- cross-posted to:
- infosec_news@infosec.pub
- cross-posted to:
- infosec_news@infosec.pub
- Breach date: 16 October 2024
- Date added to HIBP: 7 November 2024
- Compromised accounts: 420,961
- Compromised data: Email addresses, Usernames
- Breach date: 16 October 2024
- Date added to HIBP: 7 November 2024
- Compromised accounts: 420,961
- Compromised data: Email addresses, Usernames
Yes I appreciate that but what I’m saying is that there isn’t really a reason to hack Earth 2 accounts.
Ostensively it is an upcoming game, It isn’t it’s just a crypto scam, that people have registered interest in but I don’t believe there’s anything they can actually do on the accounts yet. It’s essentially just pre-registration.
So really all that anyone has got out of this is a list of email addresses they could use for phishing. It’s not like they’ll get any new passwords out of it to hack on other services such as email providers or bank accounts
Looking at some of the news and discussion surrounding the game, it is clear that there are significant financial transactions involved.
The game is also four years old, well beyond the stage of mere interest checks.
It could be argued that the hack was carried out without a specific goal or knowledge of what data might be gained (as a display of hacking prowess, for instance). However, in this case, it’s clear why this particular game was targeted.
Whether or not the users “deserved” it is a separate discussion; one where I would agree with you. Many of the people involved may have been too trusting or gullible in their investments.