Roblox dev conference attendees impacted by a data breach

July 10, 2024
Roblox Data Breach Online Gaming Hackers Cyberattack

Roblox announced last week that it suffered a data breach attack that impacted the Roblox Developer Conference attendees for three consecutive years starting in 2022.

Roblox is a famous online gaming and game development platform among younger gamers. This well-known game allows users to design, create, and share games with a community of over 200 million active users.

Additionally, this business hosts an annual Roblox Developer Conference (RDC), where developers may network, learn, and share knowledge with others through training and presentations on new tools.

 

Roblox confirmed that the data breach was caused by a compromise on one of its third-party service providers.

 

The company explained that they recently discovered that one of its vendors, in charge of the registration process for the conference events, had been compromised, with someone getting unauthorised access to its systems.

The compromised vendor allegedly informed the company that its website allowed illegal access to some user information from a 2022-2024 Roblox Developer Conference registration list.

The confirmed stolen information from the vendors includes conference attendees’ complete names, email addresses, and IP addresses.

The incident has also been added to a data breach notification site, which claims that the exposed list contains 10,386 unique email addresses. According to the website, 63% of the hacked email accounts are novel, meaning they had not previously been disclosed.

On a related issue, last year, the same data leak website added about 4,000 Roblox developer accounts belonging to RDC attendees whose information had been exposed on a hacking forum. However, that collection appeared from an older breach, revealing RDC attendees from 2017 to 2020.

This latest data breach does not instantly endanger the game’s developers, but the disclosed information can allow threat actors to execute targeted phishing attacks. Roblox continues its statement by stating that the company has tried to prevent similar incidents in the future.

Roblox has been an attractive target for hackers since various cybercriminal attempts have previously targeted the company and its users. Experts believe the company’s user base and economic activities attract cybercriminals.

Therefore, Roblox gamers, especially those who attended the Dev Conference in the past three years, should be cautious of unsolicited communications. Malicious entities could use stolen data to conduct cybercriminal operations, such as phishing campaigns.

About the author

Leave a Reply