Codemasters pulls website after hackers pwn customer database Games developer Codemasters has taken its website offline and advised users to change their passwords in the aftermath of a hack attack last week. Unknown attackers made off with a treasure trove of personal information following an attack on Codemaster' website last Friday (3 June). Hackers got access to the Codemasters CodeM …
Although it doesn't look like cogaccounts - the LoTRO & DDO accounts site - was effected (the site is still up and hasn't been pulled).
I've had someone having a go at my old WoW accounts too -- Blizzard made it easy for them with the BattleNet transition. Borks.
I'm going to busy myself changing all my other unused account details to a holding address and passwords. All the way back to Ultima Online...fun. Hm, quite fancy a play UO now I mention it...
They just send out these emails from a list in a database somewhere. Even my old man gets them all the time for WoW, Eve & Rift. There is no way he plays them or even knows what a mmorpg.
I seem to be getting YouTube ones all the time now, since you need to have a Google account to login to YouTube.
Bought my only game of theirs from one of their partners (Boonty.com) four years ago...had the motherboard in the computer it was installed on crash & burn...when I rebuilt the computer with a new motherboard & CPU, the game asked to be re-activated...and they BOTH refused to help me.
Found a "work around" on the Net to get it running again. So I'm sorry for the customers...not sorry for Codemasters.
This is the third email I've had in the last month from a big company saying "Sorry, we got hacked and all of your card details have been stolen." Then they shrug it off and go back to operating in exactly the same way. How hard is it to have a secure system?
Why are these details being stored in clear text?
What happens when I see money leaving my bank account? Are my bank going to reverse the withdrawals or are they just going to shrug and blame me for not keeping my details secure?
Codemasters have been hacked before - this is the second time they have had to mail everyone asking them to change their passwords (if I recall correctly it was near xmas last year or the year before). In fact, I think it was also then the CodeM system and their forums which were breached last time.
I haven't bought a Codemasters game since their utter incompetence was demonstrated last time - probably a good thing. Thank god they had the sense to not hold payment card details etc. themselves (although I'm betting this was due to commercials rather than any actual thinking that they couldn't be trusted.)
For a company whose name is "Codemasters", I find it ironic that they can again be humiliated by sloppy code. Codemasters ... clearly not when it comes to coding securely.
Thankfully I only signed up to use their forum and used a pretty weak password that I don't use anywhere else on the net... So I take it other than receiving a possible deluge of spam and phishing attempts to my email address - and having my name and possibly gamertag associated with that address - there's not too much for me to worry about...
I await the aforementioned extra spam with glee!
and cursed thinking I'd need to change all my passwords - but then checked my old emails (which I never delete - a bit lazy i know) and when you sign up (certainly for the forum) you get an email stating the temporary password. If you then changed this at any point - you got another email telling you what you changed it too...
I fucking predicted this would happen in this post: http://forums.theregister.co.uk/post/1053532
When a website manages to royally fuck up your registration process you can assume a few things. Things like unencrypted passwords and SQL injection invitations.
I'd laugh if all my fucking, shitting data wasn't on their fucking shitty websites. Did I mention Fuck and Shit? Those too.
>And in between these hacks about 3 phising attempts for my inactive WoW account.<
I get them, and immediately delete them, like I did the codemaster one, assuming it wasn't legit. The last codemasters game I bought was an early Colin mc- something rally driving game. I mean, my account must have been nearly ten years old and completely inactive and still on their database, I have no idea what my login details were.
Any "Robin Hoods" out there might consider certain banks and government treasuries to be fair game for some social engineering. But ya gotta follow the Cyber Privateer Code of Conduct (www.cyberprivateer.com). I elaborate: http://www.themorgandoctrine.com/2011/06/when-banks-and-governments-are-fair.html
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
