There have been many reports of players have their Battle.net accounts stolen from them and robbed of all their items and gold in Diablo 3. There are threads at reddit, the official Diablo 3 forums, and the official forums again. There are more reports on various other sites from MMORPG.com to GameFAQs to IGN to Gamespy. People seem to be losing access to their accounts regularly. And this is, importantly, including people with Authenticators.
Reports from players indicate that it is a select group of people who have been appearing on many players’ Recently Played lists. An Examiner article gives some of the names collected from the official forums as “leyiong”, “Nevin”, “SBJunkie”, “luckllezz”, and “McLeast”.
Many players have been submitting tickets after losing their accounts and have managed to receive their accounts and items back, minus a few hours worth of gametime. It’s not quite as bad as a few days worth, at least, but still quite a hassle for many players. That said, players reportedly are subject to only two restorations total.
Blizzard’s official recommendation is to change passwords and acquire an Authenticator, but many players are claiming that they lost their accounts despite owning any of the three Authenticators.
It’s easy to see why Diablo 3 would be a prime target for such widespread attacks: the Real Money Auction House actually trades in real money. It’s a step beyond simply raiding some accounts for some high level equipment to sell on a website that a few people will see, items can be traded from account to account and sold quickly and relatively anonymously for quick cash.
So, how can anyone protect themselves from this? Firstly, do not play any Public Games. Keep it within your Real ID friends and trusted Battle.net friends. Do not accept Friend Invites unless you know the other person. Get an Authenticator for an added level of security. Change your Battle.net password to something you don’t use anywhere else.
Let’s hope this mess is all fixed soon.