Count me in the group that is glad to have never, ever, ever touched the Web AH or the Mobile AH, or Phone App Authenticators.
I checked my email as soon as I saw the story on the front page, and no emails so that's nice.
It sounds like the hackers somehow found a way in through the Mobile AH system, and I read some forum posts that speculate that people who have modified phones (jailbroken I think is the term?) who use the phone authenticator app are the ones who are at risk.
I don't know if that's actually true, but it does make sense. If you have a phone and you use online hacks to "crack" it open, and if people can really clone your phone, then they can also clone the serial number of your phone authenticator and......well that's all they need.
I'll stick with the keychain dongle and having to log in to the actual game to check the AH, thanks. lol.
That way all I gotta worry about is Malware and Man-in-the-Middle attacks which is pretty rare. That, or their main authentication system being hacked. Even if the latter were to happen, they'd probably just shut the whole system down and restore everything from a backup if something THAT heinous were to ever happen, and even then there's nothing any average user could do to prevent that.
Edited, Jun 26th 2013 12:45am by Lyrailis