Phishing Scam

Updated: 2 months ago
Article ID: 269000

Common Problems

  • I got a text message saying my account was locked but when I logged in there was nothing wrong.
  • Got a message from a GM in game that a mount had been won and needed to be claimed.
  • Received an email which threatened to close my account if I didn't respond.

Phishing scams can take many forms: fake websites, suspicious emails, and threatening in-game whispers are the most common.

 

Fake websites

Don't trust a site based on how it looks—scammers make fake websites that look official. Our two major websites, from where you should log are blizzard.com and our support site at battle.net/support. You can also find all our games’ official websites on blizzard.com, by navigating from the GAMES drop down menu. If you're asked to log in to a site that isn't on either of these domains or on an official website, do not continue. Logging in to a fake website with your Battle.net account information will jeopardize your account's security.

If you're not sure if a site is legit, check PhishTank to see if it's been reported as a scam.

Suspicious Emails

Phishing emails may appear as promotions that give you something for free (when you log in and "claim" the item) or threaten account suspension (which you prevent by logging in and "confirming" some account information). These emails may have simple mistakes that someone writing professionally wouldn't make, so check for bad grammar and spelling.

Do not reply to emails that ask for your account information. Blizzard will only confirm account details through email if you're talking to a Game Master about a ticket.

Official Blizzard Entertainment emails come from domains: @blizzard.com, @email.blizzard.com, @em.blizzard.com, @gear.blizzard.com, @overwatchleague.com, @battle.net, noreply@e.battle.net, or noreply@e.blizzard.com. If you get an email from a different domain, you should be cautious. Even if an email appears to come from an official domain it still might be fake. You can check the email's headers to see where it actually came from.

If you receive a phishing email, please forward it to hacks@blizzard.com. Copy and paste the entire email header into the message body so we can identify its source.

Chat Phishing

Game Masters always have a Game Master Logo tag next to their name. If the tag isn't there, but the person you're talking to claims to be with Blizzard, it's a phishing attempt. We also cannot contact players inside Diablo 3, Hearthstone, Heroes of the Storm, Overwatch, or StarCraft.

Please report players impersonating GMs so we can take action against them. This will also place them on a temporary ignore list so you can keep playing without receiving additional messages.

If your account has been hacked, submit a ticket and secure the account as soon as possible. You should also consider attaching a Battle.net Authenticator and signing up for Notifications for added layers of security.

SMS Phishing

If you received a suspicious text message that is allegedly from Blizzard Entertainment, do not click on any links in the message. Log in normally to your account to see if there are any issues. To report a suspicious text, send an email with the phone number of the sender and the entire text of the message to hacks@blizzard.com. Make sure to report any website addresses that were included in the text.

If you do see problems with your account, please secure your account and contact us for assistance.

Social Media

We’ve started to see contacts that act as testimonials from “players” who claim to have lost their account through compromise (hacked) or account action (suspended/banned). The contact, often through Twitter or Facebook, makes a claim that the person or service they are referring to had been able to get their account back.

These contacts try to get you to use a third-party site to provide account and personal information.

Recovering an account, either after a compromise or by appealing an account action, can only be done through our site and only by the registered user on the account. No other person or entity would be able to recover an account or appeal an action.

Both Twitter and Facebook have the option to report these messages. Here you can find the instructions for each platform.

Related Articles

Trade Scams

What to do if you've been scammed

Diablo IV Scam Report

What to do if you've been scammed in Diablo IV

Phishing Filters

Phishing filters alert the user if a website is a known phishing website or if it poses a potential security risk.

Click to watch this video in a web browser.