New Blizzard/Battle.net Scam

 

Image Credits: Battle.net

[alert alert_type=”” ]Update 04/19/13: The domain is no longer registered but the scammers will rotate to different URLs.[/alert]

If you are an account holder with blizzard/battle.net you no doubt encounter numerous scam emails telling you that your account has been compromised. Well the scammers are getting more devious. Behold the latest in a string of scams. This time they even acknowledge the need for more account security by mentioning a blizzard account validation feature.

Greetings!
Recently,the problem of account invasion is getting worse and worse which cause enormous players’ equipments and virtual currency stolen.This severely damages the benefits of mass players,also causes our company lose a lot of customers.
Our company has to adopt some measures to safeguard our common benefits in order to strengthen the safety of mass players’ accounts,and firmly resist the account to be stolen again.Through our company’s research and investigation to xxx customers,we will make the following decisions:we launch a package of updated code strengthen system and dynamic code protection card which can effectively prevent the accounts invaded.We will send this package of code protection system to players free of charge.
Please open this connection:
ht tp://www.blizzard.com/secure/ref=https%3A%2F%2Faccount%2Fmanagement%2Findex.xml&app=bam&locale=true
If your account passes the check successfully,we will send this package of dynamic code protection card to you in the form of e-mail.
In 3 days after you receiving the e-mail,if you don’t submit your information,we have right to freeze your account,every player is obligated to protect the safety of the account.You must work together with us to be determined to crack down all the behaviors of destroying games.
If you had already authenticator your account,please disregard this automatic notification.
Regards,
The World of Warcraft Support Team
Blizzard Entertainment
http://www.blizzard.com/support/wowindex/
I’ve cleansed the first link so that you don’t accidentally click on the scam link. But here’s where the link points to. Please don’t follow it unless you know what you are doing.
ht tp://www.blizzard-authenticator-security.net/index.htm

As always, be careful before clicking a link especially from emails. This also applies to links in twitter, facebook and other social media sites. This problem is growing now that there are url shortening services, as you don’t know where this link will be taking you. That’s why I would recommend you find out where the link goes before clicking it, even from a trusted source such as a friend. you can add a + to the end of a bit.ly url to see the stats. There is also a firefox plugin to help you filter these urls as well.

Update 04/19/13

Blizzard has a few resources to combat these Phishing attacks:

https://sea.battle.net/support/en/article/phishing

Here’s a list of fake domains being used:

http://www.phishtank.com/target_search.php?target_id=122&valid=All&active=All&Search=Search

Agent[31]

Agent[31] is a Cyber Pyscho. He might be doing home network, cybersecurity, or surfing the cyberwebs. Reach into his cybernet and glean some (hopefully) useful information.