news\ Jan 3, 2014 at 4:34 pm

Blizzard discovers source for World of Warcraft Trojan


The Trojan that compromised World of Warcraft and accounts stems from a fake version of the Curse Client, Blizzard discovered today. Shortly after warning players of the Trojan which could steal both a player's account information and authenticator password, Blizzard discovered the source of the problem.

"The trojan is built into a fake (but working) version of the Curse Client that is downloaded from a fake version of the Curse Website," Blizzard updated players. "This site was popping up in searches for "curse client" on major search engines, which is how people were lured into going there."

The easiest way to remove the Trojan, according to Blizzard, is to just delete the fake Curse Client and run scans from an updated Malwarebytes. Should you still have issues, Blizzard recommends removing it manually. And for those of you who were compromised, follow the security instructions on

Despite the attacks, Blizzard assures that the Authenticator still protects your account "99% of the time."

Matt Liebl You can follow Senior News Editor Matt Liebl on Twitter @Matt_GZ. He likes games, sports, musicals, and his adorable dog, Wrigley, and his wife.
Share with your friends
Related Images
Moonkin_pets Scentscape_-_pc_-_product Vietnam_to_ban_late_night_gaming Blizzard_retrospective Blizzcon_2011_logo See all images
blog comments powered by Disqus