An unauthorized intrusion for one of Ubisoft’s web services has exposed registered members’ usernames, email addresses, and encrypted passwords.
Ubisoft emailed affected users recommended they immediately change their passwords, along with any instances of the same password being used for other online services—be it through Ubisoft or not.
“We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems,” reads the email to affected users. “We instantly took steps to close off this access, investigate the incident and begin restoring the integrity of any compromised systems.”
According to a post on Ubisoft’s FAQ page about the leak, no payment information was exposed. The company said they cannot specific the website hacked for security reasons.
“Credentials were stolen and used to illegally access our online network,” Ubisoft said on the FAQ page. “We can’t go into specifics for security reasons.”