Bad news for retro gaming fans! Emuparadise, a popular web site for downloading ROMs and ISOs of old games, suffered a big data breach last year, but no users got to know about it until now. The revelation came through DeHashed and haveibeenpwned.com, who started sending users notices.
The database was for sale since January, including user email addresses and passwords.
From the TechNadu blog:
Emuparadise is a popular online portal where people could once find ROMs and ISOs of old, retro video games (game images are no longer available there). The website offers emulators, game music, books, comics, TV shows (relevant to games), and a lot more. From Play Station 2 to NES, and from MAME to Gameboy Advance, Emurapadise has it all, and this is why it’s so popular and self-proclaimed “biggest retro gaming website on Earth”. Unfortunately, though, the site has apparently suffered a data breach that took place back in April 2018, and the users just got to know about. It is unclear if the website administrators ever realized what happened, as there has been no official announcement on the matter yet.
The revelation of the breach came through haveibeenpwned.com, the easy to use checker which monitors the dark web for user data that is on sale, and warns people about their risk potential. The platform defines the breach date as 1 April 2018 and claims that the compromised accounts are 1131229, containing email addresses, IP addresses, passwords, and usernames. HaveIBeenPwned got the relevant tip from DeHashed, who also clarified that the particular user database has been on sale on darknet forums since January 2019.