Gamigo breach results in leak of 8 million usernames, e-mail addresses, and passwords

A breach of the online gaming site Gamigo has resulted in the leak of 8 million usernames, e-mail addresses, and passwords, according to Shack.

The site sent out a warning four months ago regarding the intrusion and compromised data, but detailed information wasn't provided on the attack until earlier this month.

"As previously announced, the online gaming provider Gamigo was the victim of a security incident in early March 2012," the company said in a statement to Shack. "As a result of the attack, usernames and passwords from an older database version were illegally stolen. It appears that the stolen data has now been republished on the internet. As far as we can tell, the published records contain no new data.

"All necessary measures to minimize the impact of the attack were initiated immediately at that time. This included notification of all affected users, resetting of passwords, taking the hacked database offline, a thorough review of the company's IT security policies, removal of a portion of the company's offerings from the internet, notification of the relevant civil authorities and a clarification of the ensuing legal questions."

Gamigo made all users change their passwords after leaks, and while it has been reported that the passwords posted online weren't in a "readable format", a password-cracking forum called InsidePro claimed to have figured out 94% of the leaked passwords.

Compromised data includes 3 million American accounts, 1.3 million French accounts, and 2.4 million German accounts.