Ένας hacker κατάφερε να παραβιάσει το επίσημο forum του δημοφιλούς παιχνιδιού για κινητές συσκευές “Clash of Kings.” Έτσι απέκτησε περίπου 1,6 εκατομμύρια λογαριασμούς.
The hack was carried out on July 14 by an unknown hacker, who made a copy of the database available to LeakedSource.com. The webσελίδα allows users to search for their names and email addresses in a treasure trove of stolen and hacked data.
The database contains (among other things) user names, email addresses, IP addresses (which can often identify the user's location), device IDs, and Facebook items along with access badges (if the user used the social network to connect). Passwords in the leaked database are hashed and salted
"Clash of Kings" is one of the most popular mobile games with over 100 million installations on the Android platform.
Currently the forum is still down for repairs.
Hack is reportedly taking advantage of the company's loose user security approach, such as not using basic HTTPS encryption.
The hacker exploited a known weakness in the forum's software, an older one version του vBulletin από τα τέλη του 2013. Η συγκεκριμένη ευπάθεια είναι τόσο παλιά που τα tools για την αξιοποίηση της κυκλοφορούν ελεύθερα στο Internet.