Blizzard Entertainment notified users today via their website that Blizzard’s network was breached this week. The first question on everyone’s mind is the one about the credit cards, and Blizzard addresses that right away:
At this time, we’ve found no evidence that financial information such as credit cards, billing addresses, or real names were compromised. Our investigation is ongoing, but so far nothing suggests that these pieces of information have been accessed.
Email addresses for global Battle.net users was accessed, and on the North American servers, the answers to personal security questions and information about the authenticator was accessed. Blizzard states they don’t believe this is enough information for anyone to gain access to Battle.Net accounts.
The statement also says that scrambled versions of user passwords were taken, but that the passwords have to be deciphered individually due to their use of the Secure Remote Password Protocol.
Blizzard rightly advises users, however, to update passwords as soon as possible and state they will be prompting users to change not only their passwords but their secret questions as well. They’ll also be updating the authenticator software.
To change your password right now, head over to Blizzard’s account management site