I'm not pointing fingers, or trying to place blame on you guys, and or make any accusations, however I have very good reason to suspect your database is being used by hackers to gain account info.
1 very common way for accounts to get hacked is, a group of 'hackers' will go to fan sites, and find user info, including e-mail addresses which 99% of the time are the same e-mail used on your wowaccount, and then you get all those spam emails pretending to be blizzard, with links to malicious sites.
Anyways, I recently made a new e-mail account, and used it only once, to sign up to this website, and that account is now receiving impostor blizzard spam to keyloggers ect. which leads me to believe somebody accessed your database of user names and contact info ect
I'm sure you well aware this happens daily and are probably trying very hard to stop it, but just thought I'd mention my personal situation pertaining to me.