Skip to main content

Codemasters Hacked

Less than a week after European Lotro transferred back to Turbine Codemaster's servers were hacked. Although I had already moved all of my details are still on Codemaster's servers. Here is the email I received from them about this.

Dear valued Codemasters customer,

On Friday 3rd June, unauthorised entry was gained to our Codemasters.com

website. As soon as the intrusion was detected, we immediately took
codemasters.com and associated web services offline in order to prevent
any further intrusion.

During the days since the attack we have conducted a thorough

investigation in order to ascertain the extent and scope of the breach
and have regrettably discovered that the intruder was able to gain
access to the following:

Codemasters.com website


Access to the Codemasters corporate website and sub-domains.


DiRT 3 VIP code redemption page


Access to the DiRT 3 VIP code redemption page.


The Codemasters EStore


We believe the following have been compromised: Customer names and

addresses, email addresses, telephone numbers, encrypted passwords and
order history. Please note that no personal payment information was
stored with Codemasters as we use external payment providers, meaning
your payment details were not at risk from this intrusion.

Codemasters CodeM database


Members' names, usernames, screen names, email addresses, date of birth,

encrypted passwords, newsletter preferences, any biographies entered by
users, details of last site activity, IP addresses and Xbox Live
Gamertags are all believed to have been compromised.

Whilst we do not have confirmation that any of this data was actually

downloaded onto an external device, we have to assume that, as access
was gained, all of these details were compromised and/or stolen.

The Codemasters.com website will remain offline for the foreseeable

future with all Codemasters.com traffic re-directed to the Codemasters
Facebook page instead. A new website will launch later in the year.

Advice


For your security, in the first instance we advise you to change any

passwords you have associated with other Codemasters accounts. If you
use the same login information for other sites, you should change that
information too. Furthermore, be extra cautious of potential scams, via
email, phone, or post that ask you for personal or sensitive
information. Please note that Codemasters will never ask you for any
payment data such as credit card numbers or bank account details, nor
will Codemasters ask you for passwords or other personal identifying
data. Be aware too of fraudulent emails that may outwardly appear to be
from Codemasters with links inviting you to visit websites. The safest
way to visit your favourite websites is always by typing in the address
manually into the address bar of your browser.

Unfortunately, Codemasters is the latest victim in on-going targeted

attacks against numerous game companies. We assure you that we are doing
everything within our legal means to track down the perpetrators and
take action to the full extent of the law.

We apologise for this incident and regret any inconvenience caused.


We are contacting all customers who may have been affected directly.


Should you have any concerns or wish to speak to a member of our

Customer Services team, please email them at
custservice@codemasters.com.

You have been sent this email as part of your Codemasters Code M

membership. If you have any questions or queries about this email or
your CodeM account, please email CodeM@codemasters.com. The Codemasters
Software Company Limited, registered in England (Company No. 2044132)
whose registered office is at Codemasters Campus, Southam, Warwickshire,
CV47 2DL, England. For more Privacy information, please read the
Codemasters Privacy Policy : http://www.codemasters.co.uk/privacy/


I don't really know whether to be worried about this or not. In recent years I have gotten pretty diligent about using different log in details for different systems but there was a time when I was not so vigilant and of course I still live in the same house with the same telephone number.

Comments

Tesh said…
Still not sure why CodeMasters needed my phone number in the first place. I think I gave them a dummy.

...actually, I'm not sure how much I gave them. I tend to fill in fields with dummy info if I feel it's impertinent of them to ask for it.
mbp said…
Well you can still log in and see what information is is your profile. I did and changed my password not that I will be using my codemasters account for much anyway.
Anonymous said…
Got the same email but can't remember ever signing up with Codemasters.

It's beginning to feel like unless your hacked your not a real company. The phrase 'all press is good press' springs to mind.
mbp said…
Codemasters seem to have multiple logins for different games and services DM. I don't know whether this makes them more secure or less secure.

You probably signed up for a forgotten game or newsletter some time ago.

Popular posts from this blog

My First Gaming Mouse: Logitech G300

I bought a gaming mouse yesterday a Logitech G300, here my initial thoughts. What is a gaming mouse?  There are a wide variety of devices available classified as gaming mice but a few features  seem common: 1. Wired rather than wireless: Although some high end models are wireless wired connections are just better and faster than wireless so most gaming mice stick with wired. As a bonus wired mice don't need batteries so the mouse is lighter.  2. High response rate: 1 to 2ms response rate so the mouse immediately responds to input.  2. High DPI. Gaming mice invariable boast high DPI numbers from 2,000 DPI upwards. This makes the device very responsive to the smallest movements.   3. Adjustable DPI . High DPI improves responsiveness but reduces precision so gaming mice generally allow you to adjust the DPI down for precise work such as pulling off headshots in sniper mode. Generally the mouse allows dpi to be changed on the fly by pressing a button.  4. Extr

Portal 2 two screen coop on one PC.

I mentioned before that I intended to try Portal 2 in "unofficial split screen co-op mode. Well split screen on a small computer monitor is a recipe for a headache especially when the game defies gravity as much as portal. However a minor bit of extra fiddling allowed us to drive two seperate screens from one PC. The Steam forums describes a complicated method of doing this that I couldn't get working so this simpler method which worked for me might be of use to someone. 1. First I followed the instructions in this post to get split screen multi-player working: http://forums.steampowered.com/forums/showthread.php?t=1847904 A minor issue not mentioned is that you need to enable the console from the keyboard/mouse options menu I am using keyboard and one wired Xbox360 controller as suggested. Getting the controller to switch to channel 2 was tricky at first but as Chameleon8 mentions plugging it out and in again during loading works. The trick for me was to do the plug / p

Android Tip 3: Sharing a Folder between multiple users of an Android device

Android has allowed multiple user logins for quite a while now. This is can be very useful for tablets which are shared by family members. Normally Android erects strict Chinese walls between users preventing them from using each others apps and viewing each others files. This is a useful security feature and ensures your kids don't mess up your work spreadsheets when screwing around on the tablet and should also prevent them from buying €1,000 worth of Clash of Candy coins on your account. Sometimes however you really do want to share stuff with other users and this can prove surprisingly difficult. For example on a recent holiday I realised that I wanted to share a folder full of travel documents with my wife. Here are some ways to achieve this. 1. If you have guaranteed internet access  then you can create a shared folder on either Dropbox or Google drive. Either of these has the great advantage of being able to access the files on any device and the great disadvantage of bein