A crypto gaming company has allegedly fallen victim to a significant data breach, with sensitive user information now being offered for sale on underground forums. The alleged attackers claim to have exfiltrated 349,000 lines of data from the company’s database. While the specific name of the victim company has not been disclosed, its description as a “major crypto gaming company” suggests a significant player in the booming blockchain gaming sector, potentially impacting a large user base with valuable digital assets. The origin of the attack is currently unknown, though the data is being peddled for a substantial sum, indicating a financially motivated operation.
The compromised data, reportedly available for purchase at $1500 per 25,000 lines or $25,000 for the entire dataset, includes a range of personal and account-related information. This type of leak could expose users to various risks, including phishing attempts, credential stuffing, and even direct theft of their crypto assets if associated accounts are compromised. The alleged sellers are seeking to offload the entire database to a single buyer, suggesting an attempt to maximize profit and potentially prevent wider dissemination.
The leaked data titles include:
- ID
- user_url
- user_pass
- user_email
- user_login
- user_status
- display_name
- user_nicename
- user_activation_key
