Security researchers identify a trojan that is used to steal the virtual goods in World of Warcraft player accounts which are protected using the previously-thought-unbreakable Blizzard Battle.net Authenticator. The authenticator is an electronic device that generates a one-time numerical token (a string of six digits, in fact) which is used in conjunction with a regular username and password to gain access to a users account. The method was supposed to be safer than regular password-based authentication, as an attacker would need both the username/password combination and a valid token to log in.”]