Blizzard president Mike Morhaime told the world about a security breach that has compromised a significant amount of users’ Battle.net account details.
The breach reportedly admits a list of legitimate Battle.net e-mail addresses, cryptographically hashed passwords, answers to private security questions, and data about mobile and dial-in two-factor authentication. Billing data—including credit card numbers, addresses, and genuine names—appear to be secure at this point in the investigation, the company alleged. The attack struck Blizzard’s North American servers, which are used by players in North America, Latin America, Australia, New Zealand and Southeast Asia.
Blizzard alleges it discovered the breach on August 4, and has been figuring out non-stop to identify the culprits before disclosing inside information of the attack late this evening. “Our first priority was to re-secure our network, and from there we operated at the same time on the investigation and on informing our global player base,” Morhaime composed. “We wanted to strike a balance between speed and accuracy in our reporting and worked diligently to serve both equally important needs.” The security hole that contributed to the security breach, which was not publicly identified, births since been patched, the company said.
“We take the security of your personal information very seriously, and we are truly sorry that this has happened,” Morhaime finalized.