I supposedly received this email from Blizzard.
https://prnt.sc/1zg0l9z
The link they are trying you to press, appears legitimate but if you mouseover it, it’s completely different than enlisted.
Sent from
noreply@em.blizzard.com
That email seems to be valid though I agree it is pretty poor design to redirect the links like that. Of course it is safest to go to the web site mentioned by typing the address directly to the browser rather than following the link
The link goes to http://click.em.blizzard.com/ which is a valid Blizzard domain (with that blizzard-com ) and then gets redirected to the support site. Most likely done to track any potential clicks from sent emails.
From-field is irrelevant as it can be easily faked. To actually verify the source you would have to check the Message Headers. Least the e-mail I received is sent from 13.111.14.21 which matches the email server used by Blizzard.
1 Like
Ok thank you for clarifying.
Generally, Blizzard (and many other companies) start their emails by using some information they have. In Blizzard’s case it is usually your Battlenet name or the first name registered to the account. Most spammers and phising attempts won’t bother trying to customize emails so they will use generic “Dear customer” etc.
And like I said in my edit in the previous post: do not click links in the email if you are not 100% sure the email is valid. If the email wants, eg. wants to go to the support site you can go there by using a bookmark or typing the address directly.
It is a good idea to have bookmarks of the important account sites so you don’t have to rely on Google or other search engine to find them as there have been several examples of ads being used for phising.