Eight million usernames, passwords, and email addresses leaked in Gamigo hack.
Four months after the initial intrusion in March, the credentials of eight million users on free-to-playing online service Gamigo – including usernames, passwords, and email addresses – have been leaked on password-cracking site Inside Pro, according to hacking-alert service PwnedList.
Gamigo users can checked PwnedList to determine if their information was included in the leak. "It's the largest leak I've ever actually seen," said founder Steve Thomas.
Although passwords were initially posted with some obscured characters, a post on Inside Pro alludes to having "found 94%" of the users' information. More than 5,000 of the encrypted email addresses included the word "gamigo," suggesting that the data was stolen directly from Gamigo servers. Other types of accounts included Gmail, Hotmail, and some from larger corporations including Deutsche Bank, ExxonMobil, and IBM.
Gamigo users who held accounts prior to the March hack are encouraged to change their passwords.