR3 1333 2x4GB 64GB ADATA S596 Turbo SSD WD Blue 500GB Scythe Big Shuriken 2 REV.B 
PowerCase
SeaSonic SS-650HT 650W Cooler Master Elite 360 
View all
  hide details  
Reply
post #5 of 91
8/9/12 at 4:16pm
Quote:
Originally Posted by Nope oO View Post

They say that like it's a hard thing to do. Renting EC2 servers from Amazon to do some quick deciphering before they realize a stolen credit card was used is quite easy actually.

Yeah... no

Nothing about cracking properly hashed and salted passwords is quick.

From what I understand even the salt is unique per person, so they can't even check if 2 or more people used the same password and attempt the crack those as higher priority.
Edited by .:hybrid:. - 8/9/12 at 4:19pm
Webcrawler
(16 items)
  		  
CPUMotherboardGraphicsRAM
i5 3570k ASRock Z75 Pro3 Sapphire 7870 XT Boost Corsair Vengeance, DDR3 1600Mhz 
Hard DriveHard DriveOSMonitor
SpinPoint F1 1TB 64GB M4 SSD Windows 7 x64 SyncMaster P2050 
MonitorKeyboardPowerMouse
Dell U2312HM Sidewinder X4 Be Quiet! Pure Power CM L8 430w lenovo generic $1 mouse 
Audio
Xonar DG 
View all
  hide details  
Reply
Webcrawler
(16 items)
  		  
CPUMotherboardGraphicsRAM
i5 3570k ASRock Z75 Pro3 Sapphire 7870 XT Boost Corsair Vengeance, DDR3 1600Mhz 
Hard DriveHard DriveOSMonitor
SpinPoint F1 1TB 64GB M4 SSD Windows 7 x64 SyncMaster P2050 
MonitorKeyboardPowerMouse
Dell U2312HM Sidewinder X4 Be Quiet! Pure Power CM L8 430w lenovo generic $1 mouse 
Audio
Xonar DG 
View all
  hide details  
Reply
post #6 of 91
8/9/12 at 4:21pm
Quote:
Originally Posted by Nope oO View Post

They say that like it's a hard thing to do. Renting EC2 servers from Amazon to do some quick deciphering before they realize a stolen credit card was used is quite easy actually.
Depends on the hashing and salting methods involved, if it has enough rounds of a good crypt function, even amazon EC2 isn't going to crack it anytime soon.

Either way, I updated my authenticator code (not entirely clear if those were compromised?). Though it's annoying you have to remove then re-add it to do that. mellowsmiley.gif
Bladed Fury V2
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 930 @ 3.8GHz ASUS P6X58D-E EVGA/MSI GTX 470 SLI @870 Core/1900 Mem 18GB Mushkin/Corsair 
Hard DriveOSKeyboardPower
Samsung SSD 830 512GB Windows 8 Enterprise x64 Corsair K90 Corsair AX850 
Case
ATCS 840 
View all
  hide details  
Reply
Bladed Fury V2
(13 items)
  		  
CPUMotherboardGraphicsRAM
i7 930 @ 3.8GHz ASUS P6X58D-E EVGA/MSI GTX 470 SLI @870 Core/1900 Mem 18GB Mushkin/Corsair 
Hard DriveOSKeyboardPower
Samsung SSD 830 512GB Windows 8 Enterprise x64 Corsair K90 Corsair AX850 
Case
ATCS 840 
View all
  hide details  
Reply
post #7 of 91
8/9/12 at 4:28pm
Interesting, I actually got an email a few days ago in which Blizzard emailed me a verification code, but I never requested it. Not sure if that is related at all, but as soon as I got that email I changed multiple passwords on different email and game service accounts, just in case.
Foldatron
(17 items)
 
Mat
(10 items)
 
Work iMac
(9 items)
 
CPUMotherboardGraphicsGraphics
i7 950 EVGA x58 3-way SLI EVGA GTX 660ti GTX 275 
RAMHard DriveHard DriveHard Drive
3x2GB Corsair Dominator DDR3-1600 80GB Intel X25-M SSD 2TB WD Black 150GB WD Raptor 
Hard DriveOSMonitorKeyboard
2x 150GB WD V-raptor in RAID0 Win7 Home 64-bit OEM 55" LED 120hz 1080p Vizio MS Natural Ergonomic Keyboard 4000 
PowerCase
750W PC P&C Silencer CoolerMaster 690 
View all
CPUGraphicsRAMHard Drive
Intel Core i5 2500S AMD 6770M 8GB (2x4GB) at 1333Mhz 1TB, 7200 rpm 
Optical DriveOSMonitorKeyboard
LG 8X Dual-Layer "SuperDrive" OS X Lion 27" iMac screen Mac wireless keyboard 
Mouse
Mac wireless mouse 
View all
CPUGraphicsRAMHard Drive
i7-2600K AMD 6970M 1GB 16GB PC3-10600 DDR3 1TB 7200rpm 
Hard DriveOptical DriveOSMonitor
256GB SSD 8x DL "SuperDrive" OS X 10.7 Lion 27" 2560x1440 iMac display 
Monitor
27" Apple thunderbolt display 
View all
  hide details  
Reply
Foldatron
(17 items)
 
Mat
(10 items)
 
Work iMac
(9 items)
 
