Twitch, a video game streaming site, suffered a major data breach in which more than 100GB of data was exposed online. The information exposed includes source code, customers, and unreleased games from the company.
According to Twitch, the data leak was prompted by a server configuration modification. Out of an abundance of caution, the business has reset all stream keys.
The issue is being investigated by the team.
Twitch Says the Breach is caused by Server Configuration Change
Twitch has issued an update on its official site, saying that the vulnerability was caused by server settings. According to the company, full credit card numbers are not stored, thus they were not exposed.
“We haven’t found any evidence that login credentials have been leaked.”
We’re still looking into it.”
Twitch has reactivated all stream keys and provided a link to obtain new ones. To stream, all users must manually update their software with a new key. Nothing should change for OBS users who connect their Twitch accounts.
Users who have not yet connected their account to OBS should manually copy and paste their stream key from the Dashboard into OBS. Security experts are still looking at the situation.
There have been rumours that roughly 125GB of data has been leaked, including the highest paid video game broadcasters, including a $9.6 million payout for the popular game “Dungeons & Dragons” and a $8.4 million payout for Canadian streamer xQcOW.
The documents that are published in online forums show payments made from August or September 2019 to October 2021. The docs also reveal the site’s source code as well as technical specifications for upcoming items. Some of the data appears to be accurate.