A little over a week ago, the news of the data loss communicated by Twitch put the Internet in turmoil: according to the first information – confirmed by the same company shortly after – a large number of user data, including passwords and Payment details. Now, after an internal investigation to further assess the real impacts of the event, Twitch has reported that the damage was minimal .
To be precise, Amazon's video game streaming platform (and not only) declares itself certain that the systems where the login credentials and bank details of the users are stored have not been touched , he also had already specified that full credit card numbers are not saved. The attack would have therefore involved only a small fraction of all users and only for a portion of these the data of the payments made would have been exposed.
Anyone who has managed to exploit the flaw created by an incorrect configuration change has managed to have access to the servers, but practically only obtaining the documents of the source code repository . However Twitch says it has closed the flaw and put in place all measures to prevent similar incidents from happening again, raising the level of security of the service.