Database Breach Allows Hacker Steal 569703 Mortal Online Players Account InformationFigure 1 Image Courtesy of Mortal Online 569703 Mortal Online players had their data leaked because of a recent data breach in June and the login information was sold online in public fora. Mortal Online is a popular Mmorpg developed and released by Star Vault in 2010. The user passwords have been stored as Md5 hashes which is an insecure way to store passwords. Swedish indie video game company Star Vault launched their Mmorpg Mortal Online in 2010 and had a fairly successful and wide release with a large number of free-to-play players signing up. Developers at the company announced in 2012 that they stored user data including passwords in Md5 hashes but did not change their storage methods to protect user data. Mortal Online’s Md5 hashing function is mostly used as a means to verify data integrity and is powerful against unintended manipulation of data. It is however vulnerable to brute force attacks and in a matter of seconds the data can be broken. Mortal Online leak has been added to the database by popular website Have I Been Pwned which hosts a compilation of all known data breaches. Consumers can use this page to see if it has influenced them. According to Have I Been Pwned founder Troy Hunt when he got access to the compromised database he provided email addresses and passwords. He announced the Md5 hashes had been stolen and cracked shortly after breach of the file. While many claim it may not be entirely true to have a strong password that can defend you from hacks. Like in the case of Mortal Online users with secure passwords, due to negligence and refusal to implement better security for user data were affected too. Grip.