Blizzard Protecting World of Warcraft Through the Telephone

[Tom Goldman]

Blizzard Protecting World of Warcraft Through the Telephone

If you want to avoid being hacked in World of Warcraft, just pick up a phone.

Blizzard has developed a new level of security for Battle.net accounts called the Dial-in Authenticator. Simply by using the common telephone, players of World of Warcraft [http://www.amazon.com/World-Warcraft-Cataclysm-Pc/dp/B002I0HKIU/ref=sr_1_1?ie=UTF8&qid=1289485375&sr=8-1] will now be able to protect themselves behind a new wall of security.

Battle.net users that sign up for the Dial-in Authenticator will be asked to call into Blizzard's hotline, a toll-free number, when something about their login attempt becomes unusual. They may be trying to login to a World of Warcraft account from a different computer than is normally used, or from a different country.

After calling in, users will then have to enter a PIN plus a single-use security code displayed on the screen. Once everything is verified, the login attempt completes as usual.

For now, the Dial-in Authenticator is only compatible with World of Warcraft accounts attached to a Battle.net account, and for Battle.net account management, though this may change in the future. It's a completely free service, but is currently only available in the U.S.

Blizzard points out that this new method of protection reduces the possibility of account theft from various common methods, such as keylogging. Anybody trying to beat the Dial-in Authenticator needs access to your phone and PIN number. Account theft has been an issue with MMOs since it was worth it to steal someone else's account, so it's nice to see Blizzard constantly devising new foolproof, or close to foolproof, methods to stop the online crime.

To find out more about the Dial-in Authenticator, visit Blizzard's support page here [http://us.blizzard.com/support/article.xml?locale=en_US&tag=dialinauth&rhtml=true]

Permalink

 

[Zing]

The damn authenticator on my iphone was annoying enough to constantly have to get out, I removed it after a week or so. I imagine having to call a number every time would be even more time-consuming.

 

[Alfador_VII]

First they push the Authenticator keyfob, or iphone app, which was ok, and gave you a free pet in-game.

Now they're trying to make us phone then for "unusual" logins.

What's next, mandatory blood and urine tests before you can play WoW?

 

[VitusPrime]

Whilst I guess it's good to have all of these authenticators...ain't it getting a little silly now to log in? Say if your raiding and you were to dc...you'd have to ring someone just to get back to the raid which would result in wasted time no doubt...or even a wipe.

 

[WNxSajuukCor]

You don't have to call every time you are trying to log in, only when your account logs in from somewhere else that you normally don't play from.

 

[CCountZero]

Should really finish reading before you post?

It specifically states that it's optional, and that it will only come up when you're not going about it as usual.

While I won't use it myself, it sounds like a great feature.

 

[Charli]

Guys 'unusual logins' count as say: Someone has logged your account in a different country.

Or IP address entirely different from your usual one. It's not going to be as annoying as the authenticator in my opinion and I'd much rather have it over that thing.

There are a SELECT few people who might be bummed out by this, travellers who play WoW on the go, or those who use IP address randomizers.

Otherwise I say, Oh why not, if you really don't want to be hacked that badly... And are really paranoid, it's a decent idea.

 

[Negatempest]

So this is different from a bank calling you to let you know that there has been unusual activity? If you have been playing WoW in the same location for the past year or so and than there is a key-logger trying to access your account from a different part of the city, state or country wouldn't it be good to block them with a simple phone call mechanic?

 

[Estocavio]

It makes sense, but only if they pull it off well - I think itd be better if you required a voiceprint of some kind, just to be double sure.

 

[knhirt]

Spoiler: Pick up a phone!

[youtube]http://www.youtube.com/watch?v=fdqAbnGs-fw[/youtube]

Relevant.

--

This seems like a pretty good idea. I'd hate to have my hard-earned stuff stolen.
Then again, I'm pretty much immune to keyloggers, 'cause of Little Snitch.

 

[Onyx Oblivion]

Google made me use my phone when my Gmail was hacked...

Seems as good a way as any.

 

[KeyMaster45]

The damn authenticator on my iphone was annoying enough to constantly have to get out, I removed it after a week or so. I imagine having to call a number every time would be even more time-consuming.

You won't have to call in every time you log on if you use the service. You'll only be prompted to make a call if something about your login is fishy. (you'd have seen that if you'd read the article) Still, its going to be a free optional service for now wouldn't hurt to add the option as an extra layer.

And yeah, the iPhone authenticator is a bit of a pain since it has to load every time you open it but that's why they've got the normal authenticator that's a quick press of the button.

 

[Jodah]

My only concern (as long as it remains optional) is how sensitive the system is. The official post made by Blizz said that you "may" get a call if something suspicious happens. Maybe I am fixating on the word too much but it tells me there is a 50/50 chance it will trigger if you are being hacked.

 

[Exort]

The damn authenticator on my iphone was annoying enough to constantly have to get out, I removed it after a week or so. I imagine having to call a number every time would be even more time-consuming.

Did you even read the post...
Only when there is something unusual, you will be required to call.

 

[Baldr]

I have the key fab authenticator, I've been using for about a year now. It just something you get use to. It only sucks when your someplace else and don't have it with you and want to play wow or login to the forums.

A couple months ago I had a second account without an authenticator. I wasn't using it. Someone hacked it and used up a scroll of resurrection on it and spammed everyone in game and got the account banned. Luckily I was able to recover it.

 

[Demodeus]

whats the big deal about protecting your account with a thousand walls of code and a 14 page password?
you get hacked - you call costumer service, get your account back a day later with a new password and possibly even a reimbursement for the time lost.

 

[Alar]

This is pretty sweet. I can finally check my accounts and play WoW when I'm not at home and forgot my authenticator!

 

[WhiteTigerShiro]

whats the big deal about protecting your account with a thousand walls of code and a 14 page password?
you get hacked - you call costumer service, get your account back a day later with a new password and possibly even a reimbursement for the time lost.

You've obviously never been hacked, then. Firstly, it's annoyingly inconvenient (and that's putting it lightly). You log-on to play a little WoW, then find out that you have to wait 3 days before you can play the game because your character has been picked clean. Then there's the fact that you have to go through the hassle of reporting him, making sure to run a virus sweeper to try and get rid of the key-logger (assuming that's how they got your info)... then three days later you FINALLY have your account back up and running, and as you're cleaning-out all the "Item Returned" mails from the mailbox, you realize that they missed a few things. Maybe they were important, maybe they weren't; the point is, they're gone now. For good. Oh, and there is no reimbursement. You got your own stupid ass hacked; it's your fault. Blizzard doesn't owe you anything and you should be happy that they at least restore your character (as well as they can at least).

So yeah, I guess if you don't see all that hassle as a big deal, then fine whatever. The authenticators have always been optional anyway, so feel free to remove any protection from your account.

 

[Veloxe]

I can't wait until they introduce the DNA authenticator to make sure you are really you when logging on! Good times.