Latest News
MMO game Street Mobster leaking data of 1.9 million users due to critical vulnerability
Reading Time: 3 minutes
Attackers could exploit the SQL Injection flaw to compromise the game’s database and steal user data.
The CyberNews.com Investigation team discovered a critical vulnerability in Street Mobster, a browser-based massively multiplayer online game created by Bulgarian development company BigMage Studios.
Street Mobster is a free to play, browser-based online game in the mafia empire genre where players manage a fictional criminal enterprise. The game boasts a 1.9+ million player base and stores a user record database that can be accessed by threat actors by committing an SQL Injection (SQLi) attack on the game’s website.
Other games created by BigMage Studios are also potentially vulnerable to the same type of attack, which means that there is a possibility that even more users might be at risk.
The records that can be compromised by exploiting the SQLi vulnerability in Street Mobster potentially include the players’ usernames, email addresses, and passwords, as well as other game-related data that is stored on the database.
Fortunately, after we reported the vulnerability to BigMage Studios, CERT Bulgaria, and the Bulgarian data protection authority, the issue has been fixed by the developers and the user database is no longer accessible to potential attackers.
What is SQL Injection?
First found back in 1998, SQLi is deemed by the Open Web Application Security Project (OWASP) as the number one web application security risk.
Even though this vulnerability is relatively easy to fix, researchers found that 8% of websites and web applications are still vulnerable to SQLi attacks in 2020. Which, from a security perspective, is inexcusable. So much so, in fact, that UK internet service provider TalkTalk was hit with a record £400,000 fine over succumbing to a cyberattack that involved SQLi.
The vulnerability works by injecting an unexpected payload (a piece of code) into the input box on the website or in its URL address. Instead of reading the text as part of the URL, the website’s server reads the attacker’s payload as code and then proceeds to execute the attacker’s command or output data that would otherwise be inaccessible to unauthorized parties. Attackers can exploit SQLi even further by uploading pieces of code or even malware to the vulnerable server.
The fact that Street Mobster is susceptible to SQLi attacks clearly shows the disappointing and dangerous neglect of basic security practices on the part of the developers at BigMage Studios.
How we found this vulnerability
Our security team identified an SQL Injection vulnerability on the Street Mobster website and were able to confirm the vulnerability by performing a simple command injection test on the website URL. The CyberNews team did not extract any data from the vulnerable Street Mobster database.
What’s the impact of the vulnerability?
The data in the vulnerable Street Mobster database can be used in a variety of ways against the players whose information was exposed:
By injecting malicious payloads on Street Mobster’s server, attackers can potentially gain access to said server, where they can install malware on the game’s website and cause harm to the visitors – from using the players’ devices to mine cryptocurrency to redirecting them to other malicious websites, installing malware, and more.
The 1.9 million user credentials stored on the database can net the attackers user email addresses and passwords, which they can potentially use for credential stuffing attacks to hack the players’ accounts on other gaming platforms like Steam or other online services.
Because Street Mobster is a free-to-play game that incorporates microtransactions, bad actors could also make a lot of money from selling hacked player accounts on gray market websites.
What to do if you’ve been affected?
If you have a Street Mobster account, make sure to change your password immediately and make it as complex as possible. If you’ve been using your Street Mobster password on any other websites or services, change that password as well. This will prevent potential attackers from accessing your accounts on these websites in case they try to reuse your password for credential stuffing attacks.
However, it’s ultimately up to BigMage Studios to completely secure your Street Mobster account against attacks like SQLi.
Disclosure and lack of communication from BigMage Studios
Following our vulnerability disclosure guidelines, we notified the BigMage Studios about the leak on August 31, 2020. However, we received no reply. Our follow-up emails were left unanswered as well.
We then reached out to CERT Bulgaria on September 11 in order to help secure the website. CERT contacted the BigMage Studios and informed the company about the misconfiguration.
Throughout the disclosure process, BigMage Studios stayed radio silent and refused to get in touch with CyberNews.com. Due to this reason, we also notified the Bulgarian data protection agency about the incident on October 9 in the hopes that the agency would be able to pressure the company into fixing the issue.
Eventually, however, BigMage Studios appear to have fixed the SLQi vulnerability on streetmobster.com, without informing either CyberNews.com or CERT Bulgaria about that fact.
