Twitch has definitively stated that passwords weren’t exposed in last week’s major data breach.
“Twitch passwords have not been exposed,” Twitch said in an update to its webpage about the security incident. “We are also confident that systems that store Twitch login credentials, which are hashed with bcrypt, were not accessed, nor were full credit card numbers or ACH / bank information.”
Last week, what appeared to be leaked source code for Twitch hit the web, and in Friday’s update, Twitch confirmed that was the case. “The exposed data primarily contained documents from Twitch’s source code repository, as well as a subset of creator payout data,” the company said. Twitch claims that the information exposed “only affected a small…