For developers: If you store user data, hashing passwords with MD5 in 2018 is negligence. Use bcrypt, Argon2, or at minimum PBKDF2. Also, never expose an admin panel to the public internet without IP whitelisting.
Log into the game or the official website and set a new, unique password. Use a password manager (Bitwarden, 1Password, or even Apple’s Keychain) to generate and store a 16+ character random string. town of salem data breach pastebin
While salting passwords makes brute-force attacks more difficult, the MD5 algorithm itself is completely obsolete for modern security standards. MD5 is highly susceptible to collision attacks and can be cracked at lightning speed using modern consumer graphics cards (GPUs). For developers: If you store user data, hashing
: While BlankMediaGames (BMG) clarified that they do not store full credit card numbers, some users' billing names and addresses were reportedly exposed. Technical Vulnerabilities BlankMediaGames Data Breach - Have I Been Pwned Log into the game or the official website
In response to the breach, BlankMediaGames took several actions to secure their platform:
, such as in-game currency balances, forum posts, and purchasing history.