Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
unwanted battle.net purchase email
triprunner
Member Posts: 169
just got an email from battle.net that ive purchased Starcraft 2 for 60 bucks from the US site... well, i lready have S2 and since i live in UK why would i buy it from the US site? besides the CC number is wrong and it said ive purchased it today altho i didnt...
is it a phishing attempt or Blizzard has lost their marbles? links in the email take to a legit battle.net website, checked my account, nothing's missing, no idea what that is, any help?
Comments
Phishing scam, someone already posted that SC2 emails are being sent out despite people already having the copies of the game
Wonder how they managed to get hold of all the battlenet addresses......
Whats the address it is sending you to? ?http://eu.battle.net/en/ in the right one one
http://www.google.co.uk/search?q=Starcraft+2+phisihing+scams&rls=com.microsoft:en-us:IE-SearchBox&ie=UTF-8&oe=UTF-8&sourceid=ie7&rlz=1I7GFRD&redir_esc=&ei=e7hWTPyhD8iD4QafidGnBQ
http://upload.wikimedia.org/wikipedia/en/a/ab/Norsefire-logo.png
yeah, im not going to do any logging with the links provided, Blizzard better sort their stuff out, 'cause i wont be answering ANY of the battle.net queries...
I don't think its Blizzard that is at fault here, most likely they got your email address from a third party site, and this is just a shot in the dark phishing attempt.
Thats your best bet. Never use any links in the emails, ever! Always type in the website address by hand or use a bookmark you made.
This has been fairly common when it comes to battle.net and it doesn't look like something that will ever go away. 11+ Million people is just too much to pass up on and all the criminals have to do is send out several million or so emails and someone is going to click the link and boom they now have that persons account info when they log into the fake site.
I get about 10-20 of these a day and just ignore them. They don't bother me since they go straight in the spam folder and gmail even flags them as phising emails and puts a big warning at the top of every one of the emails.
+1
The fact that Blizzard's phone service is consistently full to bursting in the account department is evidence enough that the WoW account theft ring is a lucrative and thriving business.
Phishing scams are definitely on the rise, its a good practice to 'never ever' use hyperlinks in emails. if you get one, just delete it.. webmail is best for this tbh, as you run less of a risk of getting trojans etc, just by opening the email itself. one of the reasons i stopped using pop3 a long long time ago.
i got that same email. i was freaking out for a second thinking somebody used my credit card linked with the account or something....
?Here it is in all its failed glory.
Hello, thank you for shopping at the Blizzard Store!
StarCraft II®: Wings of Liberty™: 5019809142566646406501081
To use this key to activate the game, simply follow these instructions:
Create a Battle.net account (or if you already have one, log in) at http://us.battle.blizzard.coderedemption.net/login.html (********FAKE FAKE FAKE*******)
Verify your e-mail address. (If you have previously verified your address, skip this step.) From the main Account Management page, click the 'verify this e-mail address' link. Then, check your e-mail account for a verification e-mail. Click the link in this e-mail to verify your e-mail address.
Return to the Battle.net account management page, then click on 'Code Redemption'.
Enter the above CDKey in the code field.
Once you have successfully redeemed this code, you will be able to play the game.
NOTE: If you have previously chosen to gift your digital purchase, attaching this key to their Battle.net account will prevent you from being able to redeem this key with your Battle.net account.
===========================================
Purchase Receipt
===========================================
Customer Account: YOUR@EMAIL.ADDRESS
Order Date: 2010-8-2
Order #: 4118236
(1) StarCraft II®: Wings of Liberty™ - $59.99
Credit Card Number : ****-****-****-4150
Credit Card Type : Visa
Item Subtotal: $59.99
Tax: $0.00
Shipping & Handling: $0.00
Shipping Tax: $0.00
Grand Total: $59.99
===========================================
If you have any questions or concerns about your order, please contact us at:
Phone: Toll-free at (1-800-592-5499 begin_of_the_skype_highlighting 1-800-592-5499 end_of_the_skype_highlighting)
Website: FAKE LINK
Live phone support is available seven days a week, 8:00AM - 8:00PM Pacific Time.
Thanks for shopping with us!
Blizzard Customer Service
Dude, those links are NOT legit, I don't know how people still can't read a URL.
coderedemption.net and blizzard.net are NOT Blizzard's...
This was already established.
No one in here pointed out what the links actually were since the OP somehow sounds like he thinks that this is Blizzard's doing.
Blizzard.net lookup
Registrant:
Blizzard Entertainment
P.O. Box 18979
Irvine, California 92623
United States
Domain Name: BLIZZARD.NET
Created on: 23-Jan-02
Expires on: 31-Jan-15
Last Updated on: 28-Sep-05
Administrative Contact:
Entertainment, Blizzard
P.O. Box 18979
Irvine, California 92623
United States
9499551382 Fax --
Technical Contact:
Entertainment, Blizzard
P.O. Box 18979
Irvine, California 92623
United States
9499551382 Fax --
Domain servers in listed order:
NS-WEST.CERF.NET
NS-EAST.CERF.NET
Also want to add..... spoofing a domain in an email address has been around for.... well, as long as email has existed!
Okay, so they own it, but it isn't in use.
