DontCraft

The Minecraft server known as DontCraft suffered a significant security breach at the end of 2016. An unauthorized party managed to access the server database and extract sensitive user information. The incident resulted in the public exposure of approximately 240000 records. The leaked data included player nicknames, IP addresses, and passwords stored as Authme hashes. This breach highlights the risks associated with legacy authentication plugins on gaming platforms where weak hashing algorithms were often exploited by attackers to gain access to user accounts and personal connectivity details.