Twitch apologises for security breach, says ‘passwords have not been exposed’

Dimapur, October 15 (EMN): A week after hackers leaked sensitive data like source code and creator payouts, streaming platform Twitch has apologised for the security breach and confirmed that passwords were not exposed.

On its blog, Twitch wrote, “We take our responsibility to protect your data very seriously. We have taken steps to further secure our service, and we apologise to our community.”

The company said that it has fixed the configuration issue and has secured its systems.

Twitch revealed that hackers had gained access as a result of a “server configuration change” and assured its users that “passwords have not been exposed.”

The company claimed that hackers were not able to access Twitch login credentials, credit card numbers and bank information.

“Twitch passwords have not been exposed. We are also confident that systems that store Twitch login credentials, which are hashed with Bcrypt, were not accessed, nor were full credit card numbers or ACH / bank information,” wrote Twitch.

Twitch said that hackers managed to access information regarding the platform’s source code, and some concerning creator payouts. Those affected will be contacted directly.

“The exposed data primarily contained documents from Twitch’s source code repository, as well as a subset of creator payout data. We’ve undergone a thorough review of the information included in the files exposed and are confident that it only affected a small fraction of users and the customer impact is minimal. We are contacting those who have been impacted directly,” wrote Twitch.

In response to the security breach, Twitch has reset the stream keys and has requested streamers to get their new stream keys from the dashboard settings and to manually update their software with the new key.