Published: November 22, 2021 on our newsletter Security Fraud News & Alerts Newsletter.
Streaming users beware! Live-streaming platform Twitch confirmed recently that it suffered a large-scale data breach. The event exposed source code and other confidential data. In a statement that the company posted on its website, the Amazon-owned company blamed an error in a server configuration change that was “subsequently accessed by a malicious third party.”
Media reports suggest that more than 100GB of data was posted online. However, the full extent of the breach is still to be determined. The sensitive data that was accessed included several years of pay-out information on Twitch’s highest profile streamers.
Twitch is issuing updates on the platform, while continuing its investigation on the incident.
The breach of the company’s source code also increases the chances of further attacks against the platform. However, there are some ways users can be pro-active:
Just to be on the safe side, change Twitch passwords immediately. Use at least eight characters that include upper- and lower-case letters, numbers, and special characters.
Never reuse a Twitch password on any other sites in order to protect against credential stuffing attacks; a unique password should be used for every online website.
Turn on two-factor authentication (2FA) and don’t disable it
Be on the lookout for scams claiming to relate to the breach, as cyber criminals may see this as an opportunity, and;
Check out information from Twitch for further updates on the ongoing investigation.
Keep up to date: Sign up for our Fraud alerts and Updates newsletter
Want to schedule a conversation? Please email us at firstname.lastname@example.org