Earth 2

What Happened

In October 2024, 421k unique email addresses from the virtual earth game Earth 2 were derived from embedded Gravatar images. Appearing alongside player usernames, the root cause was related to how Gravatar presents links to avatars as MD5 hashes within consuming services, a feature Earth 2 advised has now been disabled on their platform. This incident did not expose any further personal information, passwords or financial data.

Compromised Data

Email addresses

Usernames

Recommended Actions

Monitor for Suspicious Activity

Watch for unusual login attempts, spam and phishing emails.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

Breach Overview

Affected Accounts:

421 thousand
Breach Occurred:

October 2024
Added to HIBP:

7 Nov 2024

Recommended Actions

Change Your Password

If you haven't changed your Earth 2 password since 2024, do so immediately.

Enable Two-Factor Authentication

Add an extra layer of security to your account.

Check Other Accounts

If you used the same password elsewhere, change those too.

Monitor for Suspicious Activity

Watch for unusual login attempts or messages from your account.

Use 1Password to generate and store strong, unique passwords for all your accounts.

Try 1Password

Earth 2

What Happened

Compromised Data

Recommended Actions

Monitor for Suspicious Activity

Breach Overview

421 thousand

October 2024

7 Nov 2024

Recommended Actions

Change Your Password

Enable Two-Factor Authentication

Check Other Accounts

Monitor for Suspicious Activity

Services

Information