Hey everyone!
I would just like to raise some awareness regarding a problem on Twitch, that allows hackers to steal the IP addresses of people that view their channel by using an extension.
The main way that they do this is by using a bot to follow streamers on multiple accounts, in hopes that they will get curious and check out their channel. They have also been known to do "Hate Raids" and spam the chat with hateful and offensive language in hopes to bait people into visiting their channel.
There are a few video's out there with inaccurate information about this, stating that having your IP address leaked is virtually harmless, besides DDoS (distributed denial of service) attacks.
Doxing is a process where a hijacker searches for private information about an individual such as name, address, usernames, passwords, email addresses and IP Addresses.
If any of the above are obtained by a hijacker, they can use this information to search against leaked databases of websites that have had security breaches.
A breached website is a website that has been previously hacked and had all of their users information stolen, such as usernames, passwords, emails and IP addresses.
If a hacker has any information like the above, they can get other information linked to it, which can lead to email accounts, social media, steam accounts and many other things being stolen.
Twitch knows about this and have put a couple of security features in place, including making it so that only verified accounts can post on a users channel if they have the option selected.
This is more of a Band-Aid type of solution and doesn't fix the issue 100%.
I would just like to raise some awareness regarding a problem on Twitch, that allows hackers to steal the IP addresses of people that view their channel by using an extension.
The main way that they do this is by using a bot to follow streamers on multiple accounts, in hopes that they will get curious and check out their channel. They have also been known to do "Hate Raids" and spam the chat with hateful and offensive language in hopes to bait people into visiting their channel.
There are a few video's out there with inaccurate information about this, stating that having your IP address leaked is virtually harmless, besides DDoS (distributed denial of service) attacks.
This is very untrue
, having your IP address leaked puts you at risk of being "Doxed" Which is a term used to gather information about the victim, leading to their accounts being hijacked.
What is a Dox?
Doxing is a process where a hijacker searches for private information about an individual such as name, address, usernames, passwords, email addresses and IP Addresses.
If any of the above are obtained by a hijacker, they can use this information to search against leaked databases of websites that have had security breaches.
What is a breached website?
A breached website is a website that has been previously hacked and had all of their users information stolen, such as usernames, passwords, emails and IP addresses.
If a hacker has any information like the above, they can get other information linked to it, which can lead to email accounts, social media, steam accounts and many other things being stolen.
Does Twitch know about this?
Twitch knows about this and have put a couple of security features in place, including making it so that only verified accounts can post on a users channel if they have the option selected.
This is more of a Band-Aid type of solution and doesn't fix the issue 100%.
5.8b exp
|
Trimmed Completionist
|
Account Security
|
Mega Duck Community Events
07-Oct-2021 01:59:48 - Last edited on 07-Oct-2021 16:18:31 by Mega Duck
