Twitch: data leak was due to incorrect server settings, login data does not seem to be leaked
Twitch says an error in changing server settings caused data to be stolen by a third party. This data was shared via 4chan on Wednesday. According to the platform, there are no indications that login data has been stolen.
That misconfigured server made “some data” publicly accessible over the Internet, according to Twitch. A ‘malicious’ external party then stole this data. The company says it is still investigating the data breach and is not yet clear on the full impact.
The platform says it currently has no indications that login details have been stolen. Nevertheless, Twitch recommends that users change the password and set up 2fa. In addition, ‘full’ credit card numbers are not stored by Twitch; this data is therefore not stolen.
Twitch confirmed on Wednesday afternoon that it had been the victim of a major data breach involving the platform’s source code and internal documents. For example, it is now known from well-known streamers how much they earned in advertising and subscriber income through the platform. In addition, reference is made within the documents to an unannounced Steam competitor from Amazon Game Studios, called Vapor. A torrent for the data was shared via 4chan on Wednesday morning.