The Moonkin Repository

Discussions, information and links to all things Moonkin
It is currently Sun Apr 20, 2014 8:18 am



Post new topic Reply to topic  [ 11 posts ] 
Author Message
 Post subject: New Virus-Be on the lookout!
PostPosted: Sun Feb 28, 2010 4:15 pm  
User avatar

Orbital Owl Cannon
Joined: Thu Aug 07, 2008 1:29 pm
Posts: 3993
Location: Baelgun - US
pbguild: Crisp
pblevel: 85
pbrace: Night Elf
pbgender: Female
pbclass: Druid
Offline

Stolen from MMOChampion.com
Quote:
Trojan succesfully hacks Authenticator Protected Accounts
A new virus spawned on the internet a few days ago and seems to be the first trojan capable of hacking a WoW account protected by an Authenticator. It was confirmed by Blizzard a few hours ago.
Quote from: Kropacius (Source)
After looking into this, it has been escalated, but it is a Man in the Middle attack.

http://en.wikipedia.org/wiki/Man-in-the-middle_attack

This is still perpetrated by key loggers, and no method is always 100% secure.

Basically, what the virus does is fairly simple after you're infected :

* The next time you log in World of Warcraft, the game asks for your Authenticator code.
* The virus intercepts it, send it to another server, and sends a wrong one to Blizzard = You get an error.
* The people behind the virus now have a few seconds/minutes to use the "real" code while it's valid to change your password / empty your account / guild bank.


How to check if you're infected
Just search for a file named "emcor.dll" on your computer, it is most likely located in "C:\Users\(Your user name)\AppData\Temp" but I suggest that you check everything just to be sure. If you do find the file, delete it and make sure you update your anti-virus to prevent any further problem.

To be honest, if you found this file your account is probably already compromised.

What does it mean exactly?

* Yes, you can get hacked even if you have an authenticator, the chances are MUCH lower but you're not invulnerable.
* It definitely isn't an excuse to not have an authenticator. We're talking about a single virus here and the authenticator will save your ass 99% of the time.
* Get a decent anti-virus, buy an authenticator, you'll be safe.

_________________
Image
Foofys Cupcake Factory


Top
 Profile My Photo Gallery  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Mon Mar 01, 2010 12:12 am  
Pewpewpoultry
Joined: Sun Aug 30, 2009 7:26 pm
Posts: 32
Offline

Thanks for letting us know!


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Mon Mar 01, 2010 5:30 am  
User avatar

Badgekin
Joined: Mon Nov 16, 2009 9:43 am
Posts: 234
pbguild: Sereníty
pblevel: 85
pbrace: Night Elf
pbgender: Female
pbclass: Druid
pbarmoryguildlink: http://eu.battle.net/wow/en/guild/frostmane/Seren%C3%ADty/
pbarmorycharlink: http://eu.battle.net/wow/en/character/frostmane/Kaytie/
Offline

Until this morning, it wasn't tripping any of the usual AVs, and Kapersky's the only one I've heard confirmed that it is flagging on. HiJackThis has been marking it as a concern, so I'd advise using that to search for it just in case.

_________________
http://eu.battle.net/wow/en/character/f ... tie/simple


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Wed Mar 03, 2010 7:53 am  
User avatar

Badgekin
Joined: Fri Jan 01, 2010 4:00 am
Posts: 281
Location: Israel
pbguild: ExQuisite
pbrace: Troll
pbgender: Female
pbclass: Druid
Offline

I'm very worried about this. I don't get viruses, but this one scares me. Will definitely run HiJackThis tonight!

_________________
Image
I make sigs for $1. PM me for info
Mclelle wrote:
Hey guys , i heared you like RNG , So we put some RNG in your RNG so you can RNG while you RNG......


