Blue Tracker
World of Warcraft Blue Posts
Diablo II: Resurrected Blue Posts
Diablo III Blue Posts
Hearthstone Blue Posts
Overwatch Blue Posts
Heroes of the Storm Blue Posts
Diablo IV Blue Posts
BlizzCon Blue Posts
Warcraft Rumble Blue Posts

Relying on Authenticators is Bad

Forum Avatar
Threir
#0 - Aug. 30, 2010, 10:50 p.m.
Blizzard Post
Let's think about this for a moment. Doesn't an authenticator just mask the problem? You could still have a keylogger or virus.

Do a good job keeping your computer clean you don't really need an authenticator.

But you have an authenticator. Everything is okay. WoW is more important then that credit union or online checking account or VISA card purchase you made with sensitive information.

The authenticator gives you the ability to relax and let your guard down. As long as you can log into WoW everything is fine right? Not so.

Get virus protection too and practice good surfing habits, don't open weird emails, etc..
Forum Avatar
Lylirra
#152 - Aug. 31, 2010, 6:47 p.m.
Blizzard Post
One might argue that if a player scans their computer systems regularly, maintains a secure email address and password, never shares any login information, and remains cautious of phishing scams, the Battle.net Authenticator would be a completely unnecessary piece of hardware. Perhaps if the world existed in a vacuum, this would prove true for everyone; however, no security measure is 100% effective, and even the most diligent users can sometimes fall victim to cleverly designed malware or phishing ploys.

While many players are able to avoid compromise by practicing sound system security, at the end of the day, we're all human and capable of making mistakes—even if we're specifically trying to not make them. For example, a person might accidentally log into an insecure computer, or visit a website that checked out as safe, but was unknowingly infected with malware, or forget to update their antivirus and anti-spyware scanners the day a new definition was released. In these situations, the Battle.net Authenticator can prove invaluable, protecting an account against threats that weren't immediately evident (even to those actively looking for them).

Now, it's important to note that attaching a Battle.net Authenticator to an account does not negate the importance of system security; it's simply an added layer of protection and should complement (not replace) safe browsing habits and security practices. Since the Authenticator works best when paired with other forms of account security, one should continue to invest in anti-malware scans, private passwords and email addresses, and awareness of phishing threats. :)

http://us.battle.net/en/security/
Forum Avatar
Lylirra
#165 - Aug. 31, 2010, 7:05 p.m.
Blizzard Post
Q u o t e:
Anyways i just copy-paste my password. no need for an authenticator.


Unfortunately, there are some sophisticated forms of malware that can actually "see" what's saved to your computer's clipboard—meaning, even if you copied and pasted your password into the login screen instead of typing it out, the malicious program would still be able to capture the data.

In the end, a holistic approach to security is best. If you need to take some time to reevaluate your current security measures in light of the information above, then definitely do so as soon as possible. In addition to the Battle.net Account Security Awareness page I linked previously, you might also want to check out this step-by-step guide: http://us.blizzard.com/support/article/30794
Forum Avatar
Lylirra
#169 - Aug. 31, 2010, 7:08 p.m.
Blizzard Post
Q u o t e:
i think youre forgetting the vacuum of space


SCIENCE!
Forum Avatar
Nethaera
#218 - Aug. 31, 2010, 7:41 p.m.
Blizzard Post
Q u o t e:


SCIENCE!


It's poetry in motion.