A malicious Trojan hiding in a legitimate World of Warcraft (WoW) add-on is infecting players’ accounts, according to a note by Blizzard, the game’s developer.
“We’ve been receiving reports regarding
a dangerous Trojan that is being used to compromise players’ accounts
even if they are using an authenticator for protection,” Blizzard says.
It seems the malware is posing as Curse, a
genuine WoW add-on that can be downloaded from a fake Curse website.
Once installed on the user’s computer, the Trojan takes over the
player’s account.
”The Trojan acts in real time to do this
by stealing both your account information and the authenticator
password at the time you enter them,” the developer adds.
In a recent update, the company advises
players to solve the problem by deleting the fake Curse Client and
running scans with an antivirus solution. ESET Nod32 antivirus is up to date and removes this type of malware.
Blizzard also recommends changing account
passwords regularly and downloading software only from official
providers, for safety reasons.
World of Warcraft is one of the most popular multiplayer online games with over 7 million subscribers worldwide.
