#152 - Aug. 31, 2010, 6:47 p.m.
One might argue that if a player scans their computer systems regularly, maintains a secure email address and password, never shares any login information, and remains cautious of phishing scams, the Battle.net Authenticator would be a completely unnecessary piece of hardware. Perhaps if the world existed in a vacuum, this would prove true for everyone; however, no security measure is 100% effective, and even the most diligent users can sometimes fall victim to cleverly designed malware or phishing ploys.
While many players are able to avoid compromise by practicing sound system security, at the end of the day, we're all human and capable of making mistakes—even if we're specifically trying to
not make them. For example, a person might accidentally log into an insecure computer, or visit a website that checked out as safe, but was unknowingly infected with malware, or forget to update their antivirus and anti-spyware scanners the day a new definition was released. In these situations, the Battle.net Authenticator can prove invaluable, protecting an account against threats that weren't immediately evident (even to those actively looking for them).
Now, it's important to note that attaching a Battle.net Authenticator to an account does not negate the importance of system security; it's simply an added layer of protection and should complement (not replace) safe browsing habits and security practices. Since the Authenticator works best when paired with other forms of account security, one should continue to invest in anti-malware scans, private passwords and email addresses, and awareness of phishing threats. :)
http://us.battle.net/en/security/