Blizzard: Number Of Players Claiming Hacked Diablo III Accounts ‘Extremely Small’

Blizzard: Number Of Players Claiming Hacked Diablo III Accounts ‘Extremely Small’

In addition to launch-time connectivity woes, Diablo III has also been hit with claims of hacked accounts and missing items, adding a layer of confusion and worry to an already confusing, worrisome launch.

Over on the official Diablo III forums, Blizzard has posted a round-up of information that the company has been releasing over the last couple of days, beginning with information on the latest hotfix and the continuing delay of the real-money auction house.

In a third section regarding security concerns, Blizzard confirms that their servers have not been hacked, and that the number of people who have contacted them about possible hacks is extremely small. Not just extremely small! Extremely small.

Here’s Blizzard:

Over the past couple of days, players have expressed concerns over the possibility of® account compromises. First and foremost, we want to make it clear that the and Diablo III servers have not been compromised. In addition, the number of Diablo III players who’ve contacted customer service to report a potential compromise of their personal account has been extremely small. In all of the individual Diablo III-related compromise cases we’ve investigated, none have occurred after a physical Authenticator or Mobile Authenticator app was attached to the player’s account, and we have yet to find any situation where a Diablo III player’s account was accessed outside of “traditional” compromise methods (i.e. someone logging using an account’s login email and password).

To that end, we’ve also seen discussions regarding the possibility of account compromises occurring in ways that didn’t involve these “traditional” methods — for example, by “session spoofing” a player’s identity after he or she joins a public game. Regarding this specific example, we’ve looked into the issue and found no evidence to indicate compromises are occurring in this fashion, and we’ve determined the methods being suggested to do so are technically impossible. However, you have our assurance that we’ll continue to investigate reports such as these and keep you informed of important updates.

The best defence against account theft still includes smart password management (e.g. using a unique password for every site/service and keeping your password to yourself) and scanning for malware and viruses regularly, as well as following additional preventative steps found here. In the end, while no security method is 100% foolproof, the physical Authenticator and Mobile Authenticator app are great ways to provide your account with an extra layer of protection.

Diablo III Update [ Forums]


  • I have no idea whether my account’s been hacked or not, as I haven’t tried to log into it for the better part of a week. Playing a single player game with 250ms ping for five minutes until getting DCed and losing all progress doesn’t qualify as fun in my book. Should have known better and waited a couple of months for something functional.

    • 250ms is not that high of a ping. If you are being dc’d that often contact tech support as the majority of players are not experiencing this.

    • I wish there was a “+1” or “Like” button.

      A couple of nights I have given up playing due to disconnects, and having to restart the zone. It’s good for XP, but it is still quite frustrating.

      The other issue, is the amount of times I have gotten on to see a count down timer on the server “shutting down”. I know often these are just restarts, but at that point I think “Bugger it!” and I head off and do something else!

      • And I want to “+1” or “Like” this

        Last night I was pumped to play some D3 looking at a long session and not 10 min in the server shut down message comes up. Now I dont know if it was a reset or a down for maintenance (I have a feeling it was just a reset) but my motivation was destroyed and ended up just moving on to something else.

  • It doesn’t really surprise me that all those people “claiming” that they were hacked with an Authenticator on their account, or that their session ID was full of shit.

    Now I know what you might say, I’m just buying into Blizzards defensive PR bullshit, but who do you think I should believe, a multi-billion dollar company with their reputation on the line, or an internet pleb who takes joy in lying on the internet (because no-one lies on the internet! *rollseyes*)

    • I can’t say either/or regarding the method, but I lost all my gold and stash items earlier this week. My password was not brute forced (too complex, happened in a 1 hour window) and no one else knows it.

      • Passwords are not stolen through brute forcing, its more likely you picked up a keylogger due to a dodgy flash ad using a 0-day exploit. Its quite common and the ads appear on common gaming sites all the time.

        • That’d be somewhere between very unlikely and outright impossible. I don’t actually do any general surfing on my desktop at home. The majority of that happens on my tablet, which is a WebOS device. If it was a keylogger that managed to jump on there and then propagate via LAN to a Windows device, then report back the information it collected, I’d stop complaining and start being impressed 😛

          • It was confirmed by Blizzard it’s 100% user’s fault, there are hundreds of ways to have your account information stolen including: logging in from another computer, brute forced, having an account with a similar password on another forum that was taken, key logger, phishing, scam links the list goes on and on. The point is Diablo has a much bigger dollar amount on getting an account so although they may already have your details they now have a chance to make money out of them. Unless they h ave direct access to your connection and MiM you will be safe with an authenticator, it’s basic computer security really…. The game was built for multilayer so don’t even bring LAN into it, it’s basically an ORPG with your character information always saved.

  • Part of the reason it’s so small is that for the most part unless you’ve lost gear of a max level character it’s wouldn’t be worth the up to 48 hours it could take for a rollback. Which could send you back levels on Other characters development since the screenshot of your equipment

    I know a guy who lost 300k with an authenticate on it. He suggested that getting that gold back isn’t really an issue anyway since hes getting like 15k an hour just by Playing

  • I know of 2 people have have had gold and items stolen after playing in public games, i would suggest logging into your hardcore player and loading up a game before leaving the game just incase.

  • Been hacked lost some gold.
    Got it back in a couple hours play (poor fools hacked an account that only had a normal level character in it half way through act 2… while I was playing and booted me out… so I dealt with it strait away… they didn’t have much time), a little anoying, but not hugely… of course if it had been an option I would play my single player game purely on my own PC and not have the issue at all
    Changed password, added authenticator, reported the new “friend” on my friends list (I didn’t add them, so the hacker did)…. now I just need to figure out how to delete the “friend”.

Show more comments

Log in to comment on this story!