gideonkain said:
All a hacker has to do is plug in my email and click a button, I am a Computer Programmer, I know how computers work, "Hacking" is usually little more than downloading a free application on the internet and supplying an email address for it to then go brute force it's way into your private information.
I am the Ghost of Steve Jobs. See? It's easy to appeal to your own authority on the internet. The problem is, even if your authority is legitimate, it doesn't make you right.
Brute force is the least used form of "hacking". One, they would have to correctly guess the username and password independently. Two, most systems (I would hope Blizzard is included) limit login attempts to prevent it. Usually something like more than 5 in one second or something.
However, you imply that they already had your e-mail address and knew it had a WoW account. How did they know that?
In password security, you never ever use whole words or personal information. First because if someone does get your password, they now have that information. Second, these are the first things that brute force applications guess.
"Hacking" is mostly done through social engineering, phishing, and keylogging.
Getting "Hacked" six times, I have to wonder a couple of things. Have you ever changed the e-mail for your battle.net account? Because even if they brute force guessed the first time, they certainly know that e-mail works for sure now. You've only mentioned your latest password. Have you used any other passwords? Or do you change it to the same thing every time Blizzard resets it for you?
I am saying that it is most likely an error on your part. It isn't classy, but at the same time; it isn't exactly unfair to come to the conclusion that someone who uses personal information in passwords, and even admits as much in a public forum, is likely to have fallen victim to a phishing, keylogging, or social engineering scam. It is also pretty reasonable to assume that even if such a person is a computer programmer and "knows how computers work", that they don't have a strong grasp on computer security.
I'm sorry you got "hacked", it looks like you are taking steps now in changing your password and getting an authenticator. Good for you.
However, I don't share your opinion that Blizzard is to blame for this.