ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

OnRPG Data Breach

onrpg.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 1,047,640
Breach date 01 Jul 2016
Added to tracker 08 May 2025
Data classes 4

What happened

In July 2016, the now defunct free online games list website OnRPG suffered a data breach that was later redistributed as part of a larger corpus of data. The incident exposed just over 1M email and IP addresses alongside usernames and passwords stored as salted MD5 hashes.

Exposed data

Email addresses IP addresses Passwords Usernames

Recommended actions

  • Change your OnRPG password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing OnRPG โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP