Affected? Read the steps below.
By Tim Colwill on January 6, 2014 at 3:20 pm
Blizzard have issued a warning against a trojan being bundled with a fake Curse Client, which acts in real-time to steal your World of Warcraft password and even your authenticator details.
“The trojan is built into a fake (but working) version of the Curse Client that is downloaded from a fake version of the Curse Website,” said the company on their forums. “This site was popping up in searches for ‘curse client’ on major search engines, which is how people were lured into going there.”
“At this point, it seems the easiest method to remove the trojan is to delete the fake Curse Client and run scans from an updated Malwarebytes. Should you still have issues, there is a more manual method posted earlier in the thread. Most security programs should be able to identify this threat shortly.”
Source: Battle.net (thanks, Dylan)