Twitch confirms passwords weren’t affected by last week’s massive security breach
After a massive security breach last week, Twitch has issued a statement confirming that passwords and login credentials were not exposed.
- READ MORE: How Shura turned to streaming after the pandemic hit
After reportedly hacking Twitch’s source code completely on October 6th, the streaming platform has released Statement Confirming that “Twitch passwords have not been exposed”.
The company also stated that it “believes that systems that store Twitch login credentials, which are hashed with bcrypt, were not used, nor full credit card numbers or ACH/bank information.” Was.”
Although passwords and critical financial information remain secure and “customer impact is minimal”, the security breach managed to leak “documents from Twitch’s source code repository, as well as a subset of producer payout data”.
In response to the data breach, Twitch “performed an in-depth review of the information contained in the exposed files” and found that “it affects only a small fraction of users”, which the company is in the process of contacting.
“We take our responsibility for protecting your data very seriously. We have taken steps to further secure our service, and we apologize to our community,” reads the last paragraph in Twitch’s statement.
Last week, Twitch reset the stream keys “out of caution” and confirmed that the hack was conducted by a “malicious third party” that managed to access server configuration changes.
Twitch said the passwords are secure, with security experts recommending that “all users should explicitly change their password, and use 2FA (two-factor authentication) if they are not already doing so”.
In other news, Steam has updated its rules and guidelines to state that games involving NFTs or cryptocurrency trading will not be welcome on the storefront. Following Steam’s updated guidelines, a game that uses NFTs has reportedly been told that it will soon be removed from the platform.