EpicBot 2016

In February 2016 the Runescape EpicBot botting software provider suffered a significant security breach. The incident led to the exposure of sensitive database records belonging to approximately 40 thousand registered users. The breach occurred due to vulnerabilities in the vBulletin forum software which allowed attackers to gain unauthorized access to the underlying database. Leaked information included forum account credentials and personal identifiers. This event preceded a much larger secondary breach that occurred in 2019 which impacted over 800 thousand users.