clock menu more-arrow no yes

Filed under:

Ubisoft website hacked, usernames and encrypted passwords exposed

New, 32 comments

Ubisoft experienced an unauthorized intrusion for one of its web services, exposing registered members' usernames, email addresses and encrypted passwords.

In an email to affected users, Ubisoft recommends that registered members immediately change their password for their site, as well as any web services for which they use a similar password. No payment information was exposed in the intrusion, Ubisoft says, as the company does not store that kind of information.

"We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems," the email warns. "We instantly took steps to close off this access, investigate the incident and begin restoring the integrity of any compromised systems."

In a FAQ page about the leak, Ubisoft explains that it cannot specify exactly which of its websites were hacked due to security reasons.

"Credentials were stolen and used to illegally access our online network," the FAQ page reads. "We can't go into specifics for security reasons."

We've reached out to Ubisoft to glean more information about the intrusion.