World Poker Tour Amateur Poker League website admits to security breach

Recently a hacker using twitter handle "@smitt3nz" hacked into the World Poker Tour Amateur Poker League(WPTAPL) website and leaked a database containing email addresses,clear-text passwords of more than 170k users.

WPTAPL Officials have now confirmed the security breach to SC Magazine.  However, they are trying to downplay the impact of the breach.

Kurt McPhail, president and CEO of WPTAPL claimed the leaked information are pretty much worthless and most of the compromised data was old.

They also said that only 50k of leaked accounts are still active and information can't even be used to log into their website because players use different separate username to log in.

I can't agree with their point that the leaked info are worthless.  The listed email ids and passwords may not allow attackers to log in the WPTAPL.  But, most of people normally use the same password for their email ID.  An attacker can use the info to compromise the email account.

 The vulnerability in question is reportedly being fixed and members are being notified about the breach.
Category: / /

Share this with Your friends: