Fake Battle.Net Password Reset Emails You Need To Avoid
I was going through my junk email folder a couple days ago and noticed that I had gotten several emails from Blizzard that said that my Battle.net password had been reset and I would need to click the link below to get a new password.
At first I thought, “What the heck, how is that even possible?” But then I thought, “Wait, I just logged in to WoW and my password works just fine. What kind of vile sorcery is this?”
Below is the actual email that I received. As you can see they have gone to great lengths to make sure that the email appears to come directly from Blizzard and appear as official as possible. When I pressed ‘Reply’ to see who the ‘Reply-To’ address was set as, it was a Blizzard email address. Therefore, the unsuspecting person can easily be tricked.
I ignored the email for a few days until I got another one yesterday. Now I started getting irritated by these spammers who are trying to hack accounts. I carefully read the email to discover where the malicious site was located. Then I found it:
That is the URL of the site you would actually be going to. The part of the address that says US.Battle.Net is just a subdomain as meaningless as WWW.
I just wanted to write this post as a public service announcement and give you all something to beware of and watch out for. Clearly the hackers are very active at the moment.
Please tell your friends to watch out because it would be way too easy for someone to get worried and instinctively click a link that will cause them to have their account hacked.