Twitch may have been hacked, mandatory password changes for everyone

By Sherif Saed, Monday, 23 March 2015 20:56 GMT

Twitch announced that there may have been some “unauthorized access” to some users’ accounts and information.

20130613_twitch

UPDATE:

Twitch has sent emails to users it believes were affected by this hack, and revealed a few more details in the process.

“We are writing to let you know that there may have been unauthorized access to some of your Twitch user account information, including possibly your Twitch username and associated email address, your password, the last IP address you logged in from, limited credit card information (card type, truncated card number and expiration date), and any of the following if you provided it to us: first and last name, phone number, address, and date of birth,” reads the email.

“PLEASE NOTE: Twitch does not store or process full credit or debit card information, so your card number is safe.

“While we store passwords in a cryptographically protected form, we believe it’s possible that your password could have been captured in clear text by malicious code when you logged into our site on March 3rd.”

Thanks, VentureBeat.

Original story: Twitch has just revealed that it has detected “unauthorized access” to some user account information.

The site has expired user passwords and stream keys for all users. In addition, all accounts have been disconnected from Twitter and YouTube.

Anyone logging in will be promoted to change their password. The blog post also recommended users change their passwords on other sites where they use the same password is used.

The post did not reveal whether sensitive information like credit card details have been compromised, but added that “affected users” will be reached out to with further details.

Sometimes we include links to online retail stores. If you click on one and make a purchase we may receive a small commission. For more information, go here.

Comments