Now.gg Roblox Users Beware: 900K Roblox Users May Be at Risk

Almost a million Now.gg Roblox accounts have allegedly been leaked on a hacker forum.

Introduction

Approximately a month ago, messages like these have started popping up all across the Roblox space:

According to sources on the web, that could be because nearly a million Now.gg Roblox accounts have allegedly been shared on a cybercriminal forum. According to sources, the data breach of Roblox is associated with stealer logs – a group of data files generated by infostealers (a form of malicious software.)

Was There a Now.gg Roblox Data Breach?

It is alleged that a system got infected by info stealers and scraped Roblox logins of around a million users. Once that happened, the Now.gg Roblox data stolen by info stealers was put into a compressed folder and sent to a Command-and-Control (CoC) server controlled by an attacker. In other words, there was no Roblox data breach – the account details about users came from scraped data from the computers of infected users.

How to Protect Yourself From Infostealers?

Infostealers are a form of malware that’s designed to infiltrate computers and steal information within them: once the information is stolen, it’s then “packaged” and sent to a Command-and-Control server controlled by the attacker. Then, it is traded on the dark web and if it becomes public, the data often ends up in data breach search engines.

To protect yourself from infostealers, make sure to use well-known antivirus and/or antilogger software that can detect and quarantine security threats, avoid downloading cheats for Now.gg Roblox and/or other games if you’re unsure of their source, utilize strong passwords for all of your online accounts (password managers like LastPass, 1Password, Dashlane, and the like can help with this) as well as peruse data breach search engines like BreachDirectory.com to ensure your data is not in the hands of cybercriminals. Alternatively, if you are a developer, consider making use of the BreachDirectory API to implement the data inside the BreachDirectory.com data breach search engine into your own application to further your use case. At the same time, be wary of impersonators: the only original domain belonging to BreachDirectory is BreachDirectory.com. Everything else is fake and/or plagiarized.