Bethesda Details Personal Information Leaked Due to Support Site Glitch

Bethesda Details Personal Information Leaked Due to Support Site Glitch

No passwords or full credit card information were revealed.

Yesterday, it was discovered that an error with Bethesda's customer support website allowed people to view other customers' support tickets. These tickets contained personal info including contact info, purchase information, and username. After an investigation Bethesda said that no passwords or full credit card information were at risk.

Today, Bethesda sent out the results of a deeper investigation to explain what exactly happened, and to what extent personal information was vulnerable. Bethesda learned that the exposure last about 45 minutes and confirmed again that neither passwords nor full credit card information were disclosed.

"As previously reported, on December 5, 2018, we experienced an error with our Customer Support website that resulted in the exposure of a limited number of customer tickets," says a Bethesda representative. "Upon discovery, we immediately took down the Customer Support website, remediated the error and restored the Customer Support website."

"From our investigation, we have learned that, on December 5, 2018, there was a brief period of time during which customers accessing our Customer Support website may have been able to view the customer support tickets submitted by other customers during this same time period. Based on our current investigation, we believe this exposure window lasted approximately 45 minutes."

Bethesda says that during the exposure window "fewer than 123 customer support tickets were submitted and may have been partially or fully viewed by others accessing the Customer Support website." The company adds that of the 123 tickets "no more than 65 customer support tickets contained personal data that may have been exposed."

A screenshot of users commenting on the vulnerable security tickets.

While neither Bethesda account passwords or full credit card numbers were included in the exposed tickets, "name, user name and contact information (e.g. email, address and pho number)" and "proof of purchase information" if they were included in the support ticket at all, were viewable.

This could mean that while no full credit card numbers were exposed, the last couple digits as printed on a receipt could have been viewable. Bethesda says it is contacting customers who may have been impacted by the vulnerability and that it sincerely apologizes for the situation.

Based on the findings posted by Bethesda and considering this wasn't a deliberate hacking attempt, the damage appears limited. However, Fallout 76's launch has proven to be quite rocky and the mounting incidents have not helped Bethesda in this turbulant launch period.

Sometimes we include links to online retail stores. If you click on one and make a purchase we may receive a small commission. See our terms & conditions.

Matt Kim

News Editor

Matt Kim is a former freelance writer who's covered video games and digital media. He likes video games as spectacle and is easily distracted by bright lights or clever bits of dialogue. He also once wrote about personal finance, but that's neither here nor there.

Related articles

Mega Man Battle Network's Creators Are Taking Note of Demand for Series Ports

You shouldn't set your expectations high for a sequel, though.

You may also like

"It Feels Like We Made 10 Games:" Kentucky Route Zero at the End of the Road

We talk with Cardboard Computer about the episodic structure of Kentucky Route Zero, Act 5's finale, and more.

The Warcraft 3 Reforged Interview: Blizzard on Keeping the Remake "Pure"

Instead of a more extensive overhaul, Warcraft 3: Reforged is about creating a remake that can exist alongside the original.

Fire Emblem is Nintendo's Hero in the Mobile Market While Mario Scrabbles for Scraps

Given Mario's enormous star power, why isn't he more lucrative in the mobile space?