Are there any known addons that contain keyloggers?  I only use addons from this site and I recently had my account hijacked.  Rumor is that it's an addon with a keylogger.  Anyone know of any?

From Blizzard.

  Quote:

DOWNLOADING ADDONS, HACKS/CHEATS, & EXECUTABLES

Viruses, 'trojan' applications, and key-logging software can all steal your World of Warcraft information, in addition to anything else on your computer once it has been compromised. These sorts of threats are typically brought into the system and installed by "executable" programs.

An "executable" program is something you download and then you run it as its own program - as opposed to opening a file or a folder. You can tell if a program is an executable if its file name ends in EXE. You can also right-click the file and choose "Properties." If the "File Type" says "Application," then that file is an executable.

Hackers and account thieves like to put their viruses, keyloggers, etc into executable files and then make those files very appealing to our World of Warcraft fan base, to trick users into downloading and running their programs.

Unless you run a executable there is no way an addon could install a keylogger.

http://us.blizzard.com/support/article.xml?articleId=20572&searchQuery=keyloggers&pageNumber=1>

So it is possible that the alledged hacks/key loggers in the curse client/add-ons could be embedded within them. But cant we just run anti-spyware and anti-malicious in these softwares? There's a running rumor that these curse client and other curse add-on are the cause of some hacks in WoW. 

I'm going Quote teek5449 here because he says it well!!!

  Quote:

Originally Posted by teek5449

What they are saying is that you can NOT get a keylogger or virus from any addon that is packaged as a compressed file and not an application. The file in question should be, but not limited to, one of the following formats: List of archive formats and should not be an executable or runnable filetype such as a file ending in exe, bat, reg, etc....

You should always scan all files that you download with a virus scanner. There are many free virus scanners, such as Avast, that do an excellent job of protecting your system. You also need to manually check that the addon contains only one of the following filetypes: .toc, .lua, .xml, and possible some image, sound, or resource files that are used. NEVER an application. WoW will only process these types of files so it is IMPOSSIBLE for an addon that meets the previous criteria to be a keylogger or virus.

Please think before you post that an addon contains maliscious software. You are telling others not to download and use someone elses hard work because YOU didn't take steps to protect yourself and be informed about what is and what is NOT possible.

hmm another frightened customer lol, according to the developers and admins of curse, they have already tested and duobled check their client and they not found any keyloggers embbeded to their system, to ease this kind of problem they advised to do not download the curse client in any other downloading site only here in the curse main site ok and there will be no problem ^_^.

Well, if that is the case then there's little need to panic and all lolz.. But I guess, I would double check what I download from the web for key loggers and that sorts.. I'm just making sure that my account in Atlantica stays protected and away from hackers reach.. lolz..

hmm there are keyloggers that undetected by antivirus however double chek it too just to make sure also atlantica is not included in curse client you know.

Yup, I did not downloaded your curse client you know. with all these racket about it being embedded with hacks and all, who can? Where did the admin or developer's statement regarding this curse client being free of malwares posted? Thanks.

We've posted in several of these threads to that effect, Philosopher.

There is no spyware or trojan of any kind embedded in our Curse Client.  However, there are people out there releasing trojans of the Curse Client and other updaters on third party sites.  The best way to protect your self is to only download the client (or any executable) from the original manufacturer.

If you have a version of the client that you think may be corrupted or malicious, I'm very interested to find where you got it, and to receive a copy to analyze.

Oh I see. Just to be clear, then it is possible that curse client can be emdedded with such malwares if downloaded in other websites. I suggest you to contact the thread starter about this sir, but I will see if I can contact them aswell. Thanks.

Well that doesnt explain how my account got hacked. Curse may want to take their client down for a few days and scan any and all add-ons for any hidden exe. files

As an IT Security specialist, here is a few reminder to everyone.

-Keylogger cannot be installed by wow addons.  (However, someone could forge a .zip file that exploit your old unpatched winzip or winrar... get 7zip or use the curse-client dammit)

-Most keylogger are installed using internet browser / flash player / media player flaw. (Can't go in detail, but a very high percentage of security incident are related to browsers / players flaw in corporate environment, and it's probably worse at home where people don't enforce patch)

-Yes, a JPG pub could infect someone, an invisible picture, a video (visible or not) can contain exploit.  (BTW, august/semptember microsoft advisory contain such)

-Yes, that mean you could google something, you go on a website, get infected without knowing it.  

Update your browser, update your flash player.

Now, if you download stuff from obscure website, or your favorite 'clean hacked game' way, you are runnning into trouble, ESPECIALY if it's related to gaming.

some example:

- <random>wowteleport.exe

-CurseClientPremiumCracked.exe

-WoWtradehack.exe

-etc, etc, etc.

Note that 1 or 2 days after curse announced their premium program, there was Hundreds of link in googles for supposed hacked version, that would install well-know keylogger.  The keyloggers folk know what they do and will stay on the edge of what people might want to be sure to get the largest audience.

Also note that most keylogger wont use your user/pass before ALOT of days, this is the best way to gather the most user/pass, and keep the user yelling at the wrong person.  

I've seen that CurseClientPremiumCracked.exe on bit torrent searches. If anyone downloaded and installed that "version" of the Curse Client, then those of you are idiots. Drooling morons. And you deserve all the hacks to your mmo games that come with it. Why am I spiteful? Again, because anyone who got the "cracked" CC has an IQ of the average house plant, and deserve no sympathy or help.

There is only ONE place to download the release version of the Curse Client, which is 100% clean of any malware, and that is here on curse.com. As for the preview version of the v4 client for Windows, then curseforge.com and wowace.com, both of which are Curse network sites, are the only safe places to find it.