Not without a man in the middle attack which requires them to have installed malicious software on your PC that intercepts the login info.
Seriously. Move your thread. Go to your first post and edit it. Use the drop down menu to change it to Customer Support from General Discussion. That is your best chance at unraveling it.
Talking about it on GD won’t get you any answers. What you are describing, and only taking gold, is just not the behavior hackers usually engage in. If you want to know what happened to your gold, and what steps you need to take now, CS is the place to be. I think Orliya is around today.
If you’re really going to insist that the system itself isn’t working, then all the more reason to bring this to the attention of the Customer Support Forums where they can look at the history of account actions as Mirasol described and assess what/when things happened.
I remember a post from last week about someone who was hacked. This person said the attacker called support and told them they no longer had access to the authenticator and convinced them to remove the authenticator from the account.
Another possibility was someone in your household. It won’t ask for the authenticator if it was the same computer/same location. I know you mentioned it’s only your family, and I’m not assuming anything would have been done with malicious intent. Only that it’s a technical possibility. Regardless, I wish you the best of luck in recovering items. I support the suggestion of posting over in the customer service forum. A blue may even be able to tell you if the location was suspicious.
Total across all accounts, I have about 450K on this guy, about 130K on another and just some random odd amounts on the rest.
I just love it how people are like “Nah man it’s all on you, it’s your fault” and try to make excuses, I haven’t changed what I do on my computer in years, plus my PC does regular virus checks.
Even with the login info, how did they bypass the authenticator? You try log in from ANYWHERE and it pops up asking for that info, even when I tried to log back in it asked me for that info.
I’m 100% sure unless someone broke into my home, broke into my phone, didn’t wake me of my wife up while browsing my phone that sits next to my head while I sleep, left no trace of getting into my home and took nothing, all for less than 1 million gold, I’m sure they never had access to my phone to somehow get access to my authenticator.
And the last time I logged into this account outside of my own PC was when I logged into my second PC, which has not had anything installed on that since I built it, and it has nothing else installed outside of Windows, Bnet, MS Teams and Steam. The last time before that? Would have been at an internet cafe back in the days of vanilla, which was a different account.
And good luck on them phishing my data, I barely even check my emails, ignore all random calls and texts from people that are not known, so unless my wife or kid has done something insecure, then yes, they bypassed the authenticator somehow.
Last SMS from Blizzard before today was October 20202 telling me my password has been changed, 2.5 years ago. If they changed my password since than I would be logged out from the game and Bnet and asked to log back in.
I even went into my Blizzard account to check, my phone number was listed as **** *** *XX and the XX was the correct 2 digits. I asked to change my number and to get a new code via SMS which came through instantly, so they never changed my phone number. And even if they got access to my PC and took all my data, how did they bypass the authenticator and SMS access? Why did I not get any log in requests or codes sent to me?
You all try to blame the person that was hacked, but never answer the question, how can an account with an authenticator be logged in and not have the authenticator notified that someone is trying to log in?
And no, not yet, I will wait for my ticket first and see what the outcome is.
It can happen, but removing the authenticator is one thing, I still have my authenticator access, it made me use it when I changed my password and logged back in. The post I remember seeing was a CS just giving someone access to bypass the authenticator, we found this out because when the person that was hacked got another CS, they told them that was what had happened.
There HAS to be a way to bypass the authenticator, there is no way any company anywhere in the world would allow any account to be locked permanently because of an app on a phone.
It can’t. If someone tries to log in with your email/password from a new location that you have not been using, it will trigger an Authenticator Challenge. That is why you need to go post on the CS forum.
All you are doing here is speculating instead of asking the people who can actually see your account and give you accurate information and advice.
There is not. The Auth has to be removed from the account if someone loses access to the app. That requires proof a person is the registered account holder.
Blizzard has not had a call-in line for more than 10 years. People can’t just call and sweet talk a rep for something.
Having a ticket isn’t going to put you ahead of other cases in the CS log to be investigated. You should be doing both at the same time if this really was a hack. 700k across all characters, which means they took time to load multiple characters, and you only lost gold, the most easily replaced commodity.
You can see why people are having a hard time believing this is the whole story. Anyway, good luck.
Yes. Exactly. Move the thread to CS. Anything else is just chatting about it instead of trying to actually get answers from the people who have the data.
You want to know what happened to your gold? Move to CS.
First I have a ticket logged, see what the outcome of that is first, second you are all telling me you can’t bypass the authenticator, but it happened.
That’s because I have nothing of value, no rare mounts on the AH, no items in any bank worth anything. By guild alt bank is full of useless battle pets, they don’t sell. What are they going to do, sell all my alts gear for another 10K? Or make a quick 700K withdrawal and leave?
Why wait? They can clear the ticket if necessary, and are more likely to respond sooner since it’s the weekend. No reason to leave up a post in General Discussion that has nothing to discuss in a public sense. Unless we’re just looking for attention and overdramatics…
Yes but it happened, you guys are telling me something that doesn’t add up to what actually happened. My authenticator is still linked to my account, it still asked me to use it when I changed my password, but they still got in. How?
Holy hell, I will move it to make you all happy. I didn’t post here looking for help, that’s what the ticket I logged hours ago was for.
So instead of finding out what happened to your gold, probably with answers today, you are going to wait days on a ticket?
CS are not GMs, they don’t do account restorations, but they can address the issues you are concerned about. Why even bother to make this post at all if you don’t want real answers?
No, people can’t bypass the Auth. There are limited options for what can happen:
Someone submitted ID and got it removed. You claim that did not happen because it is still on there.
Someone used man-in-the-middle software on your PC to grab your code and use it within the 30 seconds it was good for. You say that did not happen either. That you are security conscious and regularly scan.
The account login happened from a trusted location that did not trigger the Auth request and that person had your login/password.
It is a display error and the gold is not actually gone.
YAY! Hopefully someone can tell you what happened to your gold and give you great advice while you wait on your ticket.
Don’t assume. That is not very nice and may not be what is going on.
You don’t know what happened. That’s the point. That’s why you need to talk to CS and find that out. That’s why speculating in GD is pointless at best, and fearmongering at worst.
Hacking someone for a measly 700k sounds personal. They wouldn’t gain anything from stealing it. Are you sure your UI isn’t broken? I had a day last year where all of my gold was missing but it turned out to be the UI.
This is VERY concerning, Akapally - this isn’t easy to do.
Yes, this account has an authenticator - and has had one since 2018.
Anyone have remote access to your phone or PC?
Could anyone have cloned your phone? Could someone have gotten hold of your seiral number and restore code of the authenticator?
In all the years I’ve been here - this is the first time I have seen this - while an authenticator is still on the account. Either someone shared the login info - or they have access to your devices they should not.
It’s gold, aside from transmogs and spending it on useless crap on the AH, it’s only gold, no one here really needs gold to play the game. So yes, I am happy to wait the estimated 24 hours for an answer.
This is impossible and there is no way around it, that code on the authenticator is on my phone, and the authenticator only asks to be used when you log out (or change a password) and need to log back in, which I haven’t done before today since I installed my Bnet.
And the only places I have ever logged in since starting this account are my PC’s at home.
As for the gold, yeh it’s gone, when I try to mog it tells me I don’t have enough gold.
ready before they ban you for selling gold
