Call it a slow leak. Four months after the gaming site Gamigo warned users about a hacker intrusion that accessed some portions of its users’ credentials, more than 8 million usernames, emails and and encrypted passwords from the site have been published on the Web, according to the data breach alert service
[edited by: incrediBILL at 8:16 pm (utc) on Jul 23, 2012] [edit reason] typo [/edit]
The site warned users four months ago that a hacker intrusion had compromised data(...). "All necessary measures to minimize the impact of the attack were initiated immediately at that time. This included notification of all affected users, resetting of passwords, taking the hacked database offline, a thorough review of the company's IT security policies, removal of a portion of the company's offerings from the internet, notification of the relevant civil authorities and a clarification of the ensuing legal questions."
For those who speak german, here the original anouncement on the gamigo website from March: [forum.gamigo.com...]
It's a little embarassing for PwnedList that they "discovered" a leak month after the company already publicly announced the leak and sent millions of emails out to notify all affected users.