A new Trojan program is targeting users of the popular online role-playing game World of Warcraft and is capable of hijacking accounts even if their owners use two-factor authentication.
“We’ve been receiving reports regarding a dangerous Trojan that is being used to compromise players’ accounts even if they are using an authenticator for protection,” a technical support representative from Blizzard Entertainment, the game’s developer, said Friday in a message on the Battle.net forums
. “The Trojan acts in real time to do this by stealing both your account information and the authenticator password at the time you enter them.”
In a later update
on the Battle.net forum, another Blizzard tech support representative said that the company tracked down the source of infection to a fake, but working Curse Client distributed from a fake website. The Curse Client is a third-party application that can be used to install add-ons and modifications for several games including World of Warcraft.