Confused on Steam Play and Proton? Be sure to check out our guide.
We do often include affiliate links to earn us some pennies. See more here.
tagline-image
If you have a streaming account with Twitch and it shared a password with anything, you may want to change it!

This is the exact email we had:
QuoteWe are writing to let you know that there may have been unauthorized access to some of your Twitch user account information, including possibly your Twitch username and associated email address, your password, the last IP address you logged in from, and any of the following if you provided it to us: first and last name, phone number, address, and date of birth. While we store passwords in a cryptographically protected form, we believe it’s possible that your password could have been captured in clear text by malicious code when you logged into our site on March 3rd.

For your protection, we have expired your password and stream keys. In addition, if you had connected your account to Twitter or YouTube, we have terminated this connection.

You will be prompted to create a new password the next time you attempt to log into your Twitch account. If applicable, you will also need to re-connect your account to Twitter and YouTube, and re-authenticate through Facebook, once you change your password. We also recommend that you change your password at any other website where you use the same or a similar password.

We apologize for this inconvenience.

The Twitch Team

This is a personal email some are getting, but it could have affected more.

You can also see their official blog post on it here.

I'm not entirely sure what takes 3 weeks to notify people about such a big security issue, so I'm left rather unamused by this.

To add annoyance to it, it was sent from their "no reply" email, and no contact information is left in the email. So, if you have any concerns you then have to go to their site, and hunt for their support emails.

Remember folks, never share passwords between anything. Article taken from GamingOnLinux.com.
Tags: Editorial
0 Likes
About the author -
author picture
I am the owner of GamingOnLinux. After discovering Linux back in the days of Mandrake in 2003, I constantly came back to check on the progress of Linux until Ubuntu appeared on the scene and it helped me to really love it. You can reach me easily by emailing GamingOnLinux directly.
See more from me
The comments on this article are closed.
11 comments
Page: 1/2»
  Go to:

Eike Mar 24, 2015
View PC info
  • Supporter Plus
X(
Skully Mar 24, 2015
Not sure why you think we should change our passwords, nothing in that message says anything about other people being compromised, just you. And I haven't received such a mail.

Not even sure why it's an article on here.
Eike Mar 24, 2015
View PC info
  • Supporter Plus
Still not sure if it's about all accounts or only the ones they've sent mails to...
Cyba.Cowboy Mar 24, 2015
Quoting: SkullyNot sure why you think we should change our passwords, nothing in that message says anything about other people being compromised, just you. And I haven't received such a mail.

Quoting: EikeStill not sure if it's about all accounts or only the ones they've sent mails to...

I never received an e-mail either, and the blog entry above appears to indicate that only certain people have been affected:
Quoting: TwitchWe will communicate directly with affected users with additional details.

But still, I'd rather be safe than sorry...


Quoting: SkullyNot even sure why it's an article on here.

Again, it's always better to be safe than sorry...

As a gentle reminder people, whether you're affected or not, this is why it's a good idea to always use unique passwords (i.e. different passwords for every site or service); strong passwords (completely random, mixed case; letters, numbers and where permitted, symbols); and where supported, two-factor/two step authentication.

If you don't want to remember so many passwords (who does?), use a password manager like Keepass and if you want to be extra careful, never share your Keepass file "over-the-air" (i.e. via Internet, online storage solutions, e-mail, etc)... Only share your Keepass file by manually copying it to your mobile devices and other computers (e.g. via a "thumb" drive).

--

Edit: This might be wider than implied - I just logged-in and was forced to reset my password anyway... Even though I still never received an e-mail about this.

Try logging-out and logging back in, if you do not see this message.
Liam Dawe Mar 24, 2015
Quoting: SkullyNot sure why you think we should change our passwords, nothing in that message says anything about other people being compromised, just you. And I haven't received such a mail.

Not even sure why it's an article on here.

Exactly what Cyba.Cowboy said.

It's a major issue affecting a lot of people. Not everyone will see the email, and we would rather be safe than sorry, and it's a good reminder for people.
Cyba.Cowboy Mar 24, 2015
Quoting: liamdaweIt's a major issue affecting a lot of people. Not everyone will see the email, and we would rather be safe than sorry, and it's a good reminder for people.

There might be delays in the e-mails or something - I'm seeing the same story pop-up on a lot of other sites too now...
Shmerl Mar 24, 2015
Their site doesn't even support HTTPS...
mindplague Mar 24, 2015
I got this email too, so it affects more than just the op.
EKRboi Mar 24, 2015
+1 to getting the email. I just got it about an hour ago.
While you're here, please consider supporting GamingOnLinux on:

Reward Tiers: Patreon. Plain Donations: PayPal.

This ensures all of our main content remains totally free for everyone! Patreon supporters can also remove all adverts and sponsors! Supporting us helps bring good, fresh content. Without your continued support, we simply could not continue!

You can find even more ways to support us on this dedicated page any time. If you already are, thank you!
The comments on this article are closed.