Monday, February 2nd 2015
Raptr Gamer-Community Service Hacked
If bad news from the green team covered last week, this week begins with one from the red. AMD's Gaming Evolved Raptr app, designed roughly along the lines of NVIDIA's GeForce Experience, but with an added Raptr gamer-community extension, is in trouble. Raptr CEO Dennis Fong, in an e-mail to its members, reported that the Raptr service has been hacked, and the attackers may have stolen details such as usernames, first- and last-names (names given during sign-up), e-mail addresses, and Raptr password hashes (without salt).
Fong maintains that thanks to Raptr's 2-step verification system, Raptr Reward Points held by compromised accounts shouldn't be affected. He asks all users to change their passwords, with new ones that are tough (mix of capital and small letters, numbers, and special characters). If your Raptr password is similar to passwords you used on other online services (eg: e-mail accounts), you must change them as well.
The letter follows.
Fong maintains that thanks to Raptr's 2-step verification system, Raptr Reward Points held by compromised accounts shouldn't be affected. He asks all users to change their passwords, with new ones that are tough (mix of capital and small letters, numbers, and special characters). If your Raptr password is similar to passwords you used on other online services (eg: e-mail accounts), you must change them as well.
The letter follows.
Maintaining the highest level of security around your Raptr account information is of the utmost importance to us, so we're very sorry to inform you that some Raptr user data may have been recently compromised in an attack similar to hacking activities that have targeted other high-profile sites and services such as Xbox Live and Sony's PlayStation Network.
User names, email addresses, password hashes, and some first and last names may have been accessed. This means that although the passwords are hashed, users with weak passwords are vulnerable to unauthorized access. It's important to note that our two-factor authentication system used for redeeming Raptr Reward Points ensures that even if your Raptr account was among those compromised, the points you've earned as a Raptr member are protected.
Although the potential risk to Raptr users is pretty minimal, we urge you to access any accounts on other sites and services in which you use the same login and password associated with your Raptr account and change the related password(s) immediately.
Reset your password at your earliest convenience in order to help safeguard your Raptr account. In doing so, we strongly advise you to use a password that is reasonably complex and not associated with another site/service account.
If you have any questions or concerns, please don't hesitate to contact Raptr's Customer Service group.
We're extremely sorry about this situation and are committed to further improving account security going forward.
Sincerely,
Dennis Fong
Founder & CEO, Raptr