CrimeCraft

In February 2021 the online game CrimeCraft owned by Mayn Games suffered a significant data breach. The incident was attributed to a hacker known as donjuji who gained unauthorized access to the game database. The exposure included sensitive information for approximately 1.5 million users. Leaked data points included email addresses, usernames, IP addresses, dates of birth, and passwords. The passwords were stored using the Ruby on Rails Restful-Auth SHA1 hashing algorithm which is vulnerable to modern cracking techniques. This breach highlights the risks associated with legacy authentication methods in online gaming platforms.