Update on Minecraft leaks: Microsoft says no Mojang.net service was compromised

Stuart Dredge reports:

A list of email addresses and passwords for Minecraft players published online in January was not the result of a security breach at developer Mojang, according to its parent company, Microsoft.

Personal details for more than 1,800 players’ accounts were published online in plain-text format, sparking fears that hackers had gained access to Mojang’s customer database – which includes more than 100m registered accounts for the PC version of Minecraft.

[…]

Microsoft has now confirmed that there was no such breach, meaning that the email addresses and passwords were obtained through other means before being published: for example, through email phishing attacks or malware installed on players’ computers.

Read more on The Guardian.

About the author: Dissent