If you’re one of the hundreds of thousands of people currently making use of the Raptr gaming community app, you may want to pay attention to today’s press release by the company, announcing that they have been hacked and that sensitive user data may be at risk. The app is used globally by gamers to connect with others, stream to Twitch, record gameplay, and if you’re an AMD Radeon user, you can make use of the game optimisation service to adjust your settings automatically to give you the best experience on your hardware. The hack details follow after the jump.
In a press release via E-mail to the Raptr community, Raptr CEO Dennis Fong announced that the attackers may have taken down details such as user names, the real names of users, passwords, E-mail addresses and examples of password hashes that Raptr uses to verify your identity when signing in using the application or the web interface. While most of this data could be used in a later attack that may attempt to phish user information through the service, Fong warned that there was a high chance the information could be used to gain entry into other accounts you may have on the internet that aren’t properly secured.
The press release follows below but to anyone reading this, even if you’re not a Raptr user – enable double-factor authentication on any account you may have made for an internet service. Double-factor authentication will authenticate you based on something you know (your usernames and passwords) and something you have (usually access to your smartphone to receive service codes, or biometrics). As long as an attacker doesn’t have access to both things at the same time, your account is better secured and protected. Its not impenetrable, but it is much more difficult to gain entry into.
Raptr security update: Please change your password
Maintaining the highest level of security around your Raptr account information is of the utmost importance to us, so we’re very sorry to inform you that some Raptr user data may have been recently compromised in an attack similar to hacking activities that have targeted other high-profile sites and services such as Xbox Live and Sony’s PlayStation Network.
User names, email addresses, password hashes, and some first and last names may have been accessed. This means that although the passwords are hashed, users with weak passwords are vulnerable to unauthorized access. It’s important to note that our two-factor authentication system used for redeeming Raptr Reward Points ensures that even if your Raptr account was among those compromised, the points you’ve earned as a Raptr member are protected.
Although the potential risk to Raptr users is pretty minimal, we urge you to access any accounts on other sites and services in which you use the same login and password associated with your Raptr account and change the related password(s) immediately.
Reset your password at your earliest convenience in order to help safeguard your Raptr account. In doing so, we strongly advise you to use a password that is reasonably complex and not associated with another site/service account.
If you have any questions or concerns, please don’t hesitate to contact Raptr’s Customer Service group.
We’re extremely sorry about this situation and are committed to further improving account security going forward.