Phishing Scam Hits World of Warcraft fans

The famous game “World of Warcraft” has become the latest target for the hackers and things are not looking good for the game’s fans.According to the hackers from the Graham Cluley who are conducting various phishing attacks on gamers using two kinds of emails to steal the user’s login credentials.

The dangerous scheme:

The hackers are sending emails to the players of World of Warcraft and making them believe that they won a prize followed by a link for them to claim the prize by putting their Blizzard account credentials.

The various items used in the email are a flying mount called “Mystic Runesaber” and the “Battlepaw” an in-game pet,  Both of these are legitimate and can be bought in the game and this makes these emails more believable.

Once you click on the email, a new window will pop open asking you to enter your login credentials of your blizzard account, and once you are done doing that, the hacker will get your information, which he can either sell or use personally.

Here is a copy of the email used by the scammers:

“You are receiving this e-mail because your friend purchased World of Warcraft In-Game Pet: Brightpaw for you as a gift!

Claim Your Gift

To claim your gift, enter your Gift Key on the Battle.net? Account Management. You’ll be sent to the download page afterward if needed.

Enjoy!

Blizzard Entertainment?”

This would be a perfect scam if not for those two obvious flaws in the email. First is the suspicious looking question mark after the Battle dot net, and the second one is that it is named Blizzard Entertainment wrote at the email end.

Some precautions:

Like all other phishing scams, this one also relies on the poor judgmental skills of the recipients and to make sure that you don’t fall into this trap you must be careful when you receive an email from an unknown sender.

Related posts

NachoVPN Attack Risks Corporate VPN Clients

Sweet Security Introduces Evolutionary Leap in Cloud Detection and Response, Releasing First Unified Detection & Response Platform

Anti-Spam WordPress Plugin Vulnerabilities Risked 200K+ Websites