Over eight million passwords and email addresses revealed in Gamigo hack info dump

over eight million passwords and email addresses revealed in gamigo hack info dumpFour months after it announced that it had been hacked and that the intruders may have been able to access users’ personal information, millions of usernames, passwords and email addresses from the databases of Gamigo have been released online, an action being described as one of the biggest password dumps ever seen.

The site, based in Germany, announced in March that an “attack on the Gamigo database” had exposed not only “(alias) user names and encrypted gamigo user passwords” but also, possibly, more. “[Our] database was subject to an attack in the last few days,” the site posted in its forums, adding that  “We cannot rule out that the intruder(s) is/are still in possession of additional personal data, although to date we have received no report of any fraudulent use.” With the site employing a micropayment system to create revenue, the threat of “additional personal data” loss  could have been extremely unnerving to some users. “To prevent any unauthorized access to your account, we have reset all passwords for the gamigo Account System and for all gamigo games,” the announcement concluded. And then – nothing, or so it seemed, leading some to believe that the information hadn’t actually been breached after all, and hoping that it was all a false alarm. Sadly, it wasn’t.

A file containing just over eight million unique email addresses was shared via the InsidePro forum on July 6, with the subject line “11М md5 hashlist to dump.” The post itself didn’t give any context for the link, simply asking users to “Please test your dictionaries” and adding “OOPS!, the list should lead to a common mind, and that there is only a first hash, and then type E-mai: hash.” The dump – No longer available for download – was captured by PwnedList owner Steve Thomas, who identified it as the Gamigo information, going on to describe it as “the largest leak I’ve ever actually seen.” He went on to say, “When this breach originally happened, the data wasn’t released, so it wasn’t a big concern. Now eight million email addresses and passwords have been online, live data for any hacker to see.”

The information breaks down to 8,244,000 email addresses, with 3 million accounts coming from the US, 2.4 million accounts from Germany, and 1.3 million accounts from France. In addition to addresses from the more familiar public domains (Gmail, Hotmail, Yahoo!), there were also addresses from corporate addresses from companies including IBM, Allianz, Siemens, Deutsche Bank, and ExxonMobil. More than five thousand of the addresses included the word “gamigo,” suggesting that they were created specifically to sign up for the service. For Thomas, the dump of the passwords isn’t the end of the hack, but the beginning of the fallout. “Now that these full details are out there,” he told Forbes, “we can expect more attempts for accounts to be taken over or used maliciously.” Perhaps it’s time to start changing passwords, just in case.


Smishing sounds funny, but it’s a serious threat to your phone’s security

We all know phishing is a huge security problem, but most people still believe it’s a problem limited to email. According to new reports, however, phishing scams are attempting to exploit your trust in text messages.

How to change your Gmail password in just a few quick steps

Regularly updating your passwords is a good way to stay secure online, but each site and service has their own way of doing it. Here's a quick guide on how to change your Gmail password in a few short steps.

Data stolen from HealthCare.gov includes partial SSNs and immigration status

Around 75,000 users have had their user data stolen from government site healthcare.gov, including information on their immigration status, whether they were pregnant, and partial social security numbers.

Flickr just expanded Pro tools — but free users may have to delete some photos

If you have more than 1,000 photos on a free Flickr account, you might want to decide which to delete . Flickr announced some changes following an acquisition by SmugMug, including a new way to calculate the free account storage limit.

The vast majority of YouTube users hit the site for how-to videos

Ever searched for a how-to video on YouTube? Of course you have. The streaming site is bursting with useful guides on how to do stuff, and a recent study has revealed that more users than ever are using it as a learning resource.

Don't take your provider's word for it: Here's how to test your internet speed

If you're worried that you aren't getting the most from your internet package, speed tests are a great way to find out what your real connection is capable of. Here are the best internet speed tests available today.

Be at your most productive with these Slack tips and tricks

Slack is an common means of communication in the workplace, but how do you use some of the app's lesser-known features to get the most out of your experience? Here's what you need to know to stay organized, efficient, and entertained.

Get rid of your Audible account by following these quick steps

Want to learn how to cancel your Audible membership? It's easier than you might think. Just follow along with these steps and you'll be rid of the audiobook listening service for good. Or until you sign up again.

Make a GIF of your favorite YouTube video with these great tools

Making a GIF from a YouTube video is easier today than it's ever been, but choosing the right tool for the job isn't always so simple. In this guide, we'll teach you how to make a GIF from a YouTube video with our two favorite online tools.

From beautiful to downright weird, check out these great dual monitor wallpapers

Multitasking with two monitors doesn't necessarily mean you need to split your screens with two separate wallpapers. From beautiful to downright weird, here are our top sites for finding the best dual monitor wallpapers for you.

Need a free alternative to Adobe Illustrator? Here are our favorites

Photoshop and other commercial tools can be expensive, but drawing software doesn't need to be. This list of the best free drawing software is just as powerful as some of the more expensive offerings.

Edit, sign, append, and save with 12 of the best PDF editors

There are plenty of PDF editors to be had online, and though the selection is robust, finding a solid solution with the tools you need can be tough. Here, we've rounded up best PDF editors, so you can edit no matter your budget or OS.

Google honors Veterans Day by highlighting military service stories

For Veterans Day, Google is honoring the heroes that served the country with a new Google Doodle that highlights the stories of five veterans from the five different branches of the military.
Emerging Tech

Alibaba’s Singles’ Day sale smashes online shopping records

The annual online shopping frenzy that is Singles' Day this year raked in $30.8 billion, up from $25 billion last time around. The Alibaba-organized event generates more in sales than Black Friday and Cyber Monday combined.