Latest News
MMO game Street Mobster leaking data of 1.9 million users due to critical vulnerability
Reading Time: 3 minutes
Attackers could exploit the SQL Injection flaw to compromise the game’s database and steal user data.
The CyberNews.com Investigation team discovered a critical vulnerability in Street Mobster, a browser-based massively multiplayer online game created by Bulgarian development company BigMage Studios.
Street Mobster is a free to play, browser-based online game in the mafia empire genre where players manage a fictional criminal enterprise. The game boasts a 1.9+ million player base and stores a user record database that can be accessed by threat actors by committing an SQL Injection (SQLi) attack on the game’s website.
Other games created by BigMage Studios are also potentially vulnerable to the same type of attack, which means that there is a possibility that even more users might be at risk.
The records that can be compromised by exploiting the SQLi vulnerability in Street Mobster potentially include the players’ usernames, email addresses, and passwords, as well as other game-related data that is stored on the database.
Fortunately, after we reported the vulnerability to BigMage Studios, CERT Bulgaria, and the Bulgarian data protection authority, the issue has been fixed by the developers and the user database is no longer accessible to potential attackers.
What is SQL Injection?
First found back in 1998, SQLi is deemed by the Open Web Application Security Project (OWASP) as the number one web application security risk.
Even though this vulnerability is relatively easy to fix, researchers found that 8% of websites and web applications are still vulnerable to SQLi attacks in 2020. Which, from a security perspective, is inexcusable. So much so, in fact, that UK internet service provider TalkTalk was hit with a record £400,000 fine over succumbing to a cyberattack that involved SQLi.
The vulnerability works by injecting an unexpected payload (a piece of code) into the input box on the website or in its URL address. Instead of reading the text as part of the URL, the website’s server reads the attacker’s payload as code and then proceeds to execute the attacker’s command or output data that would otherwise be inaccessible to unauthorized parties. Attackers can exploit SQLi even further by uploading pieces of code or even malware to the vulnerable server.
The fact that Street Mobster is susceptible to SQLi attacks clearly shows the disappointing and dangerous neglect of basic security practices on the part of the developers at BigMage Studios.
How we found this vulnerability
Our security team identified an SQL Injection vulnerability on the Street Mobster website and were able to confirm the vulnerability by performing a simple command injection test on the website URL. The CyberNews team did not extract any data from the vulnerable Street Mobster database.
What’s the impact of the vulnerability?
The data in the vulnerable Street Mobster database can be used in a variety of ways against the players whose information was exposed:
By injecting malicious payloads on Street Mobster’s server, attackers can potentially gain access to said server, where they can install malware on the game’s website and cause harm to the visitors – from using the players’ devices to mine cryptocurrency to redirecting them to other malicious websites, installing malware, and more.
The 1.9 million user credentials stored on the database can net the attackers user email addresses and passwords, which they can potentially use for credential stuffing attacks to hack the players’ accounts on other gaming platforms like Steam or other online services.
Because Street Mobster is a free-to-play game that incorporates microtransactions, bad actors could also make a lot of money from selling hacked player accounts on gray market websites.
What to do if you’ve been affected?
If you have a Street Mobster account, make sure to change your password immediately and make it as complex as possible. If you’ve been using your Street Mobster password on any other websites or services, change that password as well. This will prevent potential attackers from accessing your accounts on these websites in case they try to reuse your password for credential stuffing attacks.
However, it’s ultimately up to BigMage Studios to completely secure your Street Mobster account against attacks like SQLi.
Disclosure and lack of communication from BigMage Studios
Following our vulnerability disclosure guidelines, we notified the BigMage Studios about the leak on August 31, 2020. However, we received no reply. Our follow-up emails were left unanswered as well.
We then reached out to CERT Bulgaria on September 11 in order to help secure the website. CERT contacted the BigMage Studios and informed the company about the misconfiguration.
Throughout the disclosure process, BigMage Studios stayed radio silent and refused to get in touch with CyberNews.com. Due to this reason, we also notified the Bulgarian data protection agency about the incident on October 9 in the hopes that the agency would be able to pressure the company into fixing the issue.
Eventually, however, BigMage Studios appear to have fixed the SLQi vulnerability on streetmobster.com, without informing either CyberNews.com or CERT Bulgaria about that fact.
Source: Latest News on European Gaming Media Network
This is a Syndicated News piece. Photo credits or photo sources can be found on the source article: MMO game Street Mobster leaking data of 1.9 million users due to critical vulnerability
Reading Time: < 1 minute
|
|
|
The post Pirates of China: the new MGA Games Video Slot with a Mega Reel in Free Spins appeared first on European Gaming Industry News.
Reading Time: 4 minutes
- Team Vitality kicks off the new season with renewed energy and strong ambitions, both on the European and international stage.
- With the addition of renowned players like Chronicle and an experienced coaching staff, the club is fielding an exceptional team.
- The young prodigy Ștefan “Sayonara” Mîtcu will officially join the team after March 2026.
