Cryptic Studios reports servers breached

Cryptic Studios, makers of online games like Champions Online and Star Trek: Online, has reported that its servers were compromised. In a security notice posted to the site, the company was making public the details regarding a breach in December 2010 that had just recently been discovered.

It is believed that only account names, handles, and encrypted passwords were accessed. All accounts that existed during the breach have had their passwords reset and the individuals were contacted by email.

While we have no evidence that any other information was taken by the intruder, it is possible that the intruder was able to access additional account information. If they did so, the first and last name, e-mail address, date of birth (if provided to Cryptic Studios), billing address, and the first six digits and the last four digits of credit cards registered on the site may have been accessed. We have no evidence at this time that any data other than the account name, handle, and encrypted password were accessed for any user.

We are continuing to investigate this incident, and are taking even further action to strengthen our systems and redouble our security vigilance and protections. For your own security, we encourage you to be especially aware of e-mail and postal mail scams that ask for personal or sensitive information. Cryptic will not contact you in any way, including by e-mail, asking for your credit card number, social security number, or any other personally identifiable information. If you use the same password for other accounts, especially financial accounts or accounts with personal information, we strongly recommend that you change them.

Another case of don’t use the same password across sites!



Categories : Security
Posted by Jason Hamilton | April 25, 2012  |  No Comment