10. August 2012 15:22
Blizzard Entertainment has just posted an "important security update" to its official site.
"This week, our security team found an unauthorized and illegal access into our internal network here at Blizzard. We quickly took steps to close off this access and began working with law enforcement and security experts to investigate what happened.
At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised. Our investigation is ongoing, but so far nothing suggests that these pieces of information have been accessed.
Some data was illegally accessed, including a list of email addresses for global Battle.net users, outside of China. For players on North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) the answer to the personal security question, and information relating to Mobile and Dial-In Authenticators were also accessed. Based on what we currently know, this information alone is NOT enough for anyone to gain access to Battle.net accounts.
Although no passwords have been stolen, the encrypted password (hash) was, this does make it theoreticaly possible for someone to decrypt your password, so my advice is change your passwords as soon as possible. Also the answer to the secret questions has been compromised, this in my opinion would make it possible for someone to reset your password.