Azeroth Security Advisor: WoW is watching you, part 2

Updated Mon, May 19, 2008, 3:00 PM·8 min read

Every week, computer security expert Jon Eldridge is your Azeroth Security Advisor. He will delve into the darkest reaches of computer security rumor and bring the facts back home even if they're wriggling at the end of a pike. His goal is to provide useful information to gamers who don't think about security much and flame fodder for those self appointed experts who need to rationalize the cost of their expensive certifications. Like any good security force he's a mercenary at heart and is happy to take subject requests from the user community that he serves. So feel free to leave a comment below or just sit back and enjoy the show.

Welcome back to the Azeroth Security Advisor. Last week I discussed two of the three ways Blizzard keeps an eye on your computer. This week I'll cover the controversial Warden program whose discovery in Oct 2005 by Greg Hoglund caused a great deal of outrage and confusion not unlike accidentally joining a pickup group full of rogues. Reactions have been so strong that some trolls dwelling in their parents basements are still alternately posting "OMFG BLIZ HACKZ CALL COPS!!!" or "U SIGNED EULA SO STFU N00B!!!!!" depending on which of their medications are kicking in at the time. Most people forgot to care one way or the other within a few weeks and went back to life as usual. Lucky for Blizzard apathy is the universal solvent for organized resistance otherwise they might be facing a class action lawsuit by now.

The Warden's core mission is to continuously audit your PC for suspicious activity while you play. First it reads all the DLL's loaded into the WoW process space, which is a perfectly legitimate activity any way you slice it. After that, the Warden ditches its friendly park ranger hat for a ski mask and takes a look around the rest of your PC. It reads the text in the title bar of every window you have open including that really embarrassing Furry fan site you don't want your friends to know about. Yes Nekudotayim, Bliz knows about your pr0nz.! The Warden then creates a hash code (think fingerprint) of each window title and compares the results to a list of "banning hashes" for potential matches and subsequent divine retribution.

The second act of the Warden Power Tour is to sniff out and hash every single process running on your computer and compare them to the list of banning hashes. So while you are playing WoW, Blizzard takes complete stock of every program, every window, every website and every process on your machine and compares it to a list you will never see... every 15 seconds. Contrary to many fanboy and armchair security expert flames Blizzard does indeed know about your surfing habits while you are playing WoW and a whole lot more. The issue is not what they know but what they choose to audit and act upon via their secret list. For anyone who'd like to watch the Warden sniff around on your PC you can try the Governor written by Mr Hoglund.

Blizzard does not deny that the Warden exists. In one interview a senior producer assured everyone that "we're not the Nazis" but drew a curious parallel between not reading the EULA and contracts with the devil. The Warden is also mentioned within the documents of an ongoing litigation between MDY Industries and Blizzard Entertainment United States District Court, District of Arizona case number 2:2006cv02555 filed October 25th 2006. This lawsuit focuses on the WoW Glider cheat software and its creator. Buried within the mass of documents easily accessible as part of the public record is the following tidbit.

Blizzard's Technical Security Measures

34. Blizzard employs a software program called Warden as a technical measure that prevents unauthorized access to WoW and restricts users from loading unauthorized copies of WoW.

35. When users launch the WoW game client, authenticate to the WoW game server, and access the copyrighted elements of the WoW gaming environment, they must demonstrate that they are running an authorized copy of the game client.

36. Warden enforces Blizzard's rights by running targeted scans of the user's
environment for the presence and/or use of "signatures" of known unauthorized third party programs that facilitate cheating or allow the modification of the WoW interface, environment, and/or experience in any way not authorized by Blizzard.

37. When Warden detects that a user is attempting to run an unauthorized copy of
WoW, Blizzard denies that user access to the copyrighted WoW gaming environment.

"Warden enforces Blizzard's rights by running targeted scans of the user's environment..." This is a bit misleading as they neglect to clarify that at the end of these targeted scans the user's entire system has been examined alien autopsy style. Blizzard considers your entire PC within its jurisdiction and has remained very tight lipped about what they do with the information they gather. Even some forum links to Blizzard's initial response to the 2005 excitement now lead to deleted pages. This is unfortunate. Now that the cat is out of the bag Blizzard would do well to share enough information to establish credibility with their customers and prevent the bad press that would accompany a high profile legal battle.

