
I try to find the answers to my questions on my own so I can learn better, but this one has me stumped. Nexus Mods warns that users should vigilant for potential phishing or credential stuffing attacks that utilize your registration email and password.īleepingComputer has reached out to Nexus Mods with questions but had not heard back at this time.I've spent several days looking around trying to find an answer to the question of how to remove unmanaged mods from my MO installed mods list.

It is also suggested that you use a password manager to create unique passwords at every site you visit so that if your information is disclosed at a data breach, it cannot affect your accounts at other sites. Therefore, it is strongly suggested that all users change their passwords on the site, especially if you commonly reuse the same password at every site. Unfortunately, they can not rule out that the exploit was not used in the past to access other user data such as member's email addresses, password hashes, and salts. When they discovered the breach, Nexus Mods states that they secured the affected endpoints and moved the release schedule for the next version of the site to quickly retire their legacy codebase.

Using an exploit in our legacy codebase, our logs confirm that they accessed a small number of user records from the old user service." "In the very early morning of 8th November 2019 we noticed suspicious activity by a potentially malicious third party actor against our services.

In a security notice posted to their site today, Nexus Mods has disclosed that an unauthorized actor hacked their services on November 8th, 2019 through an exploit in their legacy codebase. In order to download mods from the site, users must first register an account on the site, which has led to a user base of close to 19 million registered members. Nexus Mods is a site where users can download modifications for games such as Skyrim, Fallout, Witcher, Dragon Age, and many more. The popular game modification site Nexus Mods has announced a security incident that may have exposed the registration information for its users.
