Intruder gains access to old Moonga server

[Japanese text below English / 日本語訳は英語の後にあります]

On Monday October 29, 2018, we noticed that one of our servers was behaving in an irregular fashion. After assessing the situation, we reached the conclusion that someone had successfully gained access to one of our file servers containing old data from Moonga, our previous game. The intrusion started on Monday October 29 at 8:05 pm and went through until it was discovered the next day.

We believe that the exploit may have compromised the following services:

Based on what we know today, we cannot exclude the possibility that a list of all Moonga users, their emails and passwords may have been compromised. Some other backup files were also downloaded by the intruder.

The likelihood that our separate servers were compromised is very low. This means that no blockchain cards, BitCrystals or Book of Orbs items were stolen. No Spells of Genesis files, databases, or player profiles have been deleted or tampered with. For the record, Blockchain passphrases are stored locally in your mobile device and not managed by us. It is therefore unlikely that the intrusion has any impact on Spells of Genesis user accounts.

What were the attack vectors?

The attacker accessed our server where they created two new users. The attacker likely had access to our Moonga database, EverdreamSoft’s forum and other files, some of which were downloaded.

List of protection measures we took since then to avoid a new attack

Once we had discovered the intrusion, we took immediate measures to mitigate it and block future attempts to compromise our server. Account names and passwords were promptly changed, and we analyzed the logs to evaluate the potential impact of this intrusion.

Who has possibly been impacted ?

  • All Moonga players
  • All EverdreamSoft’s forum users

What should you do now?

If you have an account on Moonga or on the EverdreamSoft’s forum, please change your password immediately. Follow our instructions on how to change your password. If you’ve used this password in another place such as on Spells of Genesis, please change it immediately as well. In line with best security practice, we highly recommend that you do NOT use the same password in multiple locations.

Reset your password and use different passwords on each of your accounts.

We regret this incident has taken place and sincerely apologize to all of our users for any inconvenience that has been caused. We have thoroughly assessed our security protocols in light of the attack, and although they were originally robust, we have introduced several extra measures as a safeguard. We are currently monitoring all our servers’ activity to ensure no further suspicious activities are ongoing.

If you have any questions about this event, please contact us at: [email protected]. We’ll do our best to answer your questions and address your concerns. You may also reach us via our usual social media channels.

Shaban Shaame, CEO
EverdreamSoft SA

Japanese translation





●Spells of Genesisユーザーフォーラム (


他のサーバーが侵害されている可能性は非常に低いといえます。ブロックチェーンカードやBitCrystals、Book of Orbsのアイテムは盗まれておらず、SOGファイルやデータベース、プレイヤープロフィールの削除や改ざんもありませんでした。記録により、ブロックチェーンパスフレーズはローカルのモバイルデバイスに保管されており、弊社の管理とはなっていません。したがって、この不正アクセスがSpells of Genesisユーザーのアカウントに影響を与える可能性はないといえます。






– すべてのMoongaプレーヤー

– すべてのEverdreamSoft フォーラムユーザー (


MoongaまたはEverdreamsoftフォーラムのアカウントをお持ちの場合は、すぐにパスワードを変更してください。 パスワードの変更方法はよくある質問(link to FAQsをご参照ください。そのパスワードをSpells of Genesisなど他でも使用している場合はそちらも至急変更してください。セキュリティのため、同じパスワードの使い回しはなさいませんようお願いいたします。



本件についてご不明な点がある場合は[email protected]までご連絡ください。皆様からのお問い合わせやご心配な点について、最善の対応をいたします。なお、ソーシャルメディアからもお問い合わせいただくことが可能です。

Shaban Shaame
EverdreamSoft SA



Please share!

Categories: GeneralNews