Ubisoft advises users change password after server hack

Email addresses and encrypted passwords accessed in Ubisoft server exploit, says publisher, but no payment information, phone numbers, or physical address information was taken.

Ubisoft has admitted that one of its web servers has recently been exploited and that users change their passwords after details of user names, email address, and passwords were compromised.

The publisher recommends that users change their passwords on Ubisoft sites and services, and has sent emails to registered users with details on doing so.

"We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems," said a Ubisoft statement. "We instantly took steps to close off this access, investigate the incident and begin restoring the integrity of any compromised systems."

"During this process, we learned that data had been illegally accessed from our account database, including user names, email addresses and encrypted passwords. Please note that no personal payment information is stored with Ubisoft, meaning your debit/credit card information was safe from this intrusion."

Ubisoft adds that the origin of the hack was not from its Uplay servers. The publisher's digital storefront was temporarily closed earlier this year after savvy exploiters found a way to download games on the service--including the then-unreleased Far Cry 3: Blood Dragon--for free.

"Unfortunately, no company or organization is completely immune to these kinds of criminal attacks," added the publisher.

Written By

Hi! I'm Martin, for some reason or another I have managed to convince the people who run GameSpot that I am actually wor

Want the latest news about Far Cry 3: Blood Dragon?

Far Cry 3: Blood Dragon

Far Cry 3: Blood Dragon

Follow

Discussion

231 comments
Rifat-Araf
Rifat-Araf

And they are making a game about hacking.

DiscGuru101
DiscGuru101

I uninstalled UPlay earlier this year.. Shouldn't they reset our passwords automatically after something like this?

GERMANY21
GERMANY21

Oh God ! So I should change my Uplay Password ????!?

Skakruk
Skakruk

and there is still a problem - changed password ain't works, uplay not starting even after 5 password changes. Asshole ubisoft.....

SpicaAntares
SpicaAntares

And the same people wants us to buy their games digitally...

Thank you but no thanks. "They stole gamers account but didn't steel their credit card", sure... Send the games to the retailers 'cause you wont get my credit card number!

toane
toane

This is a step to prevent accounts with weak passwords from being hacked right? How long would it take to match a secure password with a known encrypted key? Before I routinely change it in a few years or the service goes down anyway? I would be more concerned with spam arriving on my e-mail.

heat_masheet
heat_masheet

Thanks. I just added 123 to my existing password. now it's mypassword123. oops I mean *************

isshiah
isshiah

...because I'm not paranoid enough.

ACWH
ACWH

I hope they encrypted their databases...

TerminalError
TerminalError

And this is why, Ladies and Gentlemen, we don't want to have multiple types of DRM. 

Take the hint publishers! 

entromorph
entromorph

I bet this is EA hacking Ubisoft because they slapped EA in the gamestop most exciting games of 2013 votes.

sadscooterpipe
sadscooterpipe

Your *rights* when you buy something are getting absolutely ridiculous.  They force DRM on you to even use the product you just paid for and then, as an added provision and kick in the balls, often insert no-culpability clauses in the user agreement.

You are stuck having to provide e-mails and set up accounts if all you want to do is  play the game you just bought, and then are unable to even be a part of class action suits because of the above.  I was hit with the MS Fifa hack a couple seasons back, so big lesson learned for me.  Sadly the experience provided an amazing insight into how little rights you have when some hacker exploits systems just like this.

No one is going to not play a game, upgrade their iTunes or OS etc., or refuse a Draconian "user agreement" after a purchase....so basically a big FU incoming yet again from the fine folks who have already taken your money.

Ramus73
Ramus73

So let me get this straight, these companies want to force DRM on us but can't safeguard the security of it even though thats the reason their giving for doing it in the first place?? WTF?

telaros
telaros

Only thing tied to my Ubisoft account is false information about myself and games I don't play. Never once bought stuff off their store and never care to.

Have fun hackers. Even the password was a joke I don't use on any other accounts. Especially since they're all different :p

mrklorox
mrklorox

Damnit, Gmail! Why was the notice from Ubisoft sent to my spam folder? Can't you tell when something's a scam and when something's legit?

MajinSquall
MajinSquall

 i never understood why people would do this, there is no ryme or reason for it and no need for it either, it's like they are just a bunch of idiots who think it's funny to ruin things for everyone else

xsonicchaos
xsonicchaos

All I have are these 15 uplay points (or units, whatever). You can take them if you want, hacker dude. What the heck is wrong with these guys, stealing Uplay accounts now? Bored much?

