Blizzard has identified malware that's been targeting World of Warcraft users recently which was able to steal account info and the authenticator password. The trojan is a fake version the Curse Client, the add-on management program for the game. Users have been coming across this on a fake version of the Curse website as they search for "curse client" on major search engines.
The Battle.net support site suggests those affected to remove the trojan by deleting the fake Curse Client and running scans from an updated Malwarebytes. Most security programs should be able to identify the threat now, and those compromised can get in touch with Blizzard.
Blizzard provides more details for WoW Tokens, the currency that can purchase game time
11:00 AM on 03.25.2015
StarCraft II: Legacy of the Void seeks to conclude the trilogy with an exciting finale
12:30 PM on 03.18.2015
World of Warcraft players will be able to pay for their subscription with gold soon
2:30 PM on 03.02.2015
Blizzard's sending a seriously cool gift to World of Warcraft's ten-year subscribers
3:30 PM on 01.19.2015