Other then that its email 101 to fake a link in a email. You can very easily make www.battle.net point to www.batttle.net and dupe people that notice notice the small difference in there web browser.
All you did was post the base of the email. Why don't you post up the source of the email along with the headers, instead.
Very lucrative... If you thank about it 10k gold is what like $25. A level 80 character (depending on gear) can bring anywhere from $50 to $200. I imagine a good portion of WoW characters are setting on several thousand gold. I've had 5k on my main character for just about forever and I don't even farm or run dailies anymore.
If you send out say 5 million emails and only 200 people get duped into clicking the links. At this stage there is a good chance there are going to be atleast 1 level 80 character on the account and some even multiple level 80's. Figure you can strip atleast 4k off an account easily. 4k x 200 = 800k gold. Thats $2k someone just made after they sell all that gold off to gold selling websites or other players.
That doesn't even take into account the crimal now has a active account they can use for farming or sell off to a gold farmer to farm gold. Thats just if 200 people act dump and click the link. I imagine the turn over is much much higher then that I would picture more in the multiple thousands range, when you take into account a fair number of kids also play the game.
Then when they contact blizzard to get the account restored. They become a potential target ageain since they now have all there gear and gold back. A good portion of people that get hacked never even know how it happened to them in the first place. Some where just dump luck with emails, but a good portion is torjans and key loggers. Heck if the person doesnt know they have a keylogger on there machine the crimnals and just keep hitting them time after time after each character restore. Or they could play smart and just pop in take an amount of gold off the character at some odd time when the player is at work or something. Do that over a period of several months and they have a cash cow that could go unnoticed for a long period of time.
I think you should edit your post though as right now if someone clicked on the us.battle.blizzard.com it points to http://us.battle.blizzard.codered**ption.net/battlelogin.html (edited) and thats a known phising site. So in a way your doing the work for them right now.
Sorry if I come off with a bad tone. It's not that way, just that I take security and edicutating the public in computer security as a very valid topic. People need to know that the internet is any but a safe place in this day and age.
I see your point..... but honestly, if they click that link and use it after reading this thread.... maybe they should be scammed.
Meh, i'll change it anyways.
I get phishing emails all of the time from people trying to scam me out of my Blizzard or Battle.net accounts. A good rule of thumb is all emails from either will be from noreply@blizzard.com. The Phishers are tricky though. The emails I've gotten have been from addresses like noreply@blizzard.sales.com or noreply@blizzard.review.com and they look very official but the emails and the links in them for both of those are from sales.com or review.com and do not come from Blizzard. Always check the addresses before you click on any of the links.
Bren
while(horse==dead)
{
beat();
}
And when your last friend is hacked due to phishing, when your final MMO account is stolen, then you will recognize what a hella good time we had with penis enlargement emails.
Herodes for Greatest Reply 2010!!
I have gotten several phishing emails in the past week since I created a battle.net account. I quit WoW long before the battle.net merge and havent had an active account with anything blizzard in years.
Last week I created a battle.net account and within days recieved scam emails. I have only played single player mode on SC2 so far. Do not have anyone on friends list and what not.
So I have no idea how the scammers got my email in less than 48 hours. I have never gotten these emails before i registered with battle.net, now they are daily.
Hello.
Phishing has been existing for a long time. If it's not Bank of America, it's Blizzard, Google, Microsoft, a rich prince from Africa, ...
Also, I dont think any phishing attempt from any games with less than 200,000 subscribers would work.
Some email providers are doing good with anti-phishing filters. Try them :P
This is 100% Blizzard's fault.
I had used my old e-mail address when I signed up for WoW. About a year later I stopped using it. It was completely inactive and I never used the account name or password for any other sites. Eventually WoW accounts required to be linked to battlenet (I can't remember what for, around WotLK pre-release I think, maybe for the beta). I used this old e-mail account and linked it to battlenet, since it was tied to my WoW account. Months later long after I quit WoW a friend told me someone was on my WoW account. I didn't see how that was possible since I haven't played for years, but after some searching I found out my old e-mail account was hacked through the secret question - obviously through some brute force attack because I used random gibberish for my secret question. Keep in mind this e-mail account was inactive for almost 2 years. The only possible culprit for release of the e-mail account address was Blizzard and the number of hacking/phising attempts rose significantly. There was an obvious leak. (This couldn't possibly be a keylogger since the e-mail account was inactive for years thus there was nothing to log, and couldn't be the result of a phising attempt for the same reason).
Fast forward to now (this was months ago). I've been using this e-mail account since I stopped using the old one and have never received a single spam e-mail. I buy SC and suddenly I start getting phising attempt e-mails for WoW from fake Blizzard accounts. Coincidence? No, it's painfully obvious there is a leak of battlenet e-mail addresses. I'm really pissed off. Now I have to worry about this account getting brute forced which has far more max level MMO accounts tied to it. Wonderful.
Also I'm annoyed by the real ID thing. Who thought this would be a good idea? Now I can't add people I know online for free they could do something with my information as I have a one of a kind name and could easily be looked up. Thanks so much Blizzard.
I've been saying that for quite sometime now, Blizzard's got a leak. But does anybody believe me?
Nope!
And any suggesting of it, keeps getting shouted down by the WoW fan base. Despite the evidence being right in front of their eyes.