DKPMinus team suggests that everyone change their passwords if they were playing on Turtle-WoW and using the same password elsewhere.
From the Turtle-WoW Website:
Regarding the ongoing outage
Unfortunately, our network has been the target of an extensive attack culminating in hackers gaining access to our login DB. As of now, we can confirm that the hackers gained access to the account data, but no character data is lost.
This means that while no progress should be lost once servers are back online, the encrypted passwords and emails are at risk of being leaked. However, the party behind the attack has made no demands nor have they given any intentions beyond “entertainment.”
It is our responsibility to inform you all the risks, even if login details were not stored in plaintext. Further, we encourage you to change your password if you used the same login information anywhere else. While passwords are encrypted and hashed, it is still encouraged to exercise caution and change your login information anywhere it was used.
While we “could” have the server back up and running almost immediately with little to no lost progress due to the backup system we have in place, we are choosing to delay while we further reevaluate our infrastructure, consult with cybersecurity professionals, and ensure similar methods can never be used to gain access to our servers again.
We are deeply sorry for allowing such an incident to happen, and will double our efforts to ensure such an attack never happens again.
