Over 500,000 User Details Allegedly Leaked from Renowned Gaming Site
An alleged data breach has been reported involving Multiplayer[.]it, an Italian gaming news and entertainment platform. A threat actor has allegedly leaked a dataset containing personal information of approximately 509,000 Multiplayer users on a notorious hacking forum. The dataset includes user IDs, usernames, email addresses, and hashed passwords.
Threat actor’s statement
Key Points
- An alleged data leak of Multiplayer[.]it affects half a million users.
- Leaked data includes user IDs, usernames, email addresses, and hashed passwords.
Assessment
The threat actor’s history of publishing data leaks on now-defunct hacking forums such as RaidForums and BreachForums lends a level of credibility to the current claims. The presence of email addresses from the leak in existing combolists increases the risk of account compromise for affected Multiplayer[.]it users.
SOCRadar Dark Web News
Initial validation through SOCRadar's Threat Hunting module suggests that some of the disclosed email addresses correspond to those previously identified in combolists, indicating a potential data breach.
SOCRadar Threat Hunting
Outlook
The potential exposure of Multiplayer[.]it user data necessitates prompt attention to mitigate risks such as account takeovers, phishing campaigns, and identity theft
Key Intelligence Gaps
- Verification of the authenticity of the entire dataset claimed to be leaked.
- Understanding the effectiveness of the hashing algorithm used for passwords.
- Assessment of the risk exposure for users whose information has been compromised.
Intelligence Requirements
- Analysis of the leaked dataset to confirm its origin and breadth.
- Continuous monitoring of the threat actor’s posts and activities on alternative platforms.
- Exploration of the threat actor’s modus operandi for patterns that could aid in cyber defense strategies.