RunescapeBoards

In August 2013 the gaming community Runescape Boards experienced a significant data breach involving its vBulletin based forum. The incident resulted in the unauthorized access and extraction of a database containing information for approximately 224000 registered accounts. The compromise included sensitive user credentials such as salted MD5 password hashes. The breach was likely facilitated by vulnerabilities within the legacy vBulletin forum software which allowed attackers to bypass security measures and gain full access to the backend user tables.