Send News. Want a reply? Read this. More in the FAQ.   News Forum - All Forums - Mobile - PDA - RSS Headlines  RSS Headlines   Twitter  Twitter
Customize
User Settings
Styles:
LAN Parties
Upcoming one-time events:
Greenbelt, MD 08/22

Regularly scheduled events

Bohemia Interactive Breach

Bohemia Interactive sends word of a data breach on their website, saying that passwords were compromised, but payment details were not:

We have unfortunately discovered that an illegal attempt has been made to access certain of our online websites, leading to the download of a database containing usernames, email addresses and encrypted passwords. Please note due to the encryption of the passwords it is very unlikely that anything nefarious can be done with this information.

We would like to reassure everyone that no other information such as credit card details is stored by us and thus was not at any risk from this illegal breach.

As a precaution we are resetting the passwords of all users which means you will be unable to log into any of our websites/forums until your password is changed. To do this, go to

https://profile.bistudio.com/profile/recover-password , enter your email address or username and press "Get a new password". Shortly afterwards you will receive an automated email from support@bistudio.com with a link, where you can set a new password of your choosing. In the event that you do not receive the email within 20 minutes, please try searching your spam folder.

If you have any problems with your account, or have any questions/concerns regarding this incident please feel free to contact support@bistudio.com

View
7 Replies. 1 pages. Viewing page 1.
< Newer [ 1 ] Older >

7. Re: Bohemia Interactive Breach Jul 12, 2013, 04:42 El Pit
 
Pr()ZaC wrote on Jul 11, 2013, 17:24:
A bohemian encryption?

With Freddie Mercury (RIP) singing the key.
 
Consoles? I owned two: a Pong clone and an Atari 2600. And that's it.
Reply Quote Edit Delete Report
 
6. Re: Bohemia Interactive Breach Jul 11, 2013, 20:08 Shataan
 
"Shortly afterwards you will receive an automated email from support@bistudio.com with a link, where you can set a new password of your choosing. "

Ok, think I found it. But this is pretty azz of them to do it this way.

This comment was edited on Jul 13, 2013, 10:00.
 
Reply Quote Edit Delete Report
 
5. Re: Bohemia Interactive Breach Jul 11, 2013, 19:58 subx
 
Shataan wrote on Jul 11, 2013, 19:29:
WTF??? I did as instructed, and all I get is them asking me if I forgot my pw. Nothing else in the email.

They've carefully taken aim at their foot and managed to shoot it off in such way that they've kicked themselves in the nuts at the same time.

If you can look at the source of the email you'll be able to see the URL for reseting your password. Cleverly they've sent out MIME format multi-part emails, which are not well supported Thumbsup

Once you've reset your password (minimum of 7 chars - 7!?) you'll be sent another seemingly blank email in the same format
 
Reply Quote Edit Delete Report
 
4. Re: Bohemia Interactive Breach Jul 11, 2013, 19:29 Shataan
 
WTF??? I did as instructed, and all I get is them asking me if I forgot my pw. Nothing else in the email.  
Reply Quote Edit Delete Report
 
3. Re: Bohemia Interactive Breach Jul 11, 2013, 18:12 Techie714
 
Unsalted MD5 would just be piss poor security these days, I hope not.  
Avatar 25373
 
Steam (ID)
http://steamcommunity.com/id/techie714/
DEAD SH0T
Keep your privacy!
http://prism-break.org/
Reply Quote Edit Delete Report
 
2. Re: Bohemia Interactive Breach Jul 11, 2013, 17:24 Pr()ZaC
 
A bohemian encryption?  
Reply Quote Edit Delete Report
 
1. Re: Bohemia Interactive Breach Jul 11, 2013, 16:28 eRe4s3r
 
Please note due to the encryption of the passwords it is very unlikely that anything nefarious can be done with this information.

How unlikely is it that the "encryption" is unsalted md5 ?
 
Avatar 54727
 
Reply Quote Edit Delete Report
 
7 Replies. 1 pages. Viewing page 1.
< Newer [ 1 ] Older >


footer

Blue's News logo