<div class="figure"><img src="/draco/images/news/2008/07/key.jpg" alt="" /></div><p>In an effort to protect gamers from account theft, Blizzard has announced a <a href="http://www.blizzard.com/store/details.xml?id=1100000182">security key for World of Warcraft</a>.
The keychain device will generate a six-digit PIN to be used by gamers when logging in to their accounts and is expected to cost $6.50 when it's finally released. No news on when it will hit shelves.</p>

Hopefully it actually works, unlike their current security.

It looks like RSA's SecureID. http://rsa.com/node.aspx?id=1156

Really cool technology. We're working on getting it implemented for our VPN folks at my company.

It is SecureID.

Blizzard's security works fine, but you can't secure stupid users with bad browsing habits.

So thats why my account, on a completely clean and locked down system, was stolen three (3) times in a 10 month period?

You think people just pull passwords from thin air? Have access to their database?

Did you know that a vulnerability in flash banners allowed delivery of a keylogger for more than a month and a half, and none of the virus scanners on the market could pick it up?

There are plenty of ways where a "clean" and "locked down" system can be hijacked. My buddy's account just got ganked because he was using Avira, and it didn't catch a keylogger than only AVG did. He went to some bad sites and made some bad choices.

That's the only way to get haxxed. Poor decisions.

That's the only way to get haxxed. Poor decisions.

Which in my case means someone was using my system without my permission and at my old house, that was definitely happening. Never thought of that as a possible avenue. Sneak something in during the time my dumbass roommates, with myspace generation browsing habits, were breaking into my room to use the "good" computer and I log into WoW before the AV/anti-spyware updates/runs and BAM! my account is gone.

So glad I got out of that house.

Which in my case means someone was using my system without my permission and at my old house, that was definitely happening. Never thought of that as a possible avenue. Sneak something in during the time my dumbass roommates, with myspace generation browsing habits, were breaking into my room to use the "good" computer and I log into WoW before the AV/anti-spyware updates/runs and BAM! my account is gone.

So glad I got out of that house.

Well, you can't blame blizzards security for you not password protecting your box.

Which in my case means someone was using my system without my permission and at my old house, that was definitely happening. Never thought of that as a possible avenue. Sneak something in during the time my dumbass roommates, with myspace generation browsing habits, were breaking into my room to use the "good" computer and I log into WoW before the AV/anti-spyware updates/runs and BAM! my account is gone.

So glad I got out of that house.

Pretty much. :( Sorry to hear your acct got whacked.

This technology is pretty interesting; I know my company employs them on some level for access security for our off-site people.

Has any other game company gone this far? If they have, I'm unaware of it. Seems to me that this really shows just how big of a game WoW is and how valuable accounts can be.

Has any other game company gone this far? If they have, I'm unaware of it. Seems to me that this really shows just how big of a game WoW is and how valuable accounts can be.

I've never seen it. Very interesting. Makes you wonder if it's going to change MMO authentication altogether.

My son is a WoW Guild Master and works well with the Blizzard server admins. He has some interesting stories.

Another vector to be aware of: Let's just say that some of the players and those thought to be friends may also try and tempt the unprepared into doing things they may regret later.

Bottom line- The weakest link in your security is yourself.

Social engineering has ever been the single most effective exploit.