The Warden establishes very specific information about how a computer running the WoW client is being used and ties that use to a specific account which is in turn tied to the name, address, and credit card number of an individual customer. Certainly enough information is gathered for Blizzard to feel justified in any ban/suspend/spank action they take and confident that they are taking that action against the correct user account. If you don't consider this "personal" stop reading this right now, turn off your TV, take off your rubber elf ears and enroll in a few history or ethics classes at your local college. Whereas Blizzard may not being doing anything sinister with that information it is certainly personal.

Is the Warden spyware? A few security professionals and at least one watchdog group think so. Others argue that the EULA absolves Blizzard from any liability whatsoever. Both arguments have their merits. Frankly the label spyware is a matter of semantics and not worth warming your flamethrower up over. Yes, Blizzard warned you that your computer could be monitored. No, Blizzard didn't really give you a clear idea of how far they would take this liberty once it was granted to them. The Warden is certainly invasive and depending on the contents of that hash list it could be judged either benign or outrageous.

Could the Warden be abused? Sure. Depending on what data is being shared with the Blizzard mothership, subsidiaries of Vivendi easily could benefit from having knowledge of the usage patterns among the WoW user community as a whole or data mine answers to specific questions by verifying the presence or absence of particular hash codes. Law enforcement could provide Blizzard with hash codes of websites or programs that might lead to pinpointing anything from music pirates to the terrorists the US Intelligence community is trying to automatically detect based on user behavior within virtual worlds. Personally I'd pay big cash to watch a reality show based on the CIA analyzing the Second Life user community for suspicious behavior. Imagine how much fun it would be to watch some conservative Homeland Security agent discover their first vending machine full of detachable and interchangeable genitalia.

Is Blizzard the evil empire? Should we ask mom to make us a thicker tinfoil hat? I don't think so. Blizzard does a great job protecting their game from the hackers and grief mongers that would make WoW unplayable given half a chance. The fact that Blizzard allows users to customize their game play via AddOns while successfully guarding against cheating is Uncanny X-Men (before Gambit and Jubilee) cool. Your PC is likely to be infested with software that poses a much larger threat to your well being than the WoW client. What I would change is Blizzard's cloak and dagger approach to employing invasive software as a security guard. Rather than enrolling the user community in a way that would make them supportive of the Warden software they were lazy and shrouded in it mystery which can only result in poor PR.

So what does this all mean for the average user? That is a personal opinion so all I can do is share mine with you. Cheating ruins online multiplayer games. In order to provide a game environment worth paying a monthly fee for game companies are being forced to evolve strong defenses. Sadly this is leading them to make ethically and perhaps in the future legally questionable decisions. The battle over the legal strength of a EULA is just warming up and the results are likely to be different in each country. Ultimately you have a right to be concerned about what somebody could do with the information they gather about you, don't let anybody tell you otherwise. Never assume your computer is safe from unauthorized or unwanted probing, the opposite is frequently the case. Taking a back seat to important issues like your right to privacy is a slippery slope with a predictable outcome.