Source: Latest News on European Gaming Media Network
This is a Syndicated News piece. Photo credits or photo sources can be found on the source article: MMO game Street Mobster leaking data of 1.9 million users due to critical vulnerability
Latest News
G2’s 10yr Anniversary Celebrations Continue with their First-Ever Anime Capsule Collaboration with Solo Leveling
Reading Time: 3 minutes
- The limited-edition G2 x Solo Leveling capsule collection launches November 14, featuring streetwear pieces that capture the spirit of a generation raised on anime, gaming, and fashion, with quiet confidence stitched into every piece
- The capsule marks G2’s first-ever anime collaboration and Solo Leveling’s debut entry into the world of esports
- The collection will be available for purchase exclusively via G2’s shop front
- Solo Leveling took the anime world by storm becoming the most-rated series ever on Crunchyroll
G2, one of the world’s leading entertainment and esports brands, is proud to unveil its first-ever anime collaboration with Solo Leveling, the globally acclaimed anime phenomenon, for the launch of a limited-edition capsule collection. With gaming and anime blurring the lines more than ever, this new collaboration unites the worlds of competitive gaming, anime and street fashion, and continues to disrupt the esports fashion space.
Inspired by Solo Leveling’s signature dark visuals and its powerful, underdog narrative, the collection channels the spirit of transformation that defines both the anime and G2’s competitive ethos. The design direction is deliberately dark and understated, with flashes of lightning and sparks that echo Solo Leveling hero Jin-Woo’s bursts of power as he levels up in the shadows of underground dungeons and daily grinds. Each item in the drop balances minimalist silhouettes and tonal palettes with refined visual cues – subtle details that speak volumes to those who IYKYK.
This collaboration is more than merchandise; it is a wearable narrative, tapping into the mindset of a generation raised on glow-ups, grind culture, and story-driven self-expression. Crafted for people who exist online and offline simultaneously, the G2 x Solo Leveling capsule fits seamlessly into the language of modern high-low streetwear, designed for everyday wear while remaining rooted in story and symbolism.
Solo Leveling has quickly become one of the most successful anime series of recent years. Since its premiere in early 2024, it has built a devoted global fanbase and earned nine awards at the 2025 Crunchyroll Anime Awards, including Anime of the Year. The series tells the story of Sung Jin-Woo, a once-weak hunter who rises in secret to become the most powerful player in a gamified world, a character arc that strongly aligns with G2’s own “zero to hero” journey. The first two seasons are available to stream exclusively on Crunchyroll.
The capsule collection is the latest in a line of exclusive drops from G2, following high-profile collaborations with Ralph Lauren, Warner Bro’s Batman, and iconic lifestyle brand Smiley. It’s another step forward in G2’s journey as a cultural leader, redefining what it means to be an esports organisation.
“We’ve wanted to release an anime collaboration for the longest time so we’re more than excited to kick off our first ever anime drop with Solo Leveling. It feels like the perfect fit for G2’s story – relentless, transformative, and built from the grind up.” says Sabrina Ratih, COO of G2 Esports. “This is more than a fashion drop, it’s a statement of where gaming, anime, and street culture are headed. We’re not just celebrating a shared story of power and perseverance, we’re inviting fans to wear that story, live it and own it. This collection continues our quest to reshape esports fashion and create subtle statement pieces that bridge the gap between fandom and lifestyle.”
Celebrating its 10th anniversary this year, the organisation continues to evolve from an elite competitive force into a global lifestyle brand. With over 40 million fans worldwide and entering into new ventures such as its own media house, 62, and a recent expansion into traditional sports via Gerard Piqué’s Kings League.
The G2 x Solo Leveling Capsule Collection will be available for purchase exclusively through G2’s online store g2esports.com from November 14.
The post G2’s 10yr Anniversary Celebrations Continue with their First-Ever Anime Capsule Collaboration with Solo Leveling appeared first on European Gaming Industry News.
Latest News
Clever Advertising opens new Malta office, launches fully paid work experience programme for young local talent
Reading Time: 3 minutes
Clever Advertising, a performance marketing agency for tier one iGaming operators and Fintechs, has today officially launched its new strategic office in Malta, reinforcing the island’s growing reputation as a European hub for digital and technology-driven industries.
The new office, located over two floors at the Wembley Business Centre in Msida, will serve as the company’s main base outside Portugal. Its opening marks an important step in Clever Advertising’s global expansion and will bring new career opportunities to Malta’s digital sector.
From Portugal to the world
Founded in Porto, Portugal, in 2007, Clever Advertising has grown into a global leader in affiliate and performance marketing, specialising in the iGaming and Financial Services industries. The company helps international brands attract new customers through a mix of digital advertising, SEO, mobile campaigns, influencer partnerships, and other online marketing channels. Clever Advertising operates on a partnership model – investing its own resources upfront to acquire customers for its clients and earning revenue only when those campaigns succeed.
Silvio Schembri, Minister for Economy, Enterprise and Strategic Projects commented “Clever Advertising’s decision to expand in Malta is another proof of the confidence investors continue to place in our country. Their growth reflects the direction we are taking through Malta Vision 2050, strengthening high-value sectors and creating quality careers for our youths. I particularly welcome their commitment to developing local talent through the Clever Launchpad, which aligns perfectly with our efforts to equip our youths with valuable skills in this fast-evolving sector. As a government, we will keep fostering the right environment for innovative companies to grow.”
