Successful hacks that end in user account information being stolen seem like a commonplace event nowadays. They are usually followed by the service that was hacked issuing a statement, ensuring everything is being done to catch the hacker, and that your account password needs changing.
Cryptic Studios, the developer behind games such as City of Heroes, Champions Online, and Star Trek Online, has just discovered its user database has been hacked. There’s just one problem: they made the discovery and issued a statement on April 25, 2012, but the hack occurred in December 2010!
The realization a hack occurred 16 months ago was due to “increased security analysis.” The details taken included user account names, handles, and encrypted passwords. Cryptic also confirmed that the encryption has been broken (at least partially), meaning additional information may have been accessible to the hacker simply by logging in.
Logging into an account allows access to the following personal information:
- First and last name
- E-mail address
- Date of birth
- Billing address
- First 6 digits and last 4 digits of registered credit card
Cryptic say they have no evidence of this additional information being accessed, but why would they? If the hacker had the account password then access would just register as the legitimate user logging in.
To combat the hack Cryptic has reset all passwords for accounts affected by the security breach. However, the fact this happened so long ago means you may have already been stung by your details being taken. If you have any other accounts using the same password as your Cryptic account, go change them immediately.
Read more at Cryptic Studios
