“Can still be much worse – a lot more damage now in store for Twitch,” commented Candid Wuest, Acronis VP of Cyber Protection Research.
Twitch, a popular online streaming platform, was attacked with a data breach that reportedly divulged confidential company information and streamers’ earnings. The data amounts to over 100GB of data, posted online in 4chan by an unknown hacker last Wednesday.
Twitch hasn’t mentioned other details besides confirming the breach. However, Wuest pointed out how the incident is already damaging the platform on “revenue, operations, users, influencers, and market positioning.”
“Leaked data could contain nearly the full digital footprint of Twitch, making it one of the most severe data breaches of late. Internal network plans and marketing plans for future products could now be misused by attackers or sold to competitors. If the source code is exposed, we will see a spike in vulnerabilities discovered in related software. Having access to the source code makes it easy to find weak spots,” Wuest added.
According to the attacker’s comments, he also pointed out that the leaked 125GB might be just the beginning of the attack.
“Releasing payout reports for streaming clients will not make the influencers happy either – dozens of Twitch streamers seem to have been paid over US$1 million each over time. For the users, an immediate password change & enabling of two-factor authentication are a must,” he concluded.