I am so mad that I could punch a baby.

Last night I ran BRD for the first time and got *almost* to level 60. After the run, I logged off and went to sleep, eager to come home this afternoon and log on and proudly announce *DING! 60!* but it was not meant to be.

I tried to login at about 7pm CST, but I got an error message saying that my password was invalid. I checked the caps lock and tried again - no dice. I remember reading that they were taking servers down to correct some issues and thought that perhaps something got borked with user accounts so I went to the web site and rest my password then logged in.

The first thing that I noticed was that Kallixti had somehow magically hit level 60. The next thing that I noticed was that almost ALL of my loot (including my 160 gold) was GONE. Kallixti was also in the Arathi Highlands (when I logged off, she was in the Eastern Plaguelands). I opened an online ticket and alt-tabbed out to my desktop to start running scans for keyloggers. I use Firefox so I know that it wasn't one of those new drive-by Active X controls. First scanning program (Spyware Doctor) showed nothing but a bunch of cookies in my web cache. I tabbed back to WoW and spoke with a GM (who was BEYOND nice to me) and explained my plight. The GM went through the standard security lecture while I ran another scan with F-Secure. Still nothing but cookies. I thanked the GM and followed up with an email to customer service detailing everything that had happened, then I went to check on the other characters on other servers.

They were ALL GONE.

I had three high-20/low-30 PvP characters on Dark Iron so that I could play with the Penny Arcade guys and they were GONE. From what I have read on the boards, some people have had their characters restored, but I'm not holding out much hope.

I run a pretty locked-down system and I don't use any type of UI enhancements, so it is pretty unlikely that a keylogger somehow got on my system. I do not install software on this workstation very often and when I do it is usually something that is pretty well-known and free of crap. I have not put ANY Sony CD's in this system since the rootkit fiasco and my outbound logs from my router do not show anything strange, so I am at a loss as to how my account got hacked. I would say that it was done by brute force, but Linnaris pointed out that it would be HIGHLY unlikely that a username AND a password could both be guessed, especially seeing as how my account name is a bit odd.

Anyone had this happen to them? Any idea how it happened?

Have you shared your account with anyone? Have you purchased gold? Have you purchased a leveling service or a pvp service?

^ What Valneron said. If you've ever logged in to your account from a computer not your own, you'd be vulnerable. I've read several stories of people claiming the same things as you--locked down system, careful about downloads and browsing, etc, and then they come back later and post ' ... yeah my friend's computer had a trojan on it.'

My brother was hacked also, but he did have two keyloggers on his system >_< came from downloading a game demo off of a filesharing site.

Do you use the same username/password combo on a website or anything?

I still think it was ceiling mouse.

Do you use the same username/password combo on a website or anything?

I still think it was ceiling mouse.


Actually, I *do* use that username/password combo on a few sites, but those have been changed.

I am beginning to agree with you - ceiling mouse did it.

Didn't get much sleep last night - tonite I get a bottle of whiskey and a pistol.

And wait.

There was an issue with one of the big gamer sites...it might have been RPGO...where a hacker embedded some malicious code into the site itself. People who used the same username and password for the site as they did to log into WoW got their passwords stolen.

One of the "here's what to do" threads suggests clicking the "remember my username" option on the login screen so that you only type it once. A logger that grabs your password isn't every useful if you're not typing your username, too.

There was an issue with one of the big gamer sites...it might have been RPGO...where a hacker embedded some malicious code into the site itself. People who used the same username and password for the site as they did to log into WoW got their passwords stolen.

One of the "here's what to do" threads suggests clicking the "remember my username" option on the login screen so that you only type it once. A logger that grabs your password isn't every useful if you're not typing your username, too.


I've never been to that site and I have the "Remember username" box checked. I thought about this last night. I rarely ever have to type my username to login so even if there WERE a keylogger on my system, it would not capture my username.

I don't use and mods and I REALLY do not share account info.

Boy I'm tired.

This has kinda got me freaked. :(

Disgruntled ex? That's the only other thing I can think of.

What about CTMOD.COM? UI.WORLDOFWAR.NET had the keylogger issue as well.

You haven't logged into WoW or the Wow forums from a foreign computer? You've never shared your account information with ANYONE? Since you use the same username/pw combo for multiple sites (including WoW) could you have shared the information with a friend so they could gain access to a specific website?

I blame Linnaris.

What about CTMOD.COM? UI.WORLDOFWAR.NET had the keylogger issue as well.

You haven't logged into WoW or the Wow forums from a foreign computer? You've never shared your account information with ANYONE? Since you use the same username/pw combo for multiple sites (including WoW) could you have shared the information with a friend so they could gain access to a specific website?


Nothing like this.

The only thing that I can think of is a few game sites that I signed up for using the same username/password.

Anyone know if Live.com or hotmail has been sploited recently?

I'm so sorry this happened to you! I hope they can recover some of your stuff. And I hope you find out how it happened so they can hang the jerk!

I have actually been changing my password for WoW every few months and it is not the same as any other password I use. Having seen what has happened to you, I think I will keep changing it on a regular basis. Maybe we can all benefit from your misfortune.

/hug

This has kinda got me freaked. :(


Yup, this is why I don't even so much as use add-on's anymore. Too many ass bags out there with too much time on their hands.

Sorry for the poor luck Riot.

I feel your pain man!! Had this happen to me 2 months ago with my 60 Hunter on Gorgannash. They took everything. My toon was naked, all my bags, even my mount was gone! My druid, that I play with now was a level 35. They even took all of his things too! That had to be out of spite! What the hell could a level 35 possibly have worth stealing? I even had my guilds enchant bank on my account because I was the guilds 1st and highest enchanter. So all those mats, and recipies for enchanting and about 950 gold were gone!!! It started the same way as you described, logged it and password did not work. So I reset the password and the rest is history. Still not sure how it happend, I don't use the same password and user name for anything else. I have logged on to my account with other machines though, so that may be it. Anyway, I put in a ticket and pleaded my case to just about everyone at Blizzard. Kudos to Blizzard because they were great and they restored everything on both toons except my enchants on my gear and weapons. They even restored the enchant bank! It took about a month for them to do it so you might have to sit tight for a bit. Hell with changing your password every few months... I do it very other time I play, never repeating the same password twice! No joke! I will be damned if this happens to me again! Blizzard stated clearly that they will only restore an account once. So good luck if you are struck by lighting twice! Hope this helps. See you in the game!