If you’re a subscriber to Dungeons & Dragons Insider, you may want to check your credit card statement from the past few months for fraudulent charges. According to the Minneapolis Star Tribune, the e-commerce servicer Digital River (which handles the payment processing for DDI) was recently hacked, leading to possible leak of the personal information of almost 200,00 customers. The Star Tribune states:
The Eden Prairie company obtained a secret court order last month to block Eric Porat of Brooklyn from selling, destroying, altering or distributing purloined data on nearly 200,000 individuals. Digital River suspects that the information was stolen by hackers in New Delhi, India, possibly with help from a contractor working for Digital River.
According to a poster on RPG.net, the customer service line for Digital River assures the breach did not involve DDI subscribers. However, it is still a good idea to double-check your statements just in case. Exploring Digital River’s website seemingly yields no information about the breach at all, so the extent of the damage might not yet be known, or the company may be trying to keep a tight lid on it.
Digital River’s security guarantee states:
- You pay nothing if any unauthorized charges are made to your card as a result of shopping with us.
- Every software download is 100% virus free.
- All information that you provide while shopping is encrypted so no one can access or use personal information in an unauthorized manner.
And if you believe you have been the victim of unauthorized charges, you can try and access your account through Digital River’s order support page or contact customer service.
It was only a matter of time before something like this directly affected the gaming community. I’m surprised it hasn’t happened en-masse to one of the major MMOs yet, frankly.
Thanks for the heads up. I seem to recall that a couple of years ago there was debate about a consumer protection law that required vendors to notify customers whose data had been stolen – I wonder what lobbyists killed it….
I expect somewhere on teh interwebs a forum troll is blaming WotC — “those money-grubbing whoooores” — for this.
Thanks for publicizing this important bit of info. Unfotunately, the dangers of a disgruntled employee swiping info provided confidentially by consumers applies to many aspects of our daily lives, where for the sake of convenience we give a website credit card info to be charged on a recurring basis.