If you have a Supercell account then the time has come to change your password.If you don’t know supercell they are the creators of trending Games such as Clash of Clans, Clash Royale, Boom Beach and HayDay.
It is said that 1.1 Million accounts are hacked and the hackers have even started to trade the information of the victims.
It should be noted that the hack affects the vBulletin forums belonging to Supercell, with the hack quite possibly relating to an unpatched critical vulnerability made public a number of months ago.
In words of Super Cell
As we’ve said before, to provide our forum service we use software from vbulletin.com. We’re currently looking into report that a vulnerability allowed third party hackers to gain illegal access to some forum user information, including a number of emails and encrypted passwords. Our preliminary investigation suggests that the breach happened in September 2016 and it has since been fixed.
We take any such breaches very seriously and we follow very strict policies when it comes to security. Please note that this breach only affects our Forum service. Game accounts have not been affected.
To make sure your account is not being accessed without your knowledge, please change the password you are using on this forum as soon as possible. You can reset your password here: https://forum.supercell.com/login.php?do=lostpw
We also strongly advise you to change the password in any other systems you are using with the same login. As a general guideline, matching credentials should not be used on multiple sites.
We apologise for the inconvenience this has caused.
It is said that the breach occurred last year in the time September however it was posted in the companies forums that users should change their password.
The hacked data consists of email ID’s , hashed passwords and IP address of the users if you are on a static IP the hacker might know your IP now.It is said that Supercell uses VBulletin Forums software which will hash passwords but the password hashes are aren’t strong.
A website named LeakBase claims that around the database of 1.1 Million user accounts all the data is verified by using the email address, A company called motherboard verified that data using the email address are included when they tried to create new accounts the forum is showing that the account already exits.
In the official statement, supercell stated that it will take these hacks very seriously and it ensures it’s users to follow strict security measures to ensure a good secure forum.
This isn’t the only company that got affected but many companies such as Epic Games, LifeBoat, GTA and Clash of Kings still use the same older versions of the VBulletin software.
It is recommended to our readers to use the different password for different online accounts.
Take your time to comment on this article.