Twitch emphasizes that no user data was leaked in recent data breach

In all likelihood, no user data ended up on the street in the recent data breach at streaming platform Twitch. Users’ passwords, login details and payment information, among other things, would be untouched.

User login details are said to have been encrypted using bcrypt hashing and were not stolen during the extensive data breach. Payment details, credit card numbers or bank details also remained unaffected by the incident. Only a small group of users would be affected by the leak, Twitch emphasizes in a new blog post. Twitch is contacting all affected. It is not clear how many users are affected and how the affected victims have been affected by the vulnerability.

In the data breach in early October, roughly 128GB of Twitch data was shared on a 4chan forum. The streaming platform admits that internal documents have been released, including Twitch source code and advertising and subscriber revenue from well-known streamers. Incorrect server settings allowed an anonymous party to gain unauthorized access to the affected Twitch data. The stolen information was then shared online, according to the leaker with the aim of unleashing “more disruption and competition in the online video streaming services.”