![]() Given the nature of the leak, some are calling it more detrimental for creators than for Twitch itself. Reportedly included in the leak is creator payout reports from between 20, which notes that some channels earned as much as $9.6 million during the period. The goal of the breach, according to VGC’s report, was to “foster more disruption and competition in the online video streaming space” because “their community is a disgusting toxic cesspool.” Given the scale of the breach, Twitch users are strongly encouraged to change their passwords and enable two-factor authentication. We will update the community as soon as additional information is available. “Our teams are working with urgency to understand the extent of this. “We can confirm a breach has taken place,” a spokesperson told VGC. An anonymous Twitch source has confirmed the legitimacy of the breach to VGC. Additionally, data on other Twitch-owned products was leaked as well, including IGDB, Curseforge, and an unannounced digital marketplace called Amazon Vapor. An anonymous hacker posted a 125GB torrent file to 4Chan on Wednesday containing Twitch’s source code and data pertaining to creator revenue and subscription numbers. The unauthorized third party in question was able to access the data after a server misconfiguration, according to Twitch.This week, livestreaming platform Twitch was hit by a large data breach, according to a report from VGC. Others were dumbfounded that an individual could have stolen so much sensitive information without setting off any internal alarms.Īlthough only a small number of users appear to have been impacted by the incident, the scale of the IP breach would still indicate that Twitch’s security posture was not up to par. That prompted some to argue the incident was “as bad as it gets” from an infosecurity perspective. We are contacting those who have been impacted directly.”Īt the time, the attacker claimed to have all of the firm’s source code mobile, desktop and console clients proprietary SDKs and internal AWS services and “every other property” it owns, including IGDB, CurseForge and an unreleased Steam competitor, dubbed “Vapor.”Īlso reportedly compromised were red teaming tools used by the Twitch’s SecOps function and information on how much the firm paid its most popular streamers. We’ve undergone a thorough review of the information included in the files exposed and are confident that it only affected a small fraction of users and the customer impact is minimal. “The exposed data primarily contained documents from Twitch’s source code repository, as well as a subset of creator pay-out data. “We are also confident that systems that store Twitch login credentials, which are hashed with bcrypt, were not accessed, nor were full credit card numbers or ACH / bank information,” it added. However, in an update on Friday, Twitch claimed that user passwords were not impacted. ![]() Security experts roundly criticized Amazon-owned Twitch after an anonymous user posted a 125GB torrent link to 4Chan, and claimed to have leaked every digital property owned by the firm. A massive breach at one of the world’s biggest gaming platforms earlier this month may not be as bad as first thought, with the firm claiming that no passwords were exposed in the incident.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |