Twitch downplays recent high-profile breach

2 years ago 281

In its latest update connected the confirmed breach of its servers, popular video crippled unrecorded streaming service Twitch has shared that the attackers didn’t get their hands connected the login credentials of users.

“Twitch passwords person not been exposed. We are besides assured that systems that store Twitch login credentials, which are hashed with bcrypt, were not accessed, nor were afloat recognition paper numbers oregon ACH / slope information,” shared Twitch.

A mates of weeks back, an anonymous hacker claimed to person leaked the entirety of Twitch, including its root codification and personally identifiable accusation (PII) of its users.

Twitch confirmed the breach, and had been investigating the incidental since, posting regular updates, with the latest erstwhile downplaying the interaction of the breach.

Minimal lawsuit impact

From its precise archetypal update confirming the breach, Twitch has maintained that the incidental wouldn’t person exposed login credentials, adjacent though it did admit that “some information was exposed to the internet.”

In a travel up update Twitch said it had reset the streak keys of each users “out of an abundance of caution.”

Twitch has blamed the breach connected an mistake introduced during a Twitch server configuration alteration that was subsequently capitalized by malicious users to summation unauthorized entree to the server.

In the latest update, Twitch says it has fixed the contented that led to the breach, and person reviewed the incidental thoroughly.

“The exposed information chiefly contained documents from Twitch’s root codification repository, arsenic good arsenic a subset of creator payout data,” shares Twitch, adding that it’s assured that the breach has lone affected a tiny fraction of users.

source: https://www.techradar.com/news/twitch-downplays-recent-high-profile-breach