Ivan Filletti, CEO of Gaming Malta commented: “Today, we are not only celebrating the inauguration of new offices, but also the continued strengthening of Malta’s gaming ecosystem. We are delighted to welcome Clever Advertising — a company whose energy, values, and investment in both people and interactive entertainment align with the Malta Vision 2050 framework, our roadmap for sustainable growth and resilience.”
“This is an exciting milestone for Clever Advertising,” said Alberto Simões, Managing Director for Malta. “Malta was a natural strategic choice for us. The island offers a thriving talent pool, close proximity to key clients, and a solid regulatory environment in both the Gaming and Financial Services sectors – all of which make it one of the best places in Europe to grow a tech business.
“Our company operates on a true partnership model. We invest upfront to acquire new customers for our clients and share in the resulting revenue. This success-based structure means that when our clients grow, we grow. It’s a win–win model that will directly contribute to the Maltese economy, help generate sustainable jobs, and build long-term partnerships rather than short-term campaigns.
“We’re here to be part of Malta’s business community for the long term, not only as employers, but as partners helping to advance innovation and professional skills on the island.”
Creating jobs and developing skills
The company today also announced its intention to invest in local talent development through the Clever Launchpad, a paid work experience initiative designed for Maltese youth who have recently finished school and are not yet in work or further education.
The programme offers hands-on experience, mentorship, and international exposure within the fast-growing digital sector. Participants will also have the opportunity to spend time at Clever Advertising’s headquarters in Porto. The scheme will be fully funded by Clever Advertising.
“We believe opportunity should be accessible to everyone,” added Simões. “The Clever Launchpad scheme tackles the misconception that digital jobs at international companies in Malta aren’t for the local residents. It’s designed to open doors for young people, even those without a university degree, and give them the chance to build a global career from right here in Malta.”
The post Clever Advertising opens new Malta office, launches fully paid work experience programme for young local talent appeared first on European Gaming Industry News.
Reading Time: < 1 minute
StarLadder is proud to welcome Blacklyte as the Official Furniture Partner of the StarLadder Budapest Major 2025, bringing premium-grade desks and chairs to support the world’s best Counter-Strike players during one of the biggest esports events of the year.
All player setups at the Major – including on-stage booths and backstage practice areas – will be equipped with Blacklyte’s high-performance gaming furniture, including the Blacklyte Athena Pro Gaming Chair and the Blacklyte Atlas Lite Standing Desk, designed specifically for professional esports environments.
“Comfort and stability are crucial in high-pressure matches,” said Alex Liu, Founder and CEO of Blacklyte. “We’re excited to support the players at StarLadder Budapest Major 2025 with gear that’s built for champions.
The partnership ensures that every pro player competing from December 11 to 14 will have the ergonomic support and functionality required to perform at their highest level — whether in practice or under the spotlight on stage.
“Blacklyte’s dedication to quality, design, and player comfort makes them the ideal partner for the Major,” said Viacheslav Shcherbakov, Head of Sales & Partnerships at StarLadder. “We’re proud to showcase their products on the biggest stage of the CS2 season.”
Fans attending the event will also be able to visit the Blacklyte PlayZone, where they can experience the same chairs and desks used by the pros, participate in giveaways, and take home exclusive merch.
For more information about Blacklyte and their activation at the event, follow us on social media or visit major.starladder.com
The post Blacklyte Joins StarLadder Budapest Major 2025 as its Official Furniture Partner appeared first on European Gaming Industry News.
-
Latest News2 months ago
Duels for Friends in Trophy Hunter. Invite your friends and create a shared space for fun and competition.
-
Latest News3 months ago
BC.GAME Launches “Nezha” Slot with Up to 46,656 Ways to Win and 10,000x Max Payout
-
Latest News2 months ago
Announcement: 25th September 2025
-
Latest News3 months ago
NODWIN Gaming Acquires Sony Interactive Entertainment’s Stake in Evo; Becomes Majority Holder
-
Latest News2 months ago
Flamez – A Fiery New Online Casino Contender from Ganadu
-
Latest News2 months ago
AI-Powered Gamification Arrives on Vegangster Platform via Smartico
-
Latest News2 months ago
The Countdown is On: Less Than 3 Months to Go Until The Games of The Future 2025 Kicks Off in Abu Dhabi
-
Latest News2 months ago
GR8 Tech’s Bet It Drives Wraps Season 1 with Stephen Crystal—From Las Vegas Legends to Global Gaming Leadership
You must be logged in to post a comment Login