- All the stars are aligned to kick off this new year in VALORANT, starting with Project Blender 2025 on December 3rd.
Paris, 24th November 2025 – Team Vitality, an international esports club, is proud to present its new VALORANT roster for the 2026 season. While 2025 had started strongly with the VCT EMEA Kickoff title and a Top 4 finish at Masters Bangkok, the remainder of the journey did not meet the expected goals.
In 2026, VALORANT remains a priority for the club, with international events taking place across the globe. The integration of new talent also marks the beginning of a new chapter, highlighted by the highly anticipated addition of young prodigy Ștefan “Sayonara” Mîtcu and Timofey “Chronicle” Khromov, one of the world’s top players, to the roster.
A STAR-STUDDED ROSTER READY TO DOMINATE
The VALORANT scene is ready, and Team Vitality returns more determined than ever. Centred around Derke, this team of exceptional talents promises to be a true powerhouse for the 2026 VCT season.
Roster composition
- Timofey “Chronicle” Khromov (Russian) – 23 years old: One of the leading figures on the circuit, Chronicle brings to Team Vitality his game intelligence, composure, and experience in major victories. He reunites with his former teammate Derke. After a 2025 marked by three consecutive international finals – Masters Toronto, Esports World Cup, and Champions Paris – finishing second in all three, he now aims for victory on every stage in 2026.
- Elias “Jamppi” Olkkonen (Finnish) – 24 years old: The second Finnish star of the 2026 roster alongside Derke, Jamppi comes off an impressive 2025, narrowly missing qualification for Champions Paris. A key player in BBL Esports’ rise, he demonstrated both leadership and skill throughout the season. In 2026, Jamppi will take on the crucial role of In-Game Leader (IGL), tasked with guiding Team Vitality to victory.
- Dawid “PROFEK” Święć (Polish) – 21 years old: Alongside his former coach and teammate, PROFEK joins The Hive bringing his sharp game sense and calm, thoughtful playstyle—perfect for the role of Controller. Noticed as a rookie in 2025, he helped elevate BBL Esports from 6th to 3rd place between the Kickoff and Stage 2, delivering decisive performances against Fnatic and Team Heretics.
- Ștefan “Sayonara” Mîtcu (Moldovan) – 17 years old: Sayonara has already made his mark in the Spanish Challengers League, becoming the youngest winner and MVP in the league’s history. His outstanding performances in Split 2 confirm his status as a must-watch young talent for 2026. Having already been a part of the organisation since early 2025, Sayonara has made a statement in the French Challengers League. He will make his official VCT EMEA debut after celebrating his 18th birthday in March.
- Nikita “Derke“ Sirmitev (Finnish-Russian) – 22 years old: A former Counter-Strike player turned VALORANT competitor, Derke is considered one of the top three duelists of all time, renowned for his exceptional skills and decisive impact in matches. After winning the VCT: 2023 LOCK//IN and the VCT Masters Tokyo in the same year—a feat never achieved before—Derke has been contributing his strategic vision and talent to the team since last season, leveraging his extensive international experience. Derke was also instrumental in Team Vitality’s VALORANT EMEA KICKOFF 2025 victory earlier this year.
Coaching staff
- Gregor “PAL” Morton (Scottish) – Head Coach: PAL joins after an impressive year leading BBL Esports, guiding the team to a Top 3 finish at VCT EMEA Stage 2. Renowned for his strategic vision and leadership, he arrives at Team Vitality alongside his two trusted allies, Jamppi and PROFEK, determined to unlock the full potential of the 2026 roster.
- Benjamin “Scuttt” Hutchinson (Irish) – Strategic Coach: A former member of the Fnatic VALORANT team, he brings solid experience and an impressive track record. In 2025, he contributed to Fnatic’s VCT EMEA Stage 1 title as well as three consecutive international finals—Masters Toronto, Esports World Cup, and Champions Paris—finishing in second place each time. A former collaborator of PAL at BBL Esports, they now reunite to form a formidable coaching duo.
This talented duo will bring a fresh strategic vision aimed at strengthening the team’s competitiveness and laying the foundation for a new chapter in VALORANT.
A familiar and experienced face will be stepping in to support Team Vitality through the opening stretch of the season, until Sayonara officially joins the team in March 2026. Fans can expect someone who already knows the scene well and will slot in seamlessly when the first matches begin.
”This team is built with a vision of collaboration between subject-matter experts in mind. Everyone is here to make everyone else’s lives easier, and it is the pre-existing trusting relationships we have that will let us build and build throughout the year, focusing on the everyday actions that compound over time and give us the best chances of success. We are here to achieve things that we are proud of, but ultimately, with the people we have involved, our goals for the team are as high as the standards we set for ourselves.” explains Gregor “PAL” Morton, Head Coach of the team.
ON THE ROAD TO 2026
In 2026, Team Vitality approaches the VALORANT scene with a clear ambition: to establish itself permanently at the top of the global esports landscape. The new roster embodies a renewed approach, placing team culture at the heart of the project. Guided by their coaching staff and a shared set of values: trust, high standards, and cohesion, the players are building a strong collective dynamic designed to last.
