Thousands of Passwords Stolen from Bitcoin Poker Site
The poker site ‘Seals with Clubs’ which only accepts Bitcoins has confirmed that its database was compromised and that over 42,000 passwords were stolen.Last week the site said that its server had been compromised and within twenty-four hours of the hack a collection of password hashes was posted to a forum where many people tried to crack them.
It turns out that Seals with Clubs was using an out-of-date encryption function and as a result it didn’t take long for people to start cracking passwords. As soon as passwords such as “sealswithclubs” and “88seals88” appeared it became obvious where the file originated.
As a result Seals with Clubs sent a message to its players telling them to change their passwords.
A post on its website also appeared reading, “The datacenter that we employed up to November permitted unauthorized access to a database server and our database containing user credentials was likely compromised. Passwords were salted and hashed per user, but to be safe every user
MUST change their password when they next log in.”
The site has now promised to implement extra security measures such as two-factor authentication and login from a limited number of IP addresses.