Twitch has released a new statement denying the seriousness of the hack, which grabbed headlines earlier this month.
The gaming platform reiterated that the crash was caused by a server setting change, which allowed improper access by an unauthorized third party.
It claimed that the passwords were not disclosed in the breach. “We are confident that the systems that store login data, which has been hashed with bcrypt, have not been accessed,” she said. No full credit card numbers or bank information was accessed.
“The exposed data mainly contained documents, from the Twitch source code repository,” the platform said. Plus a subset of creator revenue data. We did a comprehensive review of the information contained in the exposed files. We are confident that it has impacted a small portion of the users and the impact on customers is minimal. We are reaching out to those who have been directly affected.
An unknown hacker leaked the entire source code of the platform, with a file size of 128 GB.
The data included creator payments, going back to 2019. And private SDKs. and internal AWS services used by Twitch. In addition to all the red team tools for the company’s internal cybersecurity.