Phish: Adding Authenticator

Here’s the e-mail:

Received: from ([]) by over TLS secured channel with Microsoft SMTPSVC(6.0.3790.4675);
Wed, 28 Jul 2010 16:01:46 -0700
From: “” <>
To: <>
Subject: world of warcraft-Notice on the account


We’ve received a request to add a Authenticator to this account(s) Please click this link to continue with the authenticator attachment process. You will be redirected to Account Management (please be prepared to log in) with further instructions.

If you no longer wish to attach an authenticator to this account, or if you did not initiate this request, please disregard and/or delete this e-mail.

If you have any questions regarding your account, click here for answers to frequently asked questions and contact information for the Blizzard Billing & Account Services team.

The Account Team
Online Privacy Policy

Let’s see here:

  • Header shows its from Hotmail
  • Link goes to bllizzard (Which is not Blizzard…but VERY Close)
  • No personalized greeting: Which unfortunately isn’t a help in this case.

Ironically enough I got this Phish less than 5 days after I actually went through this whole process.

So I can say, without a doubt, this e-mail is an exact copy of the actual e-mail you get when adding an authenticator.

This Phish is really easy to avoid, as long as you don’t panic and actually READ the e-mail.

If you aren’t adding an authenticator to your account THEN DO NOTHING.

“please disreagard and/or delete this e-mail.”

Bets advice a phishing e-mail has EVER Given you.

One unfortunate thing about this e-mail…Blizzard doesn’t personalize this one, which is a real disappointment.  I would think of all their e-mails this one would be personalized…it is one of the RARE e-mails that REQUIRES the link be clicked.

without clicking the link you can’t add an authenticator.

So, just be diligent, and when you are adding an authenticator (Or re-adding if you get a new phone…) just make sure you clear out your e-mail trash first, delete all them fishing e-mails, so when you get the REAL e-mail you won’t mistake it for this one and get Phished.

Ͼ Ͼֳ ewinֳ Ŷij ˰ټ Ŷij bet ȫѶ 188 bet 365 Ͼ Ͼij ˹˶ij Ͼij ƶij Ŷij淨 ȫѶ ˹ά˹ij ζij ŶijЩ ij ˹˶ij Ͼij ĥij ijϷ ĥƽij ĥij Űټ ټϷ ˰ټ Ŷij ˰ټ ټ Ŷij ֳ Ŷij bet Ŷij ټ ˹ Ͼ ټ Ŷij ewinֳ bet ټ Ŷij Ŷij Ŷij Ŷij Ŷij ewinֳ ewinֳ ewinֳ ewinֳ ewinֳ ټ bet ˹