ShellCodeX Breach Report
Dungeons & Dragons Online Data Breach
ddo.com
Verified breach
Passwords exposed
Accounts exposed
1,580,933
Breach date
02 Apr 2013
Added to tracker
12 Mar 2016
Data classes
6
What happened
In April 2013, the interactive video game Dungeons & Dragons Online suffered a data breach that exposed almost 1.6M players' accounts. The data was being actively traded on underground forums and included email addresses, birth dates and password hashes.
Exposed data
Dates of birth
Email addresses
IP addresses
Passwords
Usernames
Website activity
Recommended actions
- Change your Dungeons & Dragons Online password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing Dungeons & Dragons Online โ attackers weaponise breach data quickly.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP