A couple of weeks ago, UK-based game developer Codemasters admitted that its web site was the subject of a cyber attack on May 20. The company said that the info obtained from the attack at the time was limited to some admin names from Codemasters' staff. Now Neowin.net has received an email from Codemasters admitting that the web site has been hacked yet again on June 3. As a result Codemasters has taken the main site down and redirecting that site's visitors to the company's Facebook web site and it will stay that way "for the foreseeable future."
In addition to the main web site, the unknown hackers also attacked the Codemasters corporate website and sub-domains, the DiRT 3 VIP code redemption page and the Codemasters EStore. The company said that "customer names and addresses, email addresses, telephone numbers, encrypted passwords and order history" was all exposed in this attack from the EStore. However it claims that payment info was not taken due to Codemasters using an external company for those efforts. The company has also admitted that "Members' names, usernames, screen names, email addresses, date of birth, encrypted passwords, newsletter preferences, any biographies entered by users, details of last site activity, IP addresses and Xbox Live Gamertags" were exposed from the main web site.
Codemasters states, "Whilst we do not have confirmation that any of this data was actually downloaded onto an external device, we have to assume that, as access was gained, all of these details were compromised and/or stolen." It suggests that users affected by this attack change their passwords that may have been used by their Codemasters accounts. It added, "We assure you that we are doing everything within our legal means to track down the perpetrators and take action to the full extent of the law. We apologise for this incident and regret any inconvenience caused." Codemasters will relaunch its company web site later this year.