| View previous topic :: View next topic |
| Author |
Message |
OldScotch
Administrator
WoW Main Toon:
Morbidwrath
WoW Profession One:
Mining
WoW Profession Two:
Engineering
Joined: 28 Feb 2003
Posts: 7915
Location: Toronto
|
 Posted: Tue Mar 09, 2010 10:25 am Post subject: Hackers bypassing wow authenticators
|
 |
|
http://www.tomshardware.com/news/blizzard-warcraft-authenticator-hack,9821.html
It doesn't actually bypass it, it simply records the authenticator input just like your password - it then takes advantage of the fact that the autheticator code stays active for 30 seconds and uses that time to login to your account manager with the freshly acquired password/authenticator code to change your password, and again to the game to steal all your stuff.
I don't know what, if anything Blizzard is doing to fix this. A possible solution would be to impletment a one-use policy on the authenticators, so as soon as you enter the code, the same code can't be used again. It'd be a bit of a pain because if you enter it wrong you have to wait 20 seconds or so for a new code. That'd be fine with me as a compromise.
That still doesn't change that there's a keylogger on your system though; Blizzard might do well to host approved mods on battle.net
_________________
These are stone killers, little man. They ain't cuddly like me.
 |
|
| Back to top |
|
 |
Shadowpound
LMG Member
WoW Main Toon:
Shadowpound
WoW Profession One:
Herbilism
WoW Profession Two:
Alchemy
Joined: 27 Jul 2005
Posts: 651
Location: Virginia Beach, VA
|
| Posted: Tue Mar 09, 2010 11:43 am Post subject:
|
|
|
Wow.. I had no idea that the online stuff for World of warcraft was so Lucrative that someone would develop a keylogger program to get around even the authenticators. wow...
not to mention you only have 30 seconds.. is that even possible? I mean come on.. you have to get the code and enter it in 30 seconds before the code resets.. yeesh
_________________
Shadowpound Level 80 Tauren Warrior (Herb/Alch)
Madmage Level 80 Undead Arcane Mage (Skinning/Miner)
Shadowsjudge Level 80 Belf Pally (Ret/Holy)
(Miner/blacksmith)
Shadowzulin (formerly Trollhunter, Sorry Nate)  level 70
(Skin, Miner) |
|
| Back to top |
|
|
OldScotch
Administrator
WoW Main Toon:
Morbidwrath
WoW Profession One:
Mining
WoW Profession Two:
Engineering
Joined: 28 Feb 2003
Posts: 7915
Location: Toronto
|
| Posted: Tue Mar 09, 2010 12:14 pm Post subject:
|
|
|
It would have to be done with a script, the keylogger causes your game to crash so the machine it has waiting to login remotely is just waiting to jump on it.
_________________
These are stone killers, little man. They ain't cuddly like me.
|
|
| Back to top |
|
|
dasnorm
LMG Member
WoW Main Toon:
Daslord
WoW Profession One:
inscribing
WoW Profession Two:
herbing
Joined: 22 Apr 2003
Posts: 567
Location: Calgary
|
| Posted: Wed Mar 10, 2010 8:45 pm Post subject:
|
|
|
my anti virus software comes with a virtual keyboard(so you mouse in your password) screw u keyloggers
_________________
can i hurry up and win the lotto so i can sc2 all day??!?!?
REALID= dasnorm@shaw.ca |
|
| Back to top |
|
|
|
FAQ
Search
Usergroups
Register
Profile
Log in to check your private messages
Log in
Calendar
