Twitch hack exposes user and company data — What Twitch users need to do now

Twitch Prime
(Image credit: Amazon)

Twitch, the popular streaming service owned by Amazon, appears to be the victim of a hack that has exposed a considerable amount of user and service information.

Video Games Chronicle broke the news of the 125GB torrent of Twitch data posted anonymously on a 4chan messaging board. The hack covers everything from the source code for to three years of details on creator payouts.

The hack has been verified as real and while the data leaked so far does not include passwords or other personal information for individual users (beyond the creator earnings), it is important to note that the leak was identified as "part one." Given the sheer volume and wide-ranging data that is captured in this leak, it seems likely that the hacker could have that data, it's just a question of whether they will release it.

Twitch has officially confirmed the breach via its Twitter account, but has not offered any insight into how it happened or the full extent of what data was lost. We'll update this article with any additional comments from Twitch.

If you have a Twitch account, you should change your password and ideally turn on two-factor authentication (2FA) for an additional layer of protection. As always, we recommend using an authentication app for 2FA as there are too many potential problems with using your phone number for 2FA.

The breach may have been motivated by ongoing harassment concerns surrounding Twitch with the anonymous hacker using the #TwitchDoBetter hashtag started by that movement. 

For now, the leak mostly amounts to a curiosity for streaming fans. On top of the Twitch creator earnings and source code, the leak also detailed Amazon's potential Steam competitor that is transparently codenamed Vapor. 

Screen capture of Security settings for password and two-factor authentication

(Image credit: Laptop Mag)

How to change your password on Twitch

Changing your password on Twitch is a quick and easy process, we can have your new password in place in less than a minute.

  • In your Twitch account click on your profile image in the upper-right
  • Select Settings
  • Click on Security and Privacy
  • Select Change password 
  • Enter your old password, then repeat a new password and click Change Password

How to set up two-factor authentication on Twitch

Setting up two-factor authentication is a bit more involved than changing your password, but it will be worth it and if you already have a 2FA method it should still take less than a minute. If you have never used 2FA before then you should quickly take a look at our how to use 2FA guide first and then come back.

  • In your Twitch account click on your profile image in the upper-right
  • Select Settings
  • Click on Security and Privacy
  • Select Set Up Two-Factor Authentication
  • Click Enable 2FA
  • Enter a cell phone number to receive an authentication code 
  • Type the confirmation number from the text message and click continue
  • Scan the QR code using your 2FA app, enter the code and click Submit
  • Click Done

That's it, your Twitch account is now secured!

Sean Riley

Sean Riley has been covering tech professionally for over a decade now. Most of that time was as a freelancer covering varied topics including phones, wearables, tablets, smart home devices, laptops, AR, VR, mobile payments, fintech, and more.  Sean is the resident mobile expert at Laptop Mag, specializing in phones and wearables, you'll find plenty of news, reviews, how-to, and opinion pieces on these subjects from him here. But Laptop Mag has also proven a perfect fit for that broad range of interests with reviews and news on the latest laptops, VR games, and computer accessories along with coverage on everything from NFTs to cybersecurity and more.