Logo Platform
logo amplifiers simplified
Natco

Natco

6 years ago Jun 29,2018, 20:57:00 PM

An Important Announcement

Reply
10 423 Views
36 Comments


Hi everyone,  

We’re reaching out with some important information. This isn’t a fun announcement, but we really would appreciate if you took the time to read it.  


Background/What Happened?

In June 2016 Amplitude Studios was made aware that our platform www.Games2Gether.com was accessed without authorization.  This may have resulted in the unauthorized access to some of your data, including any combination of your username, registered email address, encrypted password and date of birth.


Steps We’ve Taken

We take your privacy and the integrity of our universes extremely seriously.  
When we became aware of the unauthorized access, we shut down the G2G platform and took the immediate action of initiating a comprehensive security review.

As a result of that security review, we launched the new Games2Gether platform after ensuring that enhanced security measures were in place.  We also enforced password resets for all returning users along with newer password encryption technology. Furthermore, we implemented regular security testing to prevent the likelihood of any such attack happening in the future. 

 

What Do You Need to Do?

While this happened some time ago, we would still recommend as a precaution that you consider changing your password on other platforms, websites or applications where you may have used the same password and email combination.


We would also recommend that you remain vigilant to phishing emails and spam asking for personal information.


If You Need More Information

We’re here and we’re listening. Please feel free to contact us at inquiry@amplitude-studios.com.


Thanks for reading,


The Amplitude Team

Copied to clipboard!
6 years ago
Jun 29, 2018, 11:15:41 PM

You guys are gr888 for announcing this 

0Send private message
0Send private message
6 years ago
Jun 30, 2018, 5:06:11 AM

Thanks Natco,

Are you allowed to tell us if the accessed passwords were hashed (e.g. SHA256) and salted (e.g. SHA256("arbitrary constant" + password))?  If yes to both, then I think our password schemes are probably safe.

0Send private message
6 years ago
Jun 30, 2018, 6:21:01 AM

Hi @corg I am checking on that w/ IT I will get back to you ASAP! 

0Send private message
6 years ago
Jun 30, 2018, 9:51:18 AM

Is this the first time you're informing us on this? And if it is, why did it take you two years to warn us?


EDIT: Moreover, are you gonna send out emails about this? I imagine most of the people signing up on G2G don't frequent the site very often.

Updated 6 years ago.
0Send private message
0Send private message
6 years ago
Jun 30, 2018, 6:22:23 PM

2016? Or am I missing something? I like your games but the protection of the personal data of customers is not just good business practice, it's the law.


0Send private message
0Send private message
6 years ago
Jun 30, 2018, 9:12:42 PM
Layo81 wrote:


Thank you. However I'll have to repeat what the previous comment mentioned. Why has this taken so long to report? Shouldn't we have been advised to reset our passwords at least? 





0Send private message
6 years ago
Jul 1, 2018, 12:09:49 PM

2016?
i dint have an account for this back then, so im assuming i dont have to worry about that breach effecting me

0Send private message
0Send private message
6 years ago
Jul 1, 2018, 7:23:12 PM

hacked in 2k16 was roughly two years ago? How is that information relevant for us now ?

0Send private message
0Send private message
6 years ago
Jul 2, 2018, 5:00:13 PM

Hi everyone,
 
 To get back to the questions here:

  • Will you send a newsletter? 

Yes. Expect it within 48 hours. Since this is important, administrative content, it will go out to everybody on G2G including those who haven’t specifically opted-in to Games2Gether communication. 

  • How was my password encrypted? 

Specifically, MD5(MD5([password])+[salt]) . What does that mean? It’s a form of encryption, but its security is not guaranteed. Again, change your passwords if you have the same Username/Password combination elsewhere.

  • Why only now?

At the time we took steps to shut down the G2G platform and thoroughly reviewed the security of our systems. We are contacting you now because we have recently been reached out to by a few users who have received phishing emails to email accounts used only for G2G. After review we think there can be some old G2G users who may not have reset their passwords after the password reset was enforced. We want to ensure that your personal data is safe.

  • How do I know if I am impacted?


If your account was created after July of 2016, then you have not been impacted. 


If you have any questions we’re listening at inquiry@amplitude-studios.com .


Thanks again for your time,


Natco

0Send private message
6 years ago
Jul 2, 2018, 5:23:22 PM

maybe add the information about why it took 2 years to tell people about this to the top, original post? Otherwise this seems really..... shitty

0Send private message
6 years ago
Jul 2, 2018, 7:18:22 PM

Do we will receive a new badge, something like "Survived Enfer Attack"?

0Send private message
?

Click here to login

Reply
Comment