View Full Version : Codemasters hacked

10-06-2011, 02:37 PM
Important information regarding your account

Dear valued Codemasters customer,

On Friday 3rd June, unauthorised entry was gained to our Codemasters.com website. As soon as the intrusion was detected, we immediately took codemasters.com and associated web services offline in order to prevent any further intrusion.

During the days since the attack we have conducted a thorough investigation in order to ascertain the extent and scope of the breach and have regrettably discovered that the intruder was able to gain access to the following:

Codemasters.com website

Access to the Codemasters corporate website and sub-domains.

DiRT 3 VIP code redemption page

Access to the DiRT 3 VIP code redemption page.

The Codemasters EStore

We believe the following have been compromised: Customer names and addresses, email addresses, telephone numbers, encrypted passwords and order history. Please note that no personal payment information was stored with Codemasters as we use external payment providers, meaning your payment details were not at risk from this intrusion.

Codemasters CodeM database

Members' names, usernames, screen names, email addresses, date of birth, encrypted passwords, newsletter preferences, any biographies entered by users, details of last site activity, IP addresses and Xbox Live Gamertags are all believed to have been compromised.

Whilst we do not have confirmation that any of this data was actually downloaded onto an external device, we have to assume that, as access was gained, all of these details were compromised and/or stolen.

The Codemasters.com website will remain offline for the foreseeable future with all Codemasters.com traffic re-directed to the Codemasters Facebook page instead. A new website will launch later in the year.


For your security, in the first instance we advise you to change any passwords you have associated with other Codemasters accounts. If you use the same login information for other sites, you should change that information too. Furthermore, be extra cautious of potential scams, via email, phone, or post that ask you for personal or sensitive information. Please note that Codemasters will never ask you for any payment data such as credit card numbers or bank account details, nor will Codemasters ask you for passwords or other personal identifying data. Be aware too of fraudulent emails that may outwardly appear to be from Codemasters with links inviting you to visit websites. The safest way to visit your favourite websites is always by typing in the address manually into the address bar of your browser.

Unfortunately, Codemasters is the latest victim in on-going targeted attacks against numerous game companies. We assure you that we are doing everything within our legal means to track down the perpetrators and take action to the full extent of the law.

We apologise for this incident and regret any inconvenience caused.

We are contacting all customers who may have been affected directly.

10-06-2011, 02:38 PM
*shakes angry fist at Codemasters*

10-06-2011, 02:43 PM
That's what happens when you fake the AI in F1 2010.

Vexing Vision
10-06-2011, 02:43 PM
Wow, so the English email has all kinds of fancy lettering and bold text.

The German email I just got is a wall of text without any formatting apart from paragraphs, same content though.

Hmm. Maybe the hackers can tell me which password I used, as the password-recovery function didn't work for me at cogaccounts for some reason. :D

10-06-2011, 02:45 PM
Hmm. Maybe the hackers can tell me which password I used, as the password-recovery function didn't work for me at cogaccounts for some reason. :D
Sure: GANDALF111

10-06-2011, 03:18 PM
Thank you for the heads up. I think I made a codies account at some point... grid car unlock code I think.

Karma for making jericho too hard and then trying to charge for cheats.

get well soon codies.

10-06-2011, 03:28 PM
That's what happens when you fake the AI in F1 2010.

lol QFT! The AI among other things turned me off that game. I was hyped for it too as I used a g25.

10-06-2011, 03:34 PM
* "Our website is offline"
* "Please change your password asap"

This doesn't compute, or am I missing something? How would one go about changing the pw when the friggin site is unreachable?

10-06-2011, 03:37 PM
In situations like this wouldn't it be easier if they reset everyones passwords? Sending them the new one via email and telling them to change it asap. What did Sony do?

Creeping Death
11-06-2011, 11:56 PM
Hmm seems like Epic were hacked too. Bad time to be a big company with a large online presence I guess.


Our Epic Games web sites and forums were recently hacked. We're working on getting them back up and running, and expect everything to be restored in a few days.

The hackers likely obtained the email addresses and encrypted passwords of forum users. Plain text passwords weren't revealed, but short or common passwords could be obtained by brute-force attack. Therefore, we're resetting all passwords. If you have an account on the Epic Games forums, you can request to receive your new password by email it to the address we have on file for you.

The Unreal Developer Network (UDN) has not been compromised. None of our web sites ask for, or store, credit card information or other sensitive customer data.

We're sorry for the inconvenience, and appreciate everyone's patience as we get our servers back under control.