#科技头条#【惊!Nexus插件数据泄露证实,600万账户妥协】

【惊!Nexus插件数据泄露证实,600万账户妥协】近日,拥有世界上最大线上游戏插件数据库的Nexus插件被证实六百万用户被添加到“我被玩弄了吗(Have I been Pwned?)”在线服务,网站运营商上月发现漏洞。被泄露的Nexus插件数据库包括超过五百万个用户的详细信息。目前,有网站允许用户检查他们的个人信息是否同样被泄露。

 

     Nexus Mods Data Breach Confirmed, 6 Million Accounts Compromised

Jan 18, 2016 22:13 GMT  ·  By Catalin Cimpanu

 

A database of six million Nexus Mods user accounts has been added to the Have I Been Pwned? online service, after the website's operators have discovered the breach last month.

 

Nexus Mods is the biggest gaming mods database on the Internet, with an estimated userbase of ten million users. The site provides modding (customization) utilities for over 230 gaming titles, ranging from simple weapon skins to advanced game mods that transform the original game's entire playing experience.

 

At the start of December, a user on Reddit was advising Nexus Mods users to reset their passwords, after he stumbled upon a database dump belonging to the Nexus Mods website.

 

5bafa40f4bfbfbed5448f19e7af0f736afc31f3a

 

Nexus Mods was hacked in July 2013, only came to light in December 2015

 

One of the website's administrators got in contact with the Reddit user, got hold of the database dump, and after sifting through the data for an entire night, sent out a notification to all site users to reset their passwords.

According to Dark0ne, Nexus Mods admin, the data dump he received via Reddit contained data belonging to Nexus Mods users that registered before July 22, 2013, and the data reflected the account details for that specific time.

 

No financial details were included, since payment information is handled by PayPal, and the database wasn't complete, including only user IDs, usernames, email addresses, password hashes and salts. No cleartext passwords.

 

1

 

Malware was uploaded on the site instead of legitimate mod files

Dark0ne said the data breach occurred after the hacker compromised three user accounts with extremely simple passwords. He then used these three compromised mod author accounts to upload malware on the Nexus Mods servers, in place of legitimate mods.

 

These malicious files were then later used to launch the attack on the site's database. No details were revealed if the files were used to trigger an SQL injection attack, or to install a backdoor on the server.

 

While the data breached seemed to have been contained on Nexus Mods' part after alerting users to reset their account passwords, the story didn't end here, though.

 

The leaked Nexus Mods database contains details for 5,915,013 users

The Nexus Mods database dump eventually made its way on to the Dark Web, and as Troy Hunt (owner of Have I've Been Pwned?) reports, somebody even tried selling it to him a while back.

 

"Sooner or later, someone comes along perhaps driven by a desire to do good, who provides me with the data. That was the case with 000webhost and now it’s the case with Nexus Mods as well," Mr. Hunt explains, after an anonymous benefactor eventually supplied him with the Nexus Mods database for free.

 

All the details of affected Nexus Mods users have been added to Have I've Been Pwned?, a website that allows users to check if their details have been leaked in past data breaches.

 

Details for 5,915,013 Nexus Mods users have been indexed on the service, fifth all time behind the databases of Adobe, Ashley Madison, 000webhost.com, and Gamigo.

 

http://news.softpedia.com/news/nexus-mods-data-breach-confirmed-6-million-accounts-compromised-499084.shtml


Comments are closed.



无觅相关文章插件