PoE 2 Data Breach Confirmed

Path of Exile 2 Developer Confirms Data Breach: Player Information Compromised

Grinding Gear Games, the developer behind Path of Exile 2, has confirmed a data breach affecting a significant number of player accounts. The breach, discovered the week of January 6th, 2025, stemmed from a compromised developer account linked to Steam.

Compromised Information:

The breach exposed sensitive player data, including email addresses, Steam IDs, IP addresses, shipping addresses, and unlock codes. While passwords and password hashes were not directly accessible, the attacker potentially used compromised email addresses to bypass region locks on Steam-linked accounts. In some cases, transaction and private message histories were also viewed.

Cause and Response:

The breach originated from an attacker gaining access to a developer's admin account, likely exploiting a vulnerability in the account's link to an old, unrelated Steam account. Grinding Gear Games immediately responded by locking the compromised account, initiating password resets for all admin accounts, and launching a full investigation. A bug allowing the deletion of relevant logs was also identified and patched.

Security Improvements:

To prevent future breaches, Grinding Gear Games has implemented several security enhancements. These include eliminating the ability to link third-party accounts to staff accounts and imposing significantly stricter IP restrictions.

Community Response:

The community's reaction has been varied. While some players commend the developer's transparency, others advocate for the implementation of two-factor authentication for enhanced account security. Many also express a desire for further security improvements, along with content updates and endgame difficulty adjustments.

Summary of Key Points:

• Data breach confirmed, impacting a substantial number of Path of Exile 2 accounts.
• Compromised data includes email addresses, Steam IDs, IP addresses, shipping addresses, and unlock codes.
• The breach resulted from a compromised developer account linked to Steam.
• Grinding Gear Games has taken immediate action, implementing security improvements to prevent future incidents.
• The community response is mixed, with calls for increased security measures and game improvements.