Attackers Expose Plaintext Passwords of 46k Myspace93 Users After 2021 Breach
Warning to Myspace93 Users 🚨
Users of the Myspace93 parody web art site should be cautious! A dataset leaked after a reported breach in 2021 has revealed the plaintext usernames and passwords of over 46,000 registered users. The site’s co-creator, known as Janken, has pointed fingers at “trusted members” of a Windows93 Discord channel for this unfortunate leakage.
According to the latest estimates from HaveIBeenPwned (HIBP), the breach data surfaced more than five years after the January 2021 attack. Alongside the exposed usernames and passwords, email addresses and IP addresses were also compromised.
The Breach Explained 🔍
In a note penned to users, Janken explained that the breach occurred after sharing a beta app with trusted members of the Discord channel. These members allegedly betrayed Janken, using their access to steal server files and gain entry to an unencrypted credential store.
“None of them alerted me immediately to what was going on,” Janken stated. “They created a program to download our entire server, and it was only a week later that another honest user alerted me to the fact that these people were bragging about having the Myspace passwords.”
Janken expressed regret for trusting these individuals, stating, “I believed them because we were very close, and I considered them part of my team. I blame myself for being so naive.”
What Should Affected Users Do? 🛡️
As a precaution, Janken has shut down all social network-related services across all Windows93 offshoots. Affected users are urged to:
- Watch out for any reused passwords on other sites.
- Enable 2FA wherever possible.
Stay safe online!