Yet another security issue occurred as the Roll20 data breach was confirmed by the website owners in a statement sent out to users.

Roll20, a popular digital platform for playing tabletop games like Dungeons & Dragons, has reported a data breach. On June 3, 2024, Roll20 sent emails to its users to inform them about the breach. The leaked data includes names, email addresses, last known IP addresses, and the last four digits of credit card numbers.

Obviously, it is not a shocking reveal that the bad actors aimed at this highly popular website in its own genre. They have plenty of users and all those users have committed to this website with their information, including email address and more. That is why the Roll20 data breach is a huge deal, and it should be taken seriously, just like the Patelco security breach and the HubSpot data breach.

Roll20 data breach
The Roll20 data breach was confirmed in a statement (Image Credit)

Roll20 data breach has been confirmed by the website

The company found out about the breach on June 29, 2024, at 6:30 PM when it noticed suspicious activity on a compromised administrative account. Roll20 responded quickly by blocking the account and starting an investigation to understand the breach better.

This is not the first time Roll20 has had security problems. Back in 2018, a similar breach affected four million users, exposing the same type of personal data. These repeated breaches raise serious concerns about how secure Roll20’s user data is.

Users were warned about Roll20 data breach

Right after discovering the breach, Roll20 quickly warned its users by email. The email explained what data might have been stolen and reassured users that their passwords and full payment details were safe. Roll20 also mentioned that they had no proof that anyone had misused the data.

Roll20 suggested that users should keep an eye on their accounts for any strange activities. They also encouraged users to check the data that was exposed by using a special support ticket system.

Despite Roll20’s fast action and efforts to reassure users, the news of the breach has caused worry among its community, especially because this is not the first time their data has been at risk.

Roll20 data breach
Users were frustrated over the Roll20 data breach and they discussed it on Reddit (Image Credit)

How to defend yourself against security breaches

Protecting yourself from security breaches involves taking proactive steps to secure your online presence. Here are some simple yet effective ways to safeguard your information:

  1. Use Strong Passwords: Create complex passwords that include a mix of letters, numbers, and symbols. Make sure each of your accounts has a unique password to prevent a breach on one site from affecting others.
  2. Update Regularly: Keep your software, apps, and devices updated. Updates often include security patches that protect against new threats.
  3. Enable Two-Factor Authentication (2FA): Add an extra layer of security to your accounts. With 2FA, even if someone steals your password, they would need a second code to access your account.
  4. Be Cautious with Emails and Links: Avoid clicking on links or downloading attachments from unknown or suspicious emails. These could be phishing attempts designed to steal your personal information.
  5. Use Secure Networks: Be wary of using public Wi-Fi for accessing sensitive information. Use a virtual private network (VPN) if you need to access important data over a public connection.
  6. Monitor Your Accounts: Regularly check your online accounts for any unauthorized activity. Early detection can prevent further damage.

What is Roll20?

Roll20 is a digital platform that lets users play tabletop role-playing games online with others. It started in 2012 and offers tools like chat, character sheets, and maps that make online gaming possible.

The platform became very popular during the COVID-19 lockdowns as it helped people play games together without meeting in person. By March 2021, Roll20 had over eight million users.

We hope that the stolen information after the Roll20 data breach won’t cause any issues to any user!

Featured image credit: Roll20