This stability is paired with a strong commitment to the development of Sayonara, a young prodigy on the scene, whom the organisation aims to support under the best conditions to unlock his full potential. Focused on performance development, Team Vitality has chosen an approach rooted in club culture, team cohesion, and long-term vision, with a single ambition in sight: to conquer the heights of the VALORANT Champions Tour (VCT) and the VALORANT Champions.
“VALORANT is an essential scene for us. For 2026, we wanted to build a roster combining proven leaders and promising young talent, capable of performing at the highest level, and that’s exactly what we’ve achieved. All the stars are now aligned for us to perform. We also rely on an experienced coaching staff, among the best in the scene, with a detailed and comprehensive understanding of the challenges of performance: a solid theoretical approach inherited from their academic backgrounds, combined with practical experience demonstrated by the results achieved in recent years. All of this is perfectly consistent with Team Vitality’s DNA,” says Fabien ’Neo” Devide, President and co-founder of Team Vitality.
The new-look roster will compete together for the first time on December 3rd, for the 2025 Project Blender – kicking off a new season with renewed energy and strong ambitions.
The post TEAM VITALITY UNVEILS ITS NEW VALORANT ROSTER appeared first on European Gaming Industry News.
Reading Time: 2 minutes
Players have never experienced entertainment like this. It’s time to dive into the Titan Series, FBMDS’ slot gaming collection, featuring Power Gacha, Desert Gold, Zaltik Empire and Secrets of Scarabs, games designed to elevate online casino fans’ engagement and boost operators’ retention results.
The iGaming provider has promised and delivered as FBMDS keeps pushing the limits of innovation with several slot game titles, showcasing its transformative ability in the fast-paced online casino gaming sector, and captivating campaigns for operators destined to maximize conversions.
The Titan Series was created with one factor in mind: driving retention to online casino lobbies. Coming up with products that boost player’s loyalty towards iGaming platforms was the path settled, so reinventing its slots’ portfolio with catchy storylines, immersive themes, lovable characters and rewarding game features seemed only right.
Included in the Titan Series collection are the following titles:
- Power Gacha,
- Desert Gold,
- Zaltik Empire, and
- Secrets of Scarabs.
Not only do all of these slots have interesting narratives, but they also boost engagement through its game tumble and cascading wins mechanics, proven game-features, and cross-platform optimization for prolonged gaming sessions.
While Power Gacha contemplates an Asian-inspired atmosphere, Desert Gold promises the adventure of a lifetime in a western duel of fortune. In both games, players can select their favorite character to play with, adding an extra layer of personalization that turns the gaming experience even more approachable.
Both Power Gacha and Desert Gold blend adventure with a twist, in a 6×5 grid with a tumble and cascading wins mechanic with up to 15,000x the bet wins, a 96.54% RTP and features like Free Spins, Multipliers, Ante Bet, Buy Bonus, Double Chance and Win Feature.
Furthermore, Zaltik Empire owns mystical treasures of the ancient world while players step into the heart of a forgotten empire with a lot to uncover. On the other hand, Secrets of Scarabs takes casino fans on an Egyptian-inspired journey towards the pyramids’ riches with loads of surprises.
These two blend cultural richness with a dazzling appeal, in a 6×5 grid with a tumble and cascading wins mechanic with up to 5,000x the bet wins, a 96.55% RTP and features like Free Spins, Multipliers, Ante Bet, Buy Bonus, Double Chance and Win Feature.
Apart from this, the Tournaments feature is a standout in this collection, also present in the Sublime and Momentum Series. Not only does it add an extra level of emotion to the player’s experience, as it also offers the possibility of being a part of a community with similar goals.
The online casino gaming provider has big plans as it continues to reinvent its iGaming portfolio with fresh products casino players want to play. Stay tuned to discover more about FBMDS’ upcoming products, distinctive gaming collections, and relevant deals!
The post Titan Series: FBMDS’ most recent slot collection that offers casino fans power to play appeared first on European Gaming Industry News.
-
Latest News3 months ago
Duels for Friends in Trophy Hunter. Invite your friends and create a shared space for fun and competition.
-
Latest News2 months ago
Announcement: 25th September 2025
-
Latest News3 months ago
Flamez – A Fiery New Online Casino Contender from Ganadu
-
Latest News2 months ago
GR8 Tech’s Bet It Drives Wraps Season 1 with Stephen Crystal—From Las Vegas Legends to Global Gaming Leadership
-
Latest News2 months ago
AI-Powered Gamification Arrives on Vegangster Platform via Smartico
-
Latest News2 months ago
The Countdown is On: Less Than 3 Months to Go Until The Games of The Future 2025 Kicks Off in Abu Dhabi
-
Latest News2 weeks ago
JioBLAST Launches All Stars vs India powered by Campa Energy: A New Era of Creator-Driven Esports Entertainment
-
Latest News2 months ago
Adidas Arena Set to Welcome the 2026 Six Invitational
You must be logged in to post a comment Login