Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Fuzzy Avatars Solved! Please re-upload your avatar if it was fuzzy!

Heroes Of Newerth: Security Breach Revealed

SBFordSBFord Associate Editor - News ManagerThe Land of AZPosts: 16,643MMORPG.COM Staff Uncommon

S2Games has announced that they have been made aware of a security breach in Heroes of Newerth. According to the dev team, the breach allowed access to password information on user accounts and they are advising players to change passwords. In addition, the team announced that they had upgraded all security measures in the intervening day since the breach.

Additionally, while the game was down we upgraded all security systems. The game is back up and all HoN accounts will be prompted to create a new password. All passwords will be expired upon next login. However, we do want to reiterate that those who used the same password for HoN to access anything else to change their passwords. 



We take security very seriously. Players must know their sensitive information is secure and S2 will ensure this is the case, no matter the effort or cost.

Read the full announcement on the Heroes of Newerth site.

image

Associate Editor: MMORPG.com
Follow me on Twitter: @MMORPGMom

image

Comments

  • ReizlaReizla AlkmaarPosts: 3,301Member Uncommon
    How can a 3rd party have access to passwords? Didn't they encrypt them in their database? Even 'default' MD5 encryption is already enough to make things hard for hackers to decrypt it...

    AsRock 990FX Extreme3
    AMD Phenom II 1090T ~3.2Ghz
    GEiL 16Gb DDR3 1600Mhz
    ASUS GTX970 3x HD monitor 1920x1080

  • SweedeSweede NorsborgPosts: 185Member

    This part "We take security very seriously. Players must know their sensitive information is secure and S2 will ensure this is the case, no matter the effort or cost."

    sounds bit strange if a third party got access to the passwords.

    image

  • fascismfascism marquette, MIPosts: 358Member Uncommon
    Originally posted by Reizla
    How can a 3rd party have access to passwords? Didn't they encrypt them in their database? Even 'default' MD5 encryption is already enough to make things hard for hackers to decrypt it...

    No they were not encrypted. All passwords were in plain text. S2 messed up. badly.

     
Sign In or Register to comment.