CapitalGames

In September 2019 the CapitalGames gaming forum suffered a significant security breach resulting in the exposure of approximately 645000 user records. The incident was facilitated by a known vulnerability in the Forumrunner add-on which allowed unauthorized access to the database. Leaked information includes sensitive credentials and technical identifiers. The passwords were stored using the weak MD5 hashing algorithm with salts making them susceptible to cracking attempts by malicious actors. This breach highlights the risks associated with outdated forum software and third party plugins.