Sign in with
Sign up | Sign in

Crytek Sites Hacked: User Data May Be Compromised

By - Source: Joystiq | B 4 comments

Crytek is the latest in a string of attacks.

And the hacking spree continues. Game developer Crytek is the latest in a long string of attacks, reporting that four of its websites were brought offline due to suspicious activity. The news arrives after Apple's developer site and Canonical's Ubuntu forums were hit towards the end of July. Several other games-related sites were hit before then.

Currently four of Crytek's websites are down, including the main crytek.com site, mycryengine.com, crydev.net and mycrysis.com. They were brought down on Friday, and the company stated that the security breach "may have resulted in some users' login data being compromised."

MORE: How To Turn On Two-Step Verification

"Although it is uncertain whether the incident led to the copying and decryption of email addresses and passwords, it is possible that users with accounts at these websites have had personal data copied," the company said. "On Friday afternoon we started to contact all affected users via email and informed them of the potential security breach."

"Final details of when our sites will be back online will be communicated as soon as possible," the company added. "We're currently doing everything in our power to ensure our sites and, more importantly, our users, are not affected by such issues in future."

Once the four sites jump back online, users with accounts will be asked to change their password during log in. Crytek also suggests that users change their account information on other websites if they use the same login data.  Crytek-owned websites that were not affected by the security breach include GFACE.com, Crysis.com and Warface.com.

Gaming publisher/developer Konami was hacked in the first half of July. The company said it detected 35,252 cases of unauthorized logins to its Konami ID portal site during June 13 and July 7. A total of 3,945,927 login attempts were made during that timeframe. Konami said that the IDs and passwords used in these unauthorized logins appear to have been leaked from an external service provider.

Developer Bohemia Interactive, the studio behind the popular ARMA series, also reported that an illegal attempt was made to access a certain portion of its online websites. Hackers managed to download a database containing usernames, email addresses and encrypted passwords. Bohemia said that it's very unlikely anything "nefarious" can be done with the information due to the password encryption.

Prior to that, Nintendo acknowledged that its Club Nintendo site in Japan experienced around 23,000 unauthorized logins out of 15 million attempts. The company said that it was possible hackers acquired full names, addresses, phone numbers and physical mail addresses. Old passwords are now invalid, so Japanese Club Nintendo users will be required to make new ones.

Ubisoft said at the beginning of July that one of its web sites was exploited to gain unauthorized access to some of its online systems. The games publisher said that data had been illegally accessed from its account database, including user names, email addresses and encrypted passwords. The company wouldn't go into specifics, but said that information like phone numbers and physical addresses weren't obtained.

Discuss
Display all 4 comments.
This thread is closed for comments
  • 9 Hide
    razor512 , August 6, 2013 8:11 AM
    Thats the best way to treat customers. Add drm which makes your gamed reliant on their servers for activation, the have them register on your site so all that user data can be nice and centralized so hackers can have an easier time collecting that data.

    Isn't online DRM great?
  • -2 Hide
    ddpruitt , August 6, 2013 9:05 AM
    Is this why there's so much extra junk on Tom's today?
  • -1 Hide
    Maxx_Power , August 6, 2013 1:34 PM
    Another day, another company got hacked. Any body still allow online companies to store their financial and personal information ?
  • 0 Hide
    cats_Paw , August 6, 2013 11:38 PM
    Isnt there a law that in the USA where if you store personal data on people you have to ensure its safety?

    In Europe at least, this would mean that EA is responsible for any personal loss a users suffers due to their negligence.
    People should start doing something about this instead of accepting it as a normal reality.
Tom’s guide in the world
  • Germany
  • France
  • Italy
  • Ireland
  • UK
Follow Tom’s guide
Subscribe to our newsletter