Email addresses , passwords and IP addresses were exposed . The breach Attack.Databreach , which took place in September 2015 but was only recently disclosed , compromised Attack.Databreach email addresses , passwords and IP addresses , the Daily Mail reports . The hacker 's likely aim was to profit financially from the stolen information. `` Data breaches Attack.Databreach are often sold via darkweb sites or within closed trading circles , '' Hunt told the Daily Mail . Still , Willy Leichter , vice president of marketing at CipherCloud , told eSecurity Planet by email that while the attack targeted gaming forums , any large scale breach like this should concern businesses as well . `` Users often use common passwords , security questions , or personal email addresses to access personal and work-related systems , making it easier for hackers to break into Attack.Databreach corporate networks and steal Attack.Databreach massive amounts of data , '' he said . And while all users are being advised to change their passwords , Jeff Hill , director of product management at Prevalent , said it may be too late to make a difference. `` The initial breach Attack.Databreach occurred in September 2015 , giving the attackers 17 months to operate undetected , more than enough time to find and exfiltrate Attack.Databreach enough data to profit greatly from their efforts , '' he said . `` At this point , it ’ s not even clear the breach was actually detected -- possibly the attackers simply [ wrung ] as much return as possible out of their theft , and simply discarded the remaining useless data , '' Hill added .