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Sun Jun 26, 2011 2:26 am  
Doomkin
Joined: Thu Apr 23, 2009 6:05 am
Posts: 1006
Offline

<-- happy he doesn't use an authenticator


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Wed Jun 29, 2011 6:58 am  
Crit-chicken
Joined: Thu Jan 01, 2009 12:32 pm
Posts: 404
pblevel: 80
pbrace: Night Elf
pbgender: Female
pbclass: Druid
pbarmorycharlink: http://www.wowarmory.com/character-sheet.xml?r=Elune&cn=Lissanna
Offline

Shinryu wrote:
<-- happy he doesn't use an authenticator

Uhm... Without an authenticator, any plain old keylogger can get your account info.

With an authenticator, it is VERY rare to get hacked (maybe a handful of like 10 people with authenticators versus tens of thousands of people without authenticators have been hacked across the years). I'm not sure why you would be happy to not use an authenticator.

This old (March 2010) post addressed a security issue that actually hasn't been a problem lately, since they have changed how authenticators work like twice since this old thread was posted.

Not having an authenticator simply makes you less secure than having an authenticator.

_________________
Moonkin/resto Druid Blog: http://www.restokin.com
New druid podcast: http://teamwafflecast.com/


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Wed Jun 29, 2011 7:11 pm  
Doomkin
Joined: Thu Apr 23, 2009 6:05 am
Posts: 1006
Offline

Wow...wtf I necroed a thread >.>

Way to go for reading dates/times >.>


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Mon Jul 04, 2011 7:32 pm  
User avatar

KFC
Joined: Thu Jun 09, 2011 2:36 pm
Posts: 3
Location: Zangarmarsh
pbguild: Chewbacca Defense
pblevel: 85
pbrace: Troll
pbgender: Female
pbclass: Druid
Offline

It's been mentioned, but without an authenticator, your password can get bruteforced pretty easily. Happened to me. Authenticator is more security, not less.


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Tue Jul 05, 2011 2:53 am  
User avatar

Badgekin
Joined: Fri Jan 01, 2010 4:00 am
Posts: 281
Location: Israel
pbguild: ExQuisite
pbrace: Troll
pbgender: Female
pbclass: Druid
Offline

Shinryu wrote:
Wow...wtf I necroed a thread >.>

Way to go for reading dates/times >.>

GJ Shin :P

_________________
Image
I make sigs for $1. PM me for info
Mclelle wrote:
Hey guys , i heared you like RNG , So we put some RNG in your RNG so you can RNG while you RNG......


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Tue Jul 05, 2011 4:52 am  
Doomkin
Joined: Thu Apr 23, 2009 6:05 am
Posts: 1006
Offline

Doviya wrote:
Shinryu wrote:
Wow...wtf I necroed a thread >.>

Way to go for reading dates/times >.>

GJ Shin :P

You know I swear this popped up when I hit the "check new posts" button, but must've hit another one instead... sigh

:cry :zzz :cry :nomnomnom :cry


Top
 Profile E-mail  
 
 Post subject: Re: New Virus-Be on the lookout!
PostPosted: Tue Jul 05, 2011 3:22 pm  
User avatar

Orbital Owl Cannon
Joined: Sun May 25, 2008 1:05 pm
Posts: 2849
Location: Alberta, Canada
pbguild: Tortured
pblevel: 3
pbrace: Tauren
pbclass: Druid
pbarmoryguildlink: http://www.wowarmory.com/guild-info.xml?r=Skywall&gn=Tortured
pbarmorycharlink: http://www.wowarmory.com/character-sheet.xml?r=Skywall&cn=Teranin
Offline

I swear.


Don't you be making me turn this announcement around.

_________________
Image


Top
 Profile  
 
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 11 posts ] 


All times are UTC - 5 hours


Who is online

Users browsing this forum: No registered users and 1 guest


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  


World of Warcraft phpBB template "WoWMaevahEmpire" created by MAËVAH (ex-MOONCLAW) for EMPIRE guild (v3.0.2.2) - wowcr.net : World of Warcraft styles & videos
© World of Warcraft and Blizzard Entertainment are trademarks or registered trademarks of Blizzard Entertainment, Inc. in the U.S. and/or other countries. wowcr.net is in no way associated with Blizzard Entertainment.
Powered by phpBB © 2000, 2002, 2005, 2007 phpBB Group