The Dragonica Lunaris data breach exposed 126,293 records including Dates of birth, Email addresses, Names, Passwords, Spoken languages, Usernames. This breach has been verified by HaveIBeenPwned. Affected users should check HaveIBeenPwned.com and take immediate steps to protect their accounts.
What Happened
In December 2025, the European Dragonica private server Dragonica Lunaris suffered a data breach. The incident exposed 126k email addresses, usernames, dates of birth and bcrypt password hashes. The service operator confirmed the breach and advised it has since been fixed.
- Breach date
- 2025-12-06
- Records affected
- 126,293
- Verified
- Yes
- Domain
- playdragonica.eu
What Was Exposed
The following data types were included in the breach:
- Dates of birth
- Email addresses
- Names
- Passwords
- Spoken languages
- Usernames
What You Should Do
If you had an account with Dragonica Lunaris, take these steps immediately:
- Check if your account was affected at HaveIBeenPwned.com
- Change your password immediately on the affected service and any other account where you used the same password
- Watch for phishing emails that reference the breach or impersonate the affected company
- Be alert for social engineering attempts using your exposed personal information
- Enable two-factor authentication on the affected service if available
- Consider using a password manager to generate unique passwords for each service
FAQ
Was my data in the Dragonica Lunaris breach?
What should I do if my data was exposed in the Dragonica Lunaris breach?
When did the Dragonica Lunaris data breach happen?
Need Incident Response?
Sherlock Forensics investigates data breaches for organizations. We determine scope of exposure, identify attack vectors, preserve evidence for legal proceedings and help you meet notification requirements.
Get Incident Response Help