Lifeboat knew about this, but didn’t tell its users.Ĭould a worse picture be painted of how well Lifeboat was caring for its users?Ĭheck out this section of Lifeboat’s “Getting Started” guide: In short, for the last four months passwords belonging to members of the Lifeboat community have been in the hands of online criminals, who could have used them to break into innocent people’s other online accounts. We retain no personal information (name, address, age) about our players, so none was leaked.” “When this happened early January we figured the best thing for our players was to quietly force a password reset without letting the hackers know they had limited time to act. To make matters worse, as Lifeboat tells Motherboard, the security breach happened in January – and the company did not inform its users that an incident had occurred and that gamers would be wise to ensure they were not using the same passwords anywhere else on the web: And unsalted MD5 hashes are a notoriously weak way to secure passwords, making it trivial for criminals to crack. It’s important to note that only players of the smartphone edition of Minecraft were affected, and even then only if they were members of the independent “Lifeboat” community, which runs a variety of servers offering free-to-play multi-player games on the Minecraft platform.Īll the same, Lifeboat has over seven million users. Over seven million members of the independent Minecraft “Lifeboat” community have had their security and privacy put at risk after hackers breached servers and stole usernames, email addresses and MD5-hashed passwords.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |