Digg this please : http://digg.com/d31DkBt?t !
We have reported (and shutdown) one WoW scam site back in April, but we’ve found a new one. Watch out for /w like shown above, and don’t go to the link provided. What should you do;
- Take screenshot! (Print Screen)
- Reply to the sender with short statements like; Reported / Scam / Fraud etc. This will (maybe) force them to log off and not /w another player
- Right click on sender’s name and select “Report spam”
- Open ticket to GM and provide him with player’s name and url he was advertising
- Use social sites and forums to inform other players
As said before, whatever you do, do not visit URL provided by scammer!
If you are interested how scam works (and how to protect yourself), continue reading. We have done test (from safe virtual computer, in controlled environment with no possibility of harm to our Battlenet account and / or computer.
Phishing
(from word “fishing” – describes act in which scammer tries to lure person into his scam)
Who-is euwowchristmas.net (<-dont visit!) report (in plain text file): who-is-euwowchristmas.net.txt
Scam steps
- Scammer tries to look like Blizzard employee, announces free stuff, giveaways, rewards, etc.. anything to lure legitimate player (phishing) into visiting his website.
- Web site in question generally looks like legit Blizzard / Battlenet site with few (not so) obvious differences;
Domain is not owned by Blizzard
Domain doesn’t use secure protocol (https)
- If you enter your credentials (Username/e-mail and password) it can check it with official site but never the less they now have all info that they need to hijack your WoW account
- Scammer will than take all your gold and items, vendor (or disenchant) your gear, and possibly change your password so you cant log in
- When (if) you manage to log in you will find all items and bank gone along with your gold
- Damage is even greater if you are guild leader / officer with Guild bank access.
- Reporting hack to GM can restore you some of stuff but process is so painful that do following steps to avoid all this
How to protect yourself?
- Never visit URL links that you are not familiar with
- Never enter your Username / Password into such sites
- Use any other browser than Internet Explorer (atm I suggest Google Chrome due to fact that so little people use it; that there are no malicious webpages written for it 
)
- Keep your operating system up to date with patches provided by developer
- Use AntiVirus software (not cracked one!), many of them are free for home user (AVG, Avast, Antivir, PC Tools Antivirus, etc..)
- Use AntiSpyware software, many of them are free for home user (Spybot S&D, AdAware, etc..)
- Use Blizzard Authenticator (buy from Blizz store, or purchase application for Windows Mobile or free download for iPhone/iPod)
There you go, I wish you hack-free holidays ;)
Popularity: 7% [?]
I encounter that before but i just ignore it.. but it was reported that many players being hacked and still this kind of scam work for them. I hope Blizz do everything to close this kind of sites..
People should never ever never provide login details when asked. Blizzard states specifically they will never ask account details out of the blue.
Lately I am getting a LOT of emails saying someone changed the password to my account or that Blizzard suspects I did some fraudulent things but I always laugh at their pathetic tries to get my login details.
Remember, YOU are always the weakest link in security.
If you are unsure copy the email and send it to Blizzard, then you will know for sure it is a scam.
@stoner – so true