The Amazon-owned video game streaming platform Twitch has exposed roughly 135 gigabytes of data, revealing source code and payout figures for streamers. Twitch confirmed the leak after the data was advertised on 4chan.
Here’s what cybersecurity experts had to say on the matter:
Javvad Malik, lead security awareness advocate, KnowBe4
The Twitch breach is a large one and contains some potentially very sensitive information relating to some of its streamers.
Changing passwords, especially if the same password has been used on other systems is a good first step for affected users. But it’s also worth bearing in mind that not all attacks based on information on these leaks will come immediately. Criminals can use the data within the leak to formulate convincing phishing attacks over weeks or months. So it’s important for Twitch users to remain vigilant of emails, text messages, physical letters or even phone calls claiming to be from Twitch, or a related service.
Paul Bischoff, security and privacy advocate, Comparitech.com
At this point it’s not clear what user information was leaked in the breach. Twitch hasn’t mentioned payment information or passwords being stolen, but I would still recommend Twitch users immediately enable two-factor authentication on their accounts.
The source code and other information leaked poses a greater threat to Twitch and Amazon than their users. Leaking source code and future projects could put Amazon at a disadvantage against Steam and other competing platforms. The internal security tools could also help malicious hackers develop malware to launch against Twitch or its users.
Jonathan Knudsen, senior security strategist, Syn ..
Support the originator by clicking the read the rest link below.
