Blizzard Discovered Ssecurity Breach on

At this time, no evidence that financial information was accessed
Blizzard Entertainment sent out a press release notifying its players that there was unauthorized access to some account information. The unauthorized access included email addresses associated with accounts in all regions, outside of China. Additional information from accounts associated with the North American servers (which generally includes players from North America, Latin America, Australia, New Zealand, and Southeast Asia) was also accessed, including cryptographically scrambled versions of passwords (not actual passwords), the answer to a personal security question, and information relating to Mobile and Dial-In Authenticators. At this time, Blizzard does not believe this information alone is enough to gain access to accounts.
Based on Blizzard's investigation to this point, credit card and other customer payment data does not appear to have been accessed or affected. As a precaution, however, Blizzard encourages players to change their password and any similar passwords used for other purposes.