A 'Phishing' e-mail, as described in the Phising Emails thread, is designed to fool you to enter your details on a site in order for the person to gain access to your account. A phishing whisper works in the same way.
I've got a whisper from a GM, is it real?
A person pretending to be a Blizzard employee whispers you saying your account will be shutdown if you don't verify your account details at a site given or something similar to this.
It usually goes along these lines:
Obviously for those curious readers, the link is legitimate however in-game it won't be
Now, since your account is in jeopardy you're worried. Of course, who wouldn't be!
However, the whisper is a fake. You can tell by a number of things:
- 1. A GM will ALWAYS have a Blue 'Blizz' badge to the left of their name in-game. Never [GM]
2. GM's do not call themselves 'Blizzard', they have structured roleplaying names
3. When a GM wishes to talk to you, a box will appear saying 'A GM would like to speak to you'
4.There are spelling/grammatical errors. While it's in human nature to make errors, Blizzard take care in their spelling
5.Your account can't have been shutdown, you're still playing!
Ok, it's fake. Now what?
Quite often, players just ignore the person and don't take any action against it. Don't do this, it means that another player may fall into their trap and become vulnerable to hackers.
Instead, right-click the player's name in the whisper and choose the option 'Report Spam'. This sends all relevent information to Blizzard for investigation. Also, as you didn't open a ticket, it speeds the queue times up for tickets!
*Pats on the back*
Am I done now?
Yes, yes you are. The whisper is fake, and you've reported the offending player.
It's worth noting that with 4.1, Blizzard introduced a new Help frame in-game. The frame can be reached by clicking the red '?' on your menu bar or from the main menu and contains information on Account Security along with information on 'Phishing' whispers
Some further information about in-game mail from Blizzard can be found here along with an example of the 'Chat Request' frame:
There are many different types of phishing whispers, some of which do not involve impersonating a GM. One commonly used tactic is the offer of a free item, usually mounts.
These are usually received through emails however can sometimes reach in-game too usually along the lines of:
[Name]Greetings! You have been selected for a free Celestial Steed Mount, please visit <a href="http://eu.blizzard.com/store/">http://eu.blizzard.com/store/</a> to redeem your code!
Another example is the beta test invite, you will NOT be contacted in-game regarding these 'free' items or beta invites.
I'd suggest that anyone getting these whispers posts them here so people can see the many examples of 'phishing' whispers. Please remember to remove the website links before posting though and remove the names. (Seeing as it is still technically naming and shaming)
Edit: Thanks to all who have been posting here so far, good to hear it's of use. Also thanks to those with more information on current phishing attempts, the guide has been updated with a brief overview of these.