Twitch has posted an official response to this week’s data breach that saw 125GB of data including user payout info leaked.
The livestreaming company posted a statement on their blog with an initial assessment of the cause of the leak. It reads “We have learned that some data was exposed to the internet due to an error in a Twitch server configuration change that was subsequently accessed by a malicious third party. Our teams are working with urgency to investigate the incident.”
However, they also moved to reassure users that “at this time, we have no indication that login credentials have been exposed.” In addition, the company claimed that “full credit card numbers are not stored by Twitch, so full credit card numbers were not exposed.”
As a precautionary measure, the company has made the move to reset all stream keys. These are the unique identifiers that a streamer uses to connect to the service to broadcast under their username. Users who stream on Twitch are advised to check their broadcasting software, and manually update with the new keys if necessary.
Twitch says that they’re still learning the full impact of the data breach as the investigation continues. The company also promises to keep users updated as more comes to light.
Out of an abundance of caution, we have reset all stream keys. You can get your new stream key here: https://t.co/Lby1wfS0Ss. For more information, please visit the Twitch blog: https://t.co/JDXlpO0pY4
— Twitch (@Twitch) October 7, 2021