There are currently 2,995,133,319 / 4,748,055,404 accounts in our database.

We are in the process of re-indexing databases that where lost.

October 11th, 2016

33 Million gamer accounts stolen


Table of Contents

Summary

Gaming company Evony was hacked for a total of 33,407,472 users from its main game database in June of 2016. Earlier this year in August we discovered their forums were also hacked for 938k users.


Each record contains a username, email address, password, and ip address among other internal data fields.

Passwords

Passwords were stored using unsalted MD5 hashing which means at this point we have cracked most of them. Surprisingly they also stored the passwords in unsalted SHA1 next to the MD5 which makes no sense but anyway, here is the top list of most frequently used credentials:


RankPasswordFrequency
1123456714,466
2fuk19600208,121
3123456789163,318
4mynoob119,365
5password96,151
611111182,593
7google74,051
8evildick70,546
9qwerty55,872
10123456752,902
1112312344,463
12fuku0019839,629
131234567839,599
14evony19239,036
15123456789032,297
16abc12329,538
1700000028,466
1811155527,749
1965432127,319
20dragon23,095
21killer21,948
22again121,239
23omg19920,880
24whatthezor20,651
25aaaaaa20,574
26football19,424
27blasted119,318
28notthat17,363
29pokemon17,318
30asdfgh17,079
31wenoob16,359
3266666616,313
33evony116,096
34liverpool15,653
35fuckyou15,540
36ihatethisgame15,459
37qazxsw14,591
3812332113,760
3998765432113,214
40monkey13,174
41[email protected] 13,042
42shadow12,955
43asdfghjkl12,561
44hahaha12,557
45qwertyuiop12,175
4611223311,877
47potato11,874
4812121211,869
4955555511,669
50suckme11,632
51soccer11,525
52password111,128
53starwars10,905
54iloveyou10,845
55baseball10,435

After the Last.fm breach, one of our favorite Twitter users @SwiftOnSecurity asked us to look for some interestingly long passwords so for breaches with simple hashing algorithms we're going to add that to our blog posts. Here are some hand picked long, interesting Evony passwords we managed to crack:


PasswordLength
destroyerspeedfluxquadrantinclusionexhaustrelease49
derpderpderpderpderpderpderpderpderpderpderpderp48
plseeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee43
123456789qazwsxedcrfvtgbyhnujmik,ol.p;/[']\ 43
1324354657687980qazwsxedcrfvtgbyhnujmikolp42
lamborghinimurcielagolp670-4superveloce 39
aleksandra12345678912345678912345678937
thequickbrownfoxjumpedoverthelazydogs37
kosova123456789101112131415161718192037
upupdowndownleftrightleftrightbastart37
hari yang cerah untuk jiwa yang sepi 36
thequickbrownfoxjumpsoverthelazydog35
supercalifragilisticexpialidocious34
STAYOFFMYSHIT12332145665478998731
osenhoremeupastorenadamefaltara31
nailsforbreakfasttacksforsnacks31
noonewilleverguessmypassword12331
Concentration camps were set up 31
osenhoremeupastorenadamefaltara31
transformers2revengeofthefallen31
nailsforbreakfasttacksforsnacks31
cristianmejorfutbolistadelmundo31
playstation3callofdutyblackops30
i kissed a girl and i liked it 30
puppiesandkittenshannahmontana30
bobesponjapantalonescuadrados29
ifthemudaintflyinyouainttryin29
cristianjosiasmenesesgallardo29
iloveedwardcullenfromtwilight29
illkeepyoumydirtylittlesecret29
hades lord of the under world 29
mycatsbreathsmellslikecatfood29
youwillneverguessthispassword29
needforspeedmostwantedgregory29
somethingstrangforsomechange28
manchesterunitedthereddevils28
you dont mess with the zohan 28
honorificabilitudinitatibus27
billie jean is not my lover 27
fuckyoubitcheseatshitanddie27
toofasttolivetooyoungtodie26
sir sir what are you doing 26

Emails

Simple table of top email domains


RankEmail DomainFrequency
1@yahoo.com7,464,078
2@hotmail.com6,493,345
3@gmail.com3,593,315
4NONE3,453,701
5@aol.com1,005,343
6@hotmail.co.uk667,075
7@live.com630,399
8@msn.com330,372
9@ymail.com253,433
10@yahoo.co.uk229,153
11@comcast.net219,959
12@live.co.uk170,255
13@hotmail.fr137,503
14@aim.com125,611
15@rocketmail.com121,204
16@mail.com110,115
17@sbcglobal.net106,120
18@att.net87,345
19@yahoo.co.in84,603
20@yahoo.ca83,417
21@btinternet.com81,772
22@googlemail.com81,200
23@verizon.net80,931
24@live.nl76,160
25@mail.ru75,362
26@live.ca74,381
27@yahoo.fr66,145
28@yahoo.co.id59,728
29@cox.net58,753
30@true.com57,712
31@bigpond.com56,659
32@live.fr54,896
33@live.com.au52,850
34@abv.bg50,536
35@rediffmail.com49,450
36@yahoo.com.au49,422
37@bellsouth.net49,082
38@web.de48,816
39@seznam.cz48,242
40@naver.com43,835
41@sexy.com42,638
42@NOOB.com41,187
43@sky.com39,185
44@charter.net38,389
45@windowslive.com36,441
46@wp.pl34,908
47@ntlworld.com32,284
48@yo.com31,413
49@shaw.ca30,084
50@hotmail.it29,848
51@hotmail.de29,126
52@hotmail.es28,466
53@yahoo.com.vn28,313
54@gmx.de28,297
55@live.dk28,164

More Databases

We are virtually up to our eyeballs in databases so we'll be adding 18 others with this release. They are not processed yet but we expect them to be finished by tomorrow, here's the list and approximate hack date:

  • AvMagazine.it - 134,657 users - September 9th, 2016
  • AllGsmun.com - 134,859 users - September 15th, 2016
  • CraftsForum.co.uk - 143,870 users - September 2nd, 2016
  • CuttingEdgeMuscle.com - 90,338 users - September 11th, 2016
  • DVDrBase.info - 90,174 users - October 8th, 2013
  • Enworld.org - 284,586 users - September 14th, 2016
  • Babeunion.com - 61,115 users - September 10th, 2016
  • OldVersion.com - 81,344 users - September 1st, 2016
  • Pashnit.com - 41,181 users - January 16th, 2015
  • PatriotGuard.org - 343,249 users - September 10th, 2016
  • SkodaForum.com - 63,962 users - July 28th, 2016
  • SprintUsers.com - 422,681 users - September 16th, 2016
  • StoicStudio.com - 56,089 users - September 4th, 2016
  • TheHackerParadise.com - 39,563 users - September 2nd, 2016
  • AutoGeek.com - 74,576 users - August 21st, 2016
  • GEarthHacks.com - 242,786 users - August 21st, 2016
  • TitanQuest.com - 100,722 users - August 21st, 2016
  • Vbet.com - 1,164,546 users - August 19th, 2016

The next breach will contain about 40 million users once we're finished processing it, so stay tuned! We also have these 52m users we may add before then. https://www.riskbasedsecurity.com/2016/10/modern-business-solutions-stumbles-over-a-modern-business-problem-58m-records-dumped-from-an-unsecured-database/