Ubisoft website hacked, account information compromised

By on July 3, 2013, 7:00 AM
ubisoft, hacking, security breach, breach, vulnerability

Ubisoft recently discovered that one of their websites had been hacked and the attacker(s) were able to gain unauthorized access to some of their online systems. The company didn’t reveal exactly how many accounts were compromised but did suggest that everyone with a Ubisoft account change their passwords.

Ubisoft noted in a blog post that they immediately started an investigation with the relevant authorities as well as internal and external security experts. Ubisoft said they have also started restoring the integrity of systems that may have been compromised.

Specifically, Ubisoft said the breach resulted in the unauthorized access of sensitive data including user names, e-mail addresses and encrypted passwords. Even though passwords weren’t stored in plain text, they could be cracked, especially if the chosen password is weak. They did point out, however, that no personal payment information is stored with Ubisoft so all credit / debit cards information was safe from the attack.

Even if information like phone numbers and physical addresses weren’t compromised, dealing with a breach of this nature can be a major headache for users. If a thief is able to crack a password, they could test the user name and password as logins for other sites or in a best-case scenario, you’ll likely end up with a bit more spam in the inbox associated with the e-mail address that was stolen.

Ubisoft said the uptime and stability of their games’ online services were not affected by the intrusion.




User Comments: 6

Got something to say? Post a comment
Burty117 Burty117, TechSpot Chancellor, said:

Already reset my password! Got an email myself from them, lol, this happens way too often...

9Nails, TechSpot Paladin, said:

...and that's why I didn't play the copy of Far Cry 3 that I got free with a hard drive. I want to play games without the need for business association. Even if uPlay wasn't effected this time, the company was hacked and that's the same to me.

I have trust issues here with these companies. And there's no apologies to the customer, just a recommendation to reset your password. Great.

cliffordcooley cliffordcooley, TechSpot Paladin, said:

Whats the worst that could happen, if you don't reset your password?

I only have one game downloaded through them, of which I never play.

lawfer, TechSpot Paladin, said:

Whats the worst that could happen, if you don't reset your password?

I only have one game downloaded through them, of which I never play.

Well, if you use your Ubisoft account's e-mail on other services and the password is the same, then your other accounts can be compromised. Other than that, there should be nothing to worry about.

MrBungle said:

Eh, I boycotted them long ago so no biggie.

Guest said:

Funny a company so anal about drm is so vulnerable to being hacked. Maybe they should spend their anit theft money on protecting the account info.

Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.