According to LeakedSource.com, over two million DOTA 2 user accounts were stolen from the game’s forum. The forum was compromised due to outdated vBulletin software with an SQL injection vulnerability. Hackers were able to gain access to user names, email and IP addresses. Passwords were also unscrambled, again through a vulnerability in the MD5 algorithm “alongside the salt”. It is believed that about 80% of the passwords have been unscrambled.
DOTA 2: Forum Hackers Swipe Over 2M User Accounts
by
Tags: