Account Security #1
We've investigated several reports of "session spoofing," as reported both in these forums and elsewhere on the internet. We treat these kinds of reports very seriously; however, to date, we have yet to identify a single case of compromise which was the result of a player joining or participating in a public game.
Additionally (highlighted the important part):
Regarding this specific example, we've looked into the issue and found no evidence to indicate compromises are occurring in this fashion, and we've determined the methods being suggested to do so are technically impossible.
Even so, we're continuing to investigate related reports. If you have evidence which supports your claim that such reports are "100% true," then please relay that information to our support representatives. If you're just spreading hearsay, however...well, that's just not cool. Spinning the rumor mill isn't helping the community, it's only making it dizzy.
We've provided a lot of information on the topic of account security recently, which is definitely worth a review. Here's a recap of the highlights:
Account Security #2
Lots of people reporting hack claims. Are they legit or false claims? How does Blizzard know?
You mean of accounts being compromised?
Some reports are legitimate, some are not, and some are simply misunderstandings. The important thing is that our customer support team investigates each and every report of compromise we receive, and will assist in any way possible. In the case of a verified compromise, that may include restoring characters to their previous states and educating players on how to improve security. In the case of a misunderstanding, it may be simply letting players know that they logged into another region on which they hadn't yet created any characters (an easy mistake to make).
If you're curious, our restoration process for Diablo III is available here.
I just want to reiterate one point really quickly, just so that it's perfectly clear for anyone who may be reading (pulled from here):
Over the past couple of days, players have expressed concerns over the possibility of Battle.net® account compromises.First and foremost, we want to make it clear that the Battle.net and Diablo III servers have not been compromised. In addition, the number of Diablo III players who've contacted customer service to report a potential compromise of their personal account has been extremely small. In all of the individual Diablo III-related compromise cases we've investigated, none have occurred after a physical Battle.net Authenticator or Battle.net Mobile Authenticator app was attached to the player's account, and we have yet to find any situation where a Diablo III player's account was accessed outside of "traditional" compromise methods (i.e. someone logging using an account's login email and password).
This still holds true, and we will investigate every report of an account compromise that is brought to our attention (as noted previously). (Blue Tracker / Official Forums)
Account Security #3
You shouldn't thank us for such a terrible thing. You should be reviewing the information here. I hope that provides some insight into the steps you can take to secure your computer and your Battle.net account.
Account compromises are extremely unfortunate and it's perfectly understandable that tensions will rise while the topic is discussed on the forums. That said, I'm going to put my trust in the idea that we're all capable of having a conversation without throwing attacks back and forth.
Less yelling. More listening. On all sides.
Here's an example of an exchange of words that doesn't have to be so caustic.
What advice would you give to those of us who are not, as you seem to assume, completely new to using a computer? I have never clicked any links from this forum or any other forum regarding Diablo 3 that weren't from a reliable source or a google search for "act 1 farming spot" or something. If everyone who did exactly what I did got hacked, we'd be seeing probably hundreds of thousands more complaints. Besides, even if they did get a keylogger on my computer without me knowing, why would they give a !@#$ about Diablo 3? Why not just go straight to my bank account?
The argument "you got yourself hacked" doesn't really make sense when I haven't done anything that would get me hacked. And yes, I have already added an authenticator, changed password and contacted Blizzard.
Those are excellent first steps. I still strongly recommend reviewing the additional steps listed in this blog post:
People keep assuming I am a 10 year old kid who see's a website or link that says "Click here and get free gold or items for diablo 3 FREE" and I will click on it. (More Text...)
I understand why you're frustrated, but your situation is going to require investigation by our customer support staff. I can't verify "the error on [your] end" as you said.
What I can still confirm is that our database hasn't been brute-force hacked, nor has the personal information of our playerbase been compromised in anyway on our end. We're not kidding when we always say account security is very important to us. If we found any evidence that even a single account's login information was stolen from us, or our databases were otherwise vulnerable to attack, we'd inform our players and do whatever it'd take to lock everything down.
His computer. Excellent misdirection.
99.9% chance his computer is absolutely fine.
People's accounts are getting brute forced due to Battlenet's coding. Keyloggers... smoke and mirrors, excellent dogma perpetuated by Blizzard.
No. Not that. It flies in the face of all logic and evidence to the contrary. This is a very serious matter. A company doesn't just get away with covering up something like that.
It's an incredibly serious allegation and the ramifications would be so much more far-reaching than what you've witnessed. Again, I understand you're upset, but I caution you not to perpetuate this nonsense any further.