Just when you thought it was possible to all move on from the depressing deluge of stories about hacking, Codies fall victim to an attack. The UK-based publisher has suffered breaches to many of its online services and systems, detecting the attacks on Friday 3rd of June.
Codemasters say they immediately removed all services that they thought were compromised and have today sent an email to customers warning them of the situation and letting everyone know just what they think was accessed. It’s not pretty, here’s the relevant excerpt from the email doing the rounds:
The Codemasters EStore
We believe the following have been compromised: Customer names and addresses, email addresses, telephone numbers, encrypted passwords and order history. Please note that no personal payment information was stored with Codemasters as we use external payment providers, meaning your payment details were not at risk from this intrusion.
Codemasters CodeM database
Members’ names, usernames, screen names, email addresses, date of birth, encrypted passwords, newsletter preferences, any biographies entered by users, details of last site activity, IP addresses and Xbox Live Gamertags are all believed to have been compromised.
Whilst we do not have confirmation that any of this data was actually downloaded onto an external device, we have to assume that, as access was gained, all of these details were compromised and/or stolen.
The Codemasters.com website will remain offline for the foreseeable future with all Codemasters.com traffic re-directed to the Codemasters Facebook page instead. A new website will launch later in the year.
So it seems that although payment details were not kept in the same location, and passwords were encrypted, names, addresses and other personal information was exposed and it is all assumed to have been downloaded and stored – even if there’s no way to verify that assumption.
As ever, we urge everyone to use unique passwords for online services, never disclose your personal information to anyone you don’t totally trust to treat it correctly and take every measure to ensure that your financial information is secured.
Im sure you all join us in wishing that this new trend for trying to violate the personal information of gamers would blow over. It really is getting tedious now.
Source: Email (also tipped by iamtdogg)