CPUMotherboardGraphicsGraphics
i7 950 EVGA x58 3-way SLI EVGA GTX 660ti GTX 275 
RAMHard DriveHard DriveHard Drive
3x2GB Corsair Dominator DDR3-1600 80GB Intel X25-M SSD 2TB WD Black 150GB WD Raptor 
Hard DriveOSMonitorKeyboard
2x 150GB WD V-raptor in RAID0 Win7 Home 64-bit OEM 55" LED 120hz 1080p Vizio MS Natural Ergonomic Keyboard 4000 
PowerCase
750W PC P&C Silencer CoolerMaster 690 
View all
CPUGraphicsRAMHard Drive
Intel Core i5 2500S AMD 6770M 8GB (2x4GB) at 1333Mhz 1TB, 7200 rpm 
Optical DriveOSMonitorKeyboard
LG 8X Dual-Layer "SuperDrive" OS X Lion 27" iMac screen Mac wireless keyboard 
Mouse
Mac wireless mouse 
View all
CPUGraphicsRAMHard Drive
i7-2600K AMD 6970M 1GB 16GB PC3-10600 DDR3 1TB 7200rpm 
Hard DriveOptical DriveOSMonitor
256GB SSD 8x DL "SuperDrive" OS X 10.7 Lion 27" 2560x1440 iMac display 
Monitor
27" Apple thunderbolt display 
View all
  hide details  
Reply
post #8 of 91
8/9/12 at 4:58pm

[Engadget] Blizzard suffers security breach, encrypted passwords and authenticator data compromised

Source
Quote:
According to a recent Blizzard security update, now might be a good time cook up a new password. Blizzard's security team found that its internal network has been illegally accessed, and answers to personal security questions, authenticator data and cryptographically scrambled Battle.net passwords have found their way into the perpetrator's hands.
ASUS G51VX-RX05
(8 items)
  		  
CPUGraphicsRAMHard Drive
P7350 2.0GHz GTX 260M 1GB 4GB DDR2 800MHz 320GB 
OSMonitorKeyboardMouse
Windows 7 IIyama ProLite E2773HDS Logitech G15 G5 
View all
  hide details  
Reply
ASUS G51VX-RX05
(8 items)
  		  
CPUGraphicsRAMHard Drive
P7350 2.0GHz GTX 260M 1GB 4GB DDR2 800MHz 320GB 
OSMonitorKeyboardMouse
Windows 7 IIyama ProLite E2773HDS Logitech G15 G5 
View all
  hide details  
Reply
post #9 of 91
8/9/12 at 5:03pm
Uh oh.. I guess I should start changing secret answers for all my accounts.
My Computer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II 965 GIGABYTE GA-790XTA-UD4 XFX 5770 G.Skill Ripjaws 4GB 1333 
Hard DriveOSMonitorKeyboard
WD 500GB Caviar Black Windows 7 Samsung SyncMaster 920w Comfort Curve 2000 
PowerCaseMouseMouse Pad
Antec TruePower 650W HAF 932 Deathadder Qck+ 
Audio
SOUND BLASTER AUDIGY SE  
View all
  hide details  
Reply
My Computer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Phenom II 965 GIGABYTE GA-790XTA-UD4 XFX 5770 G.Skill Ripjaws 4GB 1333 
Hard DriveOSMonitorKeyboard
WD 500GB Caviar Black Windows 7 Samsung SyncMaster 920w Comfort Curve 2000 
PowerCaseMouseMouse Pad
Antec TruePower 650W HAF 932 Deathadder Qck+ 
Audio
SOUND BLASTER AUDIGY SE  
View all
  hide details  
Reply
post #10 of 91
8/9/12 at 5:05pm
  • Joined: Jan 2011
  • Location: Québec, Canada
  • Posts: 2,057
  • Rep: 109 (Unique: 84)
  • Folding Team Rank: 1,853
  •  
    Name Team Rank Points / May Work Units / May
    OCNSplinterize 1,853 560,121 / 0 136 / 0
     
  • Select All Posts By This User
People have been complaining about hacked diablo 3 accounts since release or so... They cant have just figured out that they were hacked.
Mighty mITX
(16 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i5 3570k Asus P8Z77-i Deluxe EVGA GTX 670 FTW  Kingston HyperX 8GB 1600MHz 
Hard DriveHard DriveCoolingOS
Caviar Blue 500Gb SATA2 Samsung 830 128Gb SATA 3 Thermalright Silver Arrow Windows 8 Pro 
MonitorKeyboardPowerCase
BenQ GW2750HM Ducky DK9008G2 PRO w/ Mx Reds - OCN Edition Rosewill CAPSTONE 750-M Bitfenix Prodigy 
MouseMouse PadAudio
Roccat Savu Steelseries 9HD Logitech z523 
View all
  hide details  
Reply
Mighty mITX
(16 items)
  		  
CPUMotherboardGraphicsRAM
Intel Core i5 3570k Asus P8Z77-i Deluxe EVGA GTX 670 FTW  Kingston HyperX 8GB 1600MHz 
Hard DriveHard DriveCoolingOS
Caviar Blue 500Gb SATA2 Samsung 830 128Gb SATA 3 Thermalright Silver Arrow Windows 8 Pro 
MonitorKeyboardPowerCase
BenQ GW2750HM Ducky DK9008G2 PRO w/ Mx Reds - OCN Edition Rosewill CAPSTONE 750-M Bitfenix Prodigy 
MouseMouse PadAudio
Roccat Savu Steelseries 9HD Logitech z523 
View all
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Video Game News

Gear mentioned in this thread:

Overclock.net › Forums › Industry News › Video Game News › [Blizzard] Battle.net Hacked(Important security Update)