Email addresses and encrypted passwords accessed in Ubisoft server exploit, says publisher, but no payment information, phone numbers, or physical address information was taken.

Ubisoft has admitted that one of its web servers has recently been exploited and that users change their passwords after details of user names, email address, and passwords were compromised.

The publisher recommends that users change their passwords on Ubisoft sites and services, and has sent emails to registered users with details on doing so.

"We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems," said a Ubisoft statement. "We instantly took steps to close off this access, investigate the incident and begin restoring the integrity of any compromised systems."

"During this process, we learned that data had been illegally accessed from our account database, including user names, email addresses and encrypted passwords. Please note that no personal payment information is stored with Ubisoft, meaning your debit/credit card information was safe from this intrusion."

Ubisoft adds that the origin of the hack was not from its Uplay servers. The publisher's digital storefront was temporarily closed earlier this year after savvy exploiters found a way to download games on the service--including the then-unreleased Far Cry 3: Blood Dragon--for free.

"Unfortunately, no company or organization is completely immune to these kinds of criminal attacks," added the publisher.

Read and Post Comments | Get the full article at GameSpot