Twitch: undisclosed number of user accounts compromised, loads of personal data at risk

By Shawn Knight ยท 11 replies
Mar 23, 2015
Post New Reply
  1. twitch amazon gaming passwords compromised hack hacker

    Popular video game streaming service Twitch on Monday issued a notice on its blog stating that there may have recently been unauthorized access to some user account information.

    The company has reset all passwords and stream keys in addition to disconnecting accounts from Twitter and YouTube. Because of this, all users will need to create a new password the next time they log into Twitch. The Amazon-owned company said it’s also a good idea for users to change their passwords at any other site in which they use the same or even a similar password.

    Twitch said it would reach out directly to impacted users with additional details. In one such e-mail obtained by Venture Beat, Twitch said credentials that may have been affected include usernames, e-mail addresses, passwords (which were cryptographically protected), the last IP address a user logged in from and any optional information that a user may have provided.

    The latter includes first and last name, phone number, physical address and date of birth. Worse yet, limited credit card information (card type, truncated card number and expiration date) may also have been compromised. Twitch said it does not store or process full credit or debit card information so at least the card number is safe (but not much else it seems).

    In addition to creating a new password, applicable users will need to reconnect their accounts with Twitter and YouTube. Twitch isn’t saying much more about the attack as of this writing but we’ll keep our ears open for any additional information on the matter.

    Permalink to story.

  2. LNCPapa

    LNCPapa TS Special Forces Posts: 4,274   +461

    Papa is not pleased.
  3. Well, I guess whoever got all this Twitch info knows what my email address is now.

  4. ddg4005

    ddg4005 TS Guru Posts: 383   +54

    It seems like every other day there's a story about some site being hacked or data being poached from somewhere that's supposed to be "safe". If this is the wonderful future of online goodness we've heard so much about these last few years then we are in deep guano.
    Auth3ntic0 and cliffordcooley like this.
  5. ikesmasher

    ikesmasher TS Evangelist Posts: 2,997   +1,317

    This is the best way of going about breaches I think. everyone else is like "oh well it was all encrypted so youre fine" but I like forcing password changes and disconnecting everything.
  6. cliffordcooley

    cliffordcooley TS Guardian Fighter Posts: 9,715   +3,696

    Forced password changes, now I know never to create a twitch account. Thanks for the heads up!
    Skidmarksdeluxe likes this.
  7. hahahanoobs

    hahahanoobs TS Evangelist Posts: 2,040   +678

    I requested a password reset email HOURS ago. Fook it, I just made a new account.
    Last edited: Mar 24, 2015
  8. Skidmarksdeluxe

    Skidmarksdeluxe TS Evangelist Posts: 8,647   +3,274

    It was just a matter of time before this happened, I'm just surprised it took so long.
    ddg4005 likes this.
  9. Puiu

    Puiu TS Evangelist Posts: 2,654   +1,093

    So this is why I had to reset my password and they increased the strength requirements.
  10. So this is why I've been getting so much spam over the last few weeks with my Twitch username in the subject line! Twitch needs to give out more details about when and how this happened - cause if it was a month to two weeks ago - my email was certainly stolen and sold to spammers. Lots of Dr. Oz recommends blah blah blah type spam. Ugh. Wish I'd never signed up for Twitch now...
  11. Kibaruk

    Kibaruk TechSpot Paladin Posts: 3,286   +902

    This is how chinesse farmers (Or Czech??) get their gold!

    They shouldn't have any kind of credit card information non-encrypted, this sucks big time, with the last 4 digits they can bring a lot of hell on you unless you don't use a single one of them for everything, most sites use those to verify that you are actually the owner, and so on.
  12. TheDreams

    TheDreams TS Addict Posts: 631   +68

    They disabled my account..

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...