Hackers are taking Roblox credentials leaked on Pastebin, accessing accounts, and leaving the same « Ask your parents to vote for Trump this year » message on thousands of Roblox profiles.
Hackers have breached more than 1,800 Roblox accounts and defaced user profiles with messages in support of Donald Trump’s reelection campaign.
Users with accounts on the Roblox multiplayer game said that profile pages on the Roblox.com website for followers and people they followed were suddenly defaced over the weekend with a message that read « Ask your parents to vote for Trump this year! #MAGA2020. »
The first intrusions appear to have started last week, according to messages shared on Reddit, Twitter, and Roblox fan forums.
Besides the text message in support of Trump, avatars for the hacked accounts were also modified to wear attire commonly worn by the typical Donald Trump supporter, such as a red cap and a t-shirt with an American flag and bald eagle.
Users who had their accounts hacked and disclosed the incident on Roblox forums admitted to reusing passwords across multiple online accounts or using easy-to-guess credentials.
Many also admitted to not enabling a feature called two-step verification (2SV).
Roblox uses an email-based 2SV system that requires users to enter a valid username and password, and then a one-time short-lived code that it sends to the user’s email inbox.
It is currently unknown how hackers breached the accounts. Roblox has not returned a request for comment to ZDNet or other news publications.
However, with the help of threat intelligence firm KE-LA, ZDNet was able to identify multiple web pages containing large lists of Roblox usernames and cleartext passwords.