Edmonton – A data breach affecting live streaming e-sports platform Twitch has put millions of user passwords, payment methods and personal information at risk.

- Advertisement -

Early Wednesday, an unnamed hacker claimed to have leaked 125GB of data online from a gaming service, uncovering a significant amount of internal data from the company and information about Twitch’s highest-paid video game streamers.

But experts say leaks can be incredibly damaging to Twitch’s reputation, with users being vigilant in protecting any personal information that could be stolen and used nefariously by cybercriminals. Is.


“There is a possibility that people can access that data and use it to carry out scams against users,” Brett Callow, a threat analyst at anti-virus software firm Emsisoft, told Granthshala.ca over the phone on Wednesday. “

“They should be on the lookout for text messages, phone calls or emails that claim to be related to Twitch or Twitch.”

- Advertisement -

How to protect your personal data

Callow says users should immediately replace their Twitch passwords with any passwords for sites that share the same or similar passwords.

As an added security step, Callow says users should turn on two-factor authentication for Twitch, which requires users to input both a password and a secondary code sent to their smartphone to log in.

Parents who have young Twitch users at home should help facilitate these changes and note any changes to other accounts.

“[Passwords] Must be quite long and complicated. Most important, however, they should not be reused on other websites and should be protected by two-factor authentication whenever possible,” Callow said.

Old data shows that the most secure passwords are long, alphanumerical, and hard to guess – in other words, don’t use words, phrases, or numbers that someone could easily guess if they had your basic personal information. was (think: your date of birth).

If you have difficulty remembering your passwords, try stringing together three or four random words you remember, often as strong as an alphanumerical password.

data on children at risk

The Amazon-owned platform confirmed the leak on Wednesday, saying, “We can confirm that a breach has occurred. Our teams are working diligently to understand its limits.”

Twitch and Amazon both declined to comment further; However, the website remains active for the users.

Twitch, a streaming platform with an average daily visitors of over 30 million, has become increasingly popular with musicians and gamers, as well as millions of young users, who log on to follow their favorite personalities.

“The fact that it’s a young person, I think in itself, is simply related to the fact that were they aware of cyber security? Were they using their parents? [financial] eat too? Do they follow all security protocols? Chances are. Probably not,” cyber security expert Ritesh Kotak told Granthshala.ca over phone on Wednesday.

“And what we’ve learned is that there’s no such thing as a delete on the Internet. So once your information is there, it’s there.”

While it’s not clear how much user data was leaked, as much of the attention stemming from the leak is directed at the inner workings of the platform, Kotak warns that things like security questions and billing information could have been left unencrypted.

They noted that users using the same login information on multiple sites run the risk of falling victim to “credential stuffing,” where cybercriminals use stolen usernames and passwords to access user accounts from one organization to another. .

“It’s bad all around – young person or not – but it’s important for young people because it’s really going to follow for the rest of their lives,” he said.

Kotak adds that parents concerned about their own financial or credit card data should turn on security alerts for their accounts as an added protection.