Bioware becomes the victim of what appears to be a revolt against all the video game studios. Today, it announced that their Neverwinter Nights forum were the target of a highly sophisticated and unlawful cyber attack.
The accounts of 18,000 people associated with the forum may have been compromised. The exposed information includes: Account names, email addresses, passwords, country, and birth dates.
No credit card information was stolen and Bioware doesn’t collect social security numbers, so that’s a plus. No other Bioware servers are known to have been affected by this attack as explains the official post.
Yesterday (June 14), we learned that a hacker gained unauthorised access to the decade-old BioWare community server system associated with the Neverwinter Nights forums, wrote BioWare Edmonton GM Aaryn Flynn. We immediately took appropriate steps to protect our consumers’ data and launched an ongoing evaluation of the seriousness of the breach.
We have determined that no credit card data was compromised, nor did we ever have or store sensitive data like social security numbers. However hackers may have obtained information such as user account names and passwords, email addresses, and birth dates of approximately 18,000 accounts – a very small percentage of total users.
We have emailed those whose accounts may have been compromised and either disabled their accounts or reset their EA Account passwords. If you did not receive an email from us, or if your password still works for your EA account, your username and password were not compromised. Nevertheless, changing your password regularly is always helpful to protect your account.
If you have received the email from Bioware, you should immediately reset your account on Neverwinter Nights forum or any other service you have been using that account with. If you have had linked your legacy Bioware account with an EA account then you should also reset that because hacker may have access to that account also.
We don’t know yet who is behind this, and twitter feed of Lulzsec, the infamous hacker group responsible for hacking several gaming communities and services including EVE Online, Minecraft, Bethesda, and gaming site, Escapist Magazine, hasn’t dropped a hint either.