Game24h.vn

Game24h.vn, operating under that alias with headquarters in Viet Nam, was implicated in a significant cybersecurity incident disclosed in October 2020. On October 28, a threat actor advertised the sale of aggregated user databases purportedly stolen from seventeen organizations, including Game24h.vn, on a hacker forum. The combined datasets contained approximately 34 million records, though the exact contribution from Game24h.vn relative to other victims was not specified in public reporting. The broker claimed no direct role in the breaches but offered datasets containing email addresses and passwords hashed with varying algorithms, with Game24h.vn's data specifically exposed via MD5 hashing—a cryptographically weak method considered inadequate for modern security standards.

The compromised information extended beyond credentials in some affected organizations, potentially including names, contact details, financial data, or national identifiers, though the precise composition of Game24h.vn's dataset remained unconfirmed. Other impacted entities spanned e-commerce, education, and entertainment sectors, suggesting Game24h.vn may operate within or adjacent to these industries, though its specific business activities were not detailed in available sources. The broker had a documented history of selling similar datasets through private channels prior to this public forum listing, indicating established access to compromised data markets. While one affected company acknowledged the breach at the time, most entities named—including Game24h.vn—had not issued public confirmations or statements regarding the compromise when the incident was reported.

This incident highlighted systemic risks associated with credential storage practices and third-party data aggregation. The public exposure of MD5-hashed passwords specifically from Game24h.vn suggested potential lapses in contemporary security protocols, as industry standards had long advocated for stronger hashing algorithms like bcrypt or PBKDF2. The scale of the aggregated breach—34 million records across multiple sectors—underscored the attractiveness of gaming and entertainment platforms as targets for credential harvesting campaigns. No subsequent information regarding organizational changes, ownership structure, or remediation efforts by Game24h.vn was available in the cited source material following the disclosure.