Login Bug Notification
Yesterday a troublesome programming bug was discovered and fixed. It was a coding error that could trigger during the log-in process, it could have affected some of our members under the right circumstance. Our database was not exposed, it was not a web-site hack. Luckily the problem was found quickly and patched.
In the right circumstance, the bug could have allowed someone to log in as a different user. Luckily, there isn't evidence of a single account affected. We have thousands of members - however fewer than 200 members could possibly have been affected while the bug existed.
I wanted to make certain our members knew about this incident just in case someone was actually affected. Good communication is the cornerstone of trust, especially with so many large company websites not informing it's members for months or longer.
Members who could have possibly been affected will receive an email today. If you don't get the email, then you were not affected.
If you do receive the email, it does not mean you were actually affected. It means your account was logged-into during the time the bug existed. There are still no signs of any accounts compromised.
If you do get the email, this is what you should do:
- Check to make certain you can still log-in. Your passwords could not be exposed even if someone logged in as you.
- Verify the email address in your Gamer Profile hasn't changed.
- Examine your Gamer Profile settings. Are your avatar or text comments in About Me the same?
- Confirm your Gamer Interests haven't changed. This include Game Systems and Genres.
Members who receive the email and believe they were affected should Send Feedback. Please provide information explaining why you think you were affected.