Greetings Daegran,

I’m sorry to hear that your password may have been being changed in this way, but in order to alter an account password it’s necessary to already be logged into Battle.net Account Management (and obviously to have the original account password in the first place, and therefore be able to also log into the game).

From what I can see here, it looks like only two password changes were effectuated by these malicious individuals, neither of which occurred before the Mobile Authenticator was attached to your account, but this obviously does imply that you may have had some nasties on your PC beforehand.

If you continued to be disconnected from the game on multiple occasions, this is actually likely to be due to them logging into the game itself (as logging into the site, or changing the account password, shouldn’t cause a disconnection).

Concerning your suggestion that players be required to click through an email link when changing their password under regular conditions, I’m afraid to say that if a malicious third party already has the account password then the damage is effectively done (so to speak) and, whether they then choose to change the password in an attempt to force the real account holder off the account or not, the account will still have been compromised and potentially necessitate recovery of some kind. :(

However, if a third-party attempts to gain access to the account without knowing the password, either the Secret Question information or CD-Key details will be required to initiate a reset… similar to the verification needed when changing the email address attached to a Battle.net account.

Lastly, and unrelated to the above, I’m very pleased to see that we seem to have been able to help recover and restore all losses from during the compromise, and I do hope that you won’t experience anything like that again now that you have an Authenticator attached to the account. :)