Twitch, the premiere source for Things Playing Pokemon, has unfortunately had a security breach. Twitch has posted a warning on their official blog and sent out an email to users of the service informing them of the hack and what personal information has been potentially leaked. They’ve logged all users out of the service, and recommend changing your password on Twitch and any services that use the same email address or a similar password.
In the email, it reads: “We are writing to let you know that there may have been unauthorized access to some of your Twitch user account information, including possibly your Twitch username and associated email address, your password (which was cryptographically protected), the last IP address you logged in from, and any of the following if you provided it to us: first and last name, phone number, address, and date of birth.”
Venturebeat has a slightly different email from the one above, which indicates that it only partially stores debit and credit card information and that, quote, “it’s possible that your password could have been captured in clear text by malicious code”. It seems different users are receiving different mails based on what Twitch functions and services they use.
Obviously, if you use Twitch — and particularly if you pay for any of their services or subscriptions — I recommend you change that password stat. Oh, and any of the other services where you maybe use the same email and/or password. Fun, right? Password managers allow you to track all the sites you’ve signed up for and more quickly respond to security threats, so if you’re not using one yet I suggest now’s the time to check them out.