Update: GAME refutes hacking claims - says no breach took place
Retailer also says all customer details are "well protected"
UPDATE
GAME has responded to reports that its customer data had been compromised, denying that any security breach has taken place and refuting the claim that unhashed passwords and emails are stored in its databases.
GAME spokesperson Anna Marie Mason issued a statement which denies the rumours of the breach in no uncertain terms, reassuring users that details are safe.
"At GAME we guard our customers' details very carefully," reads the statement.
"We have thoroughly investigated the hacking claims made today by the website Pastebin, and can confirm that they are entirely false. The published email addresses are not registered users of GAME.co.uk, and there has been no breach of our database security.
"We would like to assure all our customers that their details are well protected, and advise anyone who has any questions to contact our customer services team via the website, our Facebook page or Twitter account."
Original Story
GAME's UK site has reportedly been hacked, with the offenders obtaining access to a database which revealed unhashed passwords and email addresses.
Reported via Softpedia, the attack is said to have exploited a shell injection vulnerability to breach the database.
At a similar time, Tasmanian game retailer Catalyst Gaming had its defenses bypassed, with the stolen information being posted at Pastebin shortly afterwards. Usernames and emails were printed verbatim, but passwords for the site were hashed.
Anyone with an account at either site is recommended to change their login details immediately and revise any passwords which are used elsewhere.
GAME has been approached for a statement regarding the attack.
I think GAME ought to be approached for a statement on why in the living fuck were their passwords not salted and hashed.
Posted:A year ago