Codemasters latest to suffer from hacked data

Site shut down and security hole closed after admin details stolen

UK publisher Codemasters has become the latest games company to suffer at the hands of hackers, following high-profile attacks on Sony and Square Enix.

The Dirt and Operation Flashpoint publisher told it moved quickly when it discovered password and login data for had been compromised and posted online.

"On Friday 20th, there was an attempt to gain administrative access to the website. This admin access may have allowed alterations to our company website.

"We responded swiftly with a full investigation to isolate the issue, bringing down for a few hours to ensure no access would be possible, and returned the website after a security hole was closed. While some staff admin names were obtained, passwords were all encrypted."

"Our online team take security of user data very seriously and we are reviewing all of our websites and systems to ensure we are as safe as possible, especially as many games companies have been popular targets for this sort of activity recently."

As well as the high-profile PSN breach at Sony, which is expected to cost the company in the region of $170 million, Square Enix also fell victim to a hacking attack last month, with email addresses and CVs compromised.

More stories

EA expands Criterion with Codemasters Cheshire team

Two development studios will now operate as one working on the future of Need For Speed

By James Batchelor

Frank Sagnier and Rashid Varachia step down from Codemasters

CEO and CFO will depart company at the end of July

By Danielle Partis

Latest comments (11)

James Prendergast Process Specialist 11 years ago
I'm thinking of starting a pools draw for which company/website will be hacked next and/or when.

(This has the double advantage of if someone is too precise they might have their identities forwarded to some authority for further consideration ;) )
0Sign inorRegisterto rate and reply
Stephen McCarthy Studying Games Technology, Kingston University11 years ago
I calling bioware next...
0Sign inorRegisterto rate and reply
James Martin Editor, The Gamer Scene11 years ago
Let's play a drinking game- every time a website is hacked, we have a shot of some high percentage alcoholic drink. We'll be stoned in absolutely no time.
0Sign inorRegisterto rate and reply
Show all comments (11)
Adrian Buyssens11 years ago
Maybe the actions of some people pissed at Codemasters because of the Dirt 3 - PS problems?
0Sign inorRegisterto rate and reply
Shane Sweeney Academic 11 years ago
Its not just that. There is a bit of a war going on, the groups on the darknets are infighting and a lot of groups are attacking each other too. Getting information on it is hard as a lot of central hubs where people usually talk about these issues are also down.
0Sign inorRegisterto rate and reply
robert troughton Managing Director, Coconut Lizard11 years ago
According to The Hacker News, there were actually 2.5million accounts found here... though passwords were encrypted. They have a screenshot showing some of the emails on their site...

This is a little different from what I've read about the Sony hack. The reason, I believe, that Sony are getting hit so hard at the moment is that Anonymous, who were annoyed about the whole George Hotz and OtherOS issues, have stated that they want small Sony sites taken down as part of a "recruitment drive"... so it's a little like viral hacking - having enough newbie hackers chipping away at Sony sites will eventually show up the cracks... then, on top of this, the media furore surrounding this gives hackers easy ways to become famous. Taking down a Sony Music site isn't a bigger thing than hacking into CodeMasters' - but the former will be much more likely to be featured on the big news sites at the moment.

If anyone wants to know exactly how badly protected many websites are I strongly suggest looking up "The Hacker News" ... just Google "THN the hacker news". Just yesterday there was some alarming news, for example, for those using vBulletin 4.x versions - an easily exploitable security hole... vBulletin released a security patch - but I doubt many will update fast enough. Older versions of vBulletin had, of course, even more security issues... Atari, as an example, are still on 3.6.8: ... and all that it takes to find this information out is a Google search - "Powered by vBulletin 3" ... scary.

The fact is, though, these hacks were happening all the time - people are only noticing now because the PSN hack was an absolutely massive "win" for the hackers... followed up by another with the SOE site. Hopefully people, globally, will learn something from all of this...

Edited 1 times. Last edit by robert troughton on 27th May 2011 7:09am

0Sign inorRegisterto rate and reply
Björn Loesing Producer, OnnetCorp11 years ago
BioWare/EA are my next bet, too.

I'm still saddened but unsurprised at the sheer amount of happy net-vandalism some individuals enjoy.
0Sign inorRegisterto rate and reply
gi biz ;, 11 years ago
Security in the games industry has never been a priority. Many supposedly secure websites are still vulnerable to SQL injection and other amenities, imagine how open an industry that doesn't care as much about security is. And yet, now that you have to subscribe for every game, companies became valuable data mines. Aside of vengeance and fame, data mining is a major business, I wouldn't be surprised to discover that those hackers are being paid from someone, for example.
Is it time to realize that the era of the SNes is over and that putting some effort into security - and I don't mean DRM, I said SECURITY - is due? Didn't the excellent Wipeout on PSP, or Lumines or what else, allow a major hack to the whole system because of lack of security? Let me guess - they used the old string.h functions?
0Sign inorRegisterto rate and reply
Shane Sweeney Academic 11 years ago
Indeed, the company I work for is currently hiring Penetration testers for our internal systems. Security consultants the world over must be doing very well out of this.

0Sign inorRegisterto rate and reply
James Butterworth SuperGeek - IT Hardware & Software 11 years ago
Not surprised this has happened to CM after the way they treat paying customers. Bought Race Driver 3 on launch and the protection system didn't work when Win 7 came out. Codemasters flatly refused to support Win 7 and said major programming changes were needed to make it compatible.

That was bullshit, as it was only the protection system that needed upgrading, which Starforce had done. It needed to be patched into the game by CM which they didn't want to do. I ended up using a No-DVD crack and Starforce remover to bypass the protection system. It runs fine now, and I no longer buy CodeMasters software. They don't give a shit about me when I pay for their software, I don't care when they're hacked. No wonder piracy is so damn rife in PC gaming with developer attitudes like that.
0Sign inorRegisterto rate and reply
Jeffrey Kesselman CTO, Nphos11 years ago
Game developer s have been too complacent for too long about online security. Its just.that simple
. Building secure online systems is a science but its not rocket science.
0Sign inorRegisterto rate and reply

Sign in to contribute

Need an account? Register now.