When they discovered the breach, Nexus Mods states that they secured the affected endpoints and moved the release schedule for the next version of the site to quickly retire their legacy codebase. Using an exploit in our legacy codebase, our logs confirm that they accessed a small number of user records from the old user service.' 'In the very early morning of 8th November 2019 we noticed suspicious activity by a potentially malicious third party actor against our services. In a security notice posted to their site today, Nexus Mods has disclosed that an unauthorized actor hacked their services on November 8th, 2019 through an exploit in their legacy codebase. In order to download mods from the site, users must first register an account on the site, which has led to a user base of close to 19 million registered members. Nexus Mods is a site where users can download modifications for games such as Skyrim, Fallout, Witcher, Dragon Age, and many more.
The popular game modification site Nexus Mods has announced a security incident that may have exposed the registration information for its users.