Hackers steal 1.9 million Dota 2 gamers' data from chat forum

LeakedSource said the information wasn't sufficiently secured

Nearly 2 million fans of online multi-player game Dota 2 have become the latest victims of a large-scale online hack, with email and IP addresses, usernames and passwords all being exposed.

News of the attack, which affects only the Dota 2 message board, rather than the game itself, comes via breach notification site LeakedSource. According to a post on LeakedSource's blog, 1,923,972 records were stolen from the official Dota 2 forum, which is run by gaming firm and Dota 2 creator, Valve.

Advertisement - Article continues below

The attack occurred at the beginning of July, although it has only just been communicated to the world this week. According to LeakedSource, the forum passowrds were stored in Valve's servers using MD5 hashing and salt to encrypt them. However, while use of MD5 is still quite common, it is also considered to be severely compromised and vulnerable to myriad attacks. This has allowed LeakedSource to decrypt roughly 80% of the information stored in the leaked database.

The majority of the email addresses taken in the attack were Gmail accounts that had been set up specifically for use with Valve's forums, which could lessen the impact of the attack. It's also been noted by gaming site RockPaperShotgun that the forums are separate from Steam itself, meaning it's unlikely hackers would be able to maliciously use the data to cause havoc with gamers' Steam accounts, unless they have used the same credentials for both.

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

Valve hasn't yet commented on the attacks, but it comes at an important time for the online games-maker as it preps for the Dota 2 global tournament, which is happening this week in Seattle. The tournament sees gamers playing against each other to win a prize fund of $20 million (15 million).

Main image credit: Valve Software

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Recommended

Visit/security/encryption/355820/k2view-innovates-in-data-management-with-new-encryption-patent
encryption

K2View innovates in data management with new encryption patent

28 May 2020
Visit/software/video-conferencing/355410/zoom-50-adds-256-bit-encryption-and-ui-refresh
video conferencing

Zoom 5.0 adds 256-bit encryption to address security concerns

23 Apr 2020
Visit/security/hacking/355382/whatsapps-flaw-shoulder-surfing
hacking

WhatsApp flaw leaves users open to 'shoulder surfing' attacks

21 Apr 2020
Visit/security/cyber-security/355368/microsoft-builds-ai-to-detect-security-flaws-with-99-accuracy
cyber security

Microsoft AI can detect security flaws with 99% accuracy

20 Apr 2020

Most Popular

Visit/operating-systems/microsoft-windows/355812/microsoft-warns-against-installing-windows-10-may-2020
Microsoft Windows

Microsoft warns users not to install Windows 10's May update

28 May 2020
Visit/infrastructure/server-storage/355785/dell-emc-poweredge-r7525-review-an-epyc-core-density-to-make
Server & storage

Dell EMC PowerEdge R7525 review: An EPYC core density to make Intel weep

26 May 2020
Visit/infrastructure/network-internet/355792/intel-releases-wi-fi-and-bluetooth-driver-updates-for
Network & Internet

Intel releases Wi-Fi and Bluetooth driver updates for Windows 10

26 May 2020