JimmyThreeBalls
JimmyThreeBalls

Got an email for My PS3 Ubi account, but not my PC account weird!!

sidzero
sidzero

I'm passing on changing my info because there is no reason for a hacker who doesn't even know who I am, or probably even care that I exist, to access my accounts. Especially given that there is nothing to gain from it. Someone out there probably just wanted to test their hacking skills... that's usually how these things happen. Unless otherwise announced, I doubt it was any cyberterrorist, or hacktivist, or whatever they call themselves these days, trying to send an anti-DRM message, and it's not like whoever it was, was able to get any useful information.

nayce
nayce

Watch Dogs hacked their system, lol

quinnd6
quinnd6

Why can't they keep their system secure the fricking dopes.

They should drop the bloody thing altogether if they can't keep it safe. I'm sick of this crap happening with companies, it's a pain in the ars.

Everytime you buy a physical copy of a game you're forced to use Ubisoft's insecure crappy drm and the funny thing is if you do the wrong thing and download it illegally you don't have to put up with any of their drm crap.

Are Ubisoft trying to force people to download illegally or something? Why should the loyal paying customers be punished with this insecure piece of junk.



Zemus
Zemus

That email with its 965 digit name with the @ubisoft or whatever was real!?  Sorry no, I deleted just as everyone else should have.  

If Ubisoft wants to get real with this stuff don't send emails out from an address like that.  As far as im concerned it's still fake,  NO ONE is that unprofessional

hadlee73
hadlee73

Oh, that email was for real? It looked so unprofessional I thought it was spam and deleted it lol

Lutrian
Lutrian

Which I cannot do, because I cannot read their captchas.  Good work, UBIsoft.

suikosasarai
suikosasarai

The real "Watch Dogs" wanted to send a message to Ubisoft.

Rattlesnake_8
Rattlesnake_8

Another reason to not support online only DRM.

msfan1289
msfan1289

my account got hacked, put in a claim, they only replied once, i sent a email replying to my ticket and they haven't replied since.

andmcq
andmcq

So? It's not Steam so who cares.

Ramus73
Ramus73

@sadscooterpipe We, the consumers, should never have stood for DRM but unfortunately a lot of people are happy to blindly accept what they are given. Sim City 5 sold 1 million copies in 3 weeks despite it being a flagrant abuse of our rights and a piss poor product.

If you accept DRM the company can stop you playing the game with no refund, monitor and control what you do which is an invasion of privacy and you have no leg to stand on. I refuse to buy any game that has DRM and so should all gamers. It's time we told these aholes what we think with our wallets.

Shame on software companies for forcing procedures with poor security on us and shame on them for using unscrupulous techniques to line their pockets with gold.

Galiard
Galiard

@Ramus73 DRM should not exist, we should be out in the streets Rioting against this kind of shit. 

moonlightwolf01
moonlightwolf01

@MajinSquall Very simple reason. Money, this kind of data can be sold to criminals who can then gain access to your accounts and use it for sending out scam emails and such, also if your account has any financial details attached they can find out those too so really there's plenty of reason behind it.

Hermiro
Hermiro

@JimmyThreeBalls isn't it the same account? I have only one and see all my games on all systems....

Wattsburg0
Wattsburg0

@sidzero As long as you do not use that same password and that same email address to log into other accounts.

MajinSquall
MajinSquall

 @Zemus i never use links in e-mails anyway if i have to change my data i go to the website my self and do it from there

cirugo
cirugo

@ALCHEMISTx24x7  

why should Ubisoft get to double-dip?  Give me an example of any other kind of merchandise out there where the manufacturer gets a cut of the sale when the original purchaser sells it to someone else.  Gaming execs like to call gamers "entitled" but I think they need to turn that mirror around.

howitis2000
howitis2000

@Gamerhomer shitty severs are my biggest issue 2 hours to download a game if your lucky, been up to a day before.

If_U_Only_Knew
If_U_Only_Knew

@Gamerhomer 

When the GTA games go on sale properly the whole franchise goes on sale at 75% off. So you pick up the entire franchise for like €10 or something. 

That's the kind of sales people like. I got TW: Shogun 2 Complete with all DLC for €10 before. I couldn't afford to buy all this otherwise.

Gamerhomer
Gamerhomer

It's just another online shop which has the odd sales (games you wouldn't buy unless it was dirt cheap) and PC gamers look at it like a religious god sent... Shit. All digital copies= SHIT.

I did a little test on the OH SO WONDERFUL Steam. Typed in a game I wanted, NOT a random crap game on sale and guess what... no cheaper than any platform, in fact more expensive. GTA4 STILL £20, after 4 years. Stick ya deals up ya arse because everything else is just as high as console and ya can't resell.

GTA4 for PS3 on Amazon £12.74 AND you can resell that game...STEAM IS SHIT.