Engadget
Fallout has already scored a green light for a second season
Amazon has renewed the hit show for a second season.
27m ago
Engadget
Baldur's Gate 3 developer confirms it won't make the sequel
The developer behind the popular, award-winning and slightly bawdy Baldur's Gate 3 may not be doing a sequel, but it does have other irons in the fire.
2h ago
Engadget
The best PS5 games for 2024: Top PlayStation titles to play right now
Here are the best games you can get for the PlayStation 5 right now, as chosen by Engadget editors.
7 months ago
Engadget
The 6 best Mint alternatives to replace the budgeting app that shut down
Intuit has shut down the popular budgeting app Mint. Engadget tested a bunch of popular alternatives. Here are our favorites.
4 months ago
Engadget
Apple says it was ordered to remove WhatsApp and Threads from China App Store
China's Cyberspace Administration ordered Apple to pull Threads and WhatsApp from its App Store in the country, the company said.
5h ago
Engadget
Surprise: Taylor Swift is joining Threads at the exact same time as her new album drop
Taylor's Threads account, and her first post, are going live around midnight.
7h ago
Engadget
The bill that could ban TikTok is barreling ahead
The bill that could lead to a ban of TikTok in the United States appears to be much closer to becoming law.
12h ago
Engadget
Netflix is done telling us how many people use Netflix
Although subscriber metrics are an important signal to Wall Street that show how quickly a company is growing, Netflix isn't the first company to do this.
13h ago
Engadget
Blizzard takes aim at Overwatch 2 console cheaters
Blizzard is targeting Overwatch 2 cheaters who use a keyboard and mouse on consoles to gain an advantage over controller users.
14h ago
Engadget
It took 20 years for Children of the Sun to become an overnight success
Though it feels like Children of the Sun popped into existence over the span of two months, it took Rother a lifetime to get here.
15h ago
Engadget
Quicken Simplifi subscriptions are half off through April 21
Quicken Simplifi subscriptions are half off through April 21. This brings the price down to $2 per month, which is billed annually at $24.
16h ago
Engadget
Meta gives the Quest 2 its second permanent price cut in four months
Meta has given the base Quest 2 a permanent price cut for the second time this year. A headset with 128GB of storage is now $199.
16h ago
Engadget
The HD Chromecast with Google TV is on sale for only $20
If you watch movies and TV on a 1080p screen, the Chromecast with Google TV (HD) provides a rock-solid streaming experience on the cheap. Today, Amazon has it for $10 off, letting you pick up the HDR10-capable streaming stick for only $20.
17h ago
Engadget
Razer's Kishi Ultra gaming controller works with damn near everything, including some foldables
Razer just released the Kishi Ultra mobile gaming controller. It works with some foldable phones, in addition to Android devices, iPhones and iPads.
17h ago
Engadget
Netflix will stop tossing coins to The Witcher after season five
Netflix has renewed The Witcher for a fifth season, but that will be the show's last. Liam Hemsworth is taking over as Geralt of Rivia for the final two seasons.
18h ago
Engadget
Cities: Skylines 2's embarrassed developers are giving away beachfront property for free
Cities: Skylines 2 developer Colossal Order is unlisting and refunding purchases of its controversial Beach Properties asset pack less than a month after its release.
18h ago
Engadget
Google's wired Nest security camera is cheaper than ever
Google's second-gen wired Nest security camera has dropped to its lowest price to date. It's $30 off at $70.
18h ago
Engadget
Sonos refurbished speakers and soundbars are up to $170 off right now
You can grab a refurbished Sonos Arc SL for $170 less than the usual price as part of a larger sale on refurbished Sonos gear.
19h ago
Engadget
Meta rolls out an updated AI assistant, built with the long-awaited Llama 3
Meta has begun rolling out its new AI assistant, which was built using the long-awaited Llama 3 LLM. You can use Meta AI on Facebook, Instagram, WhatsApp and Messenger, with support for the Quest platform coming soon.
19h ago
Engadget
TSMC will charge more for chips made outside of Taiwan, possibly making devices more expensive
TSMC has warned customers such as Apple and NVIDIA that the prices of chips it makes outside of its Taiwan home base will be more expensive. That could result in devices the company's customers make becoming more expensive.
20h ago

Azeroth Security Advisor: WoW is watching you, part 2

Latest Stories

Fallout has already scored a green light for a second season

Baldur's Gate 3 developer confirms it won't make the sequel

The best PS5 games for 2024: Top PlayStation titles to play right now

The 6 best Mint alternatives to replace the budgeting app that shut down

Apple says it was ordered to remove WhatsApp and Threads from China App Store

Surprise: Taylor Swift is joining Threads at the exact same time as her new album drop

The bill that could ban TikTok is barreling ahead

Netflix is done telling us how many people use Netflix

Blizzard takes aim at Overwatch 2 console cheaters

It took 20 years for Children of the Sun to become an overnight success

Quicken Simplifi subscriptions are half off through April 21

Meta gives the Quest 2 its second permanent price cut in four months

The HD Chromecast with Google TV is on sale for only $20

Razer's Kishi Ultra gaming controller works with damn near everything, including some foldables

Netflix will stop tossing coins to The Witcher after season five

Cities: Skylines 2's embarrassed developers are giving away beachfront property for free

Google's wired Nest security camera is cheaper than ever

Sonos refurbished speakers and soundbars are up to $170 off right now

Meta rolls out an updated AI assistant, built with the long-awaited Llama 3

TSMC will charge more for chips made outside of Taiwan, possibly making devices more expensive

About

Sections

Contribute

Buying Guides