Update on Minecraft leaks: Microsoft says no Mojang.net service was compromised
Stuart Dredge reports:
A list of email addresses and passwords for Minecraft players published online in January was not the result of a security breach at developer Mojang, according to its parent company, Microsoft.
Personal details for more than 1,800 players’ accounts were published online in plain-text format, sparking fears that hackers had gained access to Mojang’s customer database – which includes more than 100m registered accounts for the PC version of Minecraft.[…]
Microsoft has now confirmed that there was no such breach, meaning that the email addresses and passwords were obtained through other means before being published: for example, through email phishing attacks or malware installed on players’ computers.
Read more on The Guardian.