Nintendo Switch Online hack: Company confirms huge breach of players' details

Company 'sincerely apologises' for problems, which have seen players' accounts illegally used to buy games

Andrew Griffin
Friday 24 April 2020 12:59 BST
Comments
Game enthusiasts and industry personnel walk past the Nintendo Switch exhibit during the Electronic Entertainment Expo E3 at the Los Angeles Convention Center
Game enthusiasts and industry personnel walk past the Nintendo Switch exhibit during the Electronic Entertainment Expo E3 at the Los Angeles Convention Center (Christian Petersen/Getty Images)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Nintendo has confirmed a huge hack that allowed access to 160,000 people's accounts on its online services.

Rumours of a hack had spread in recent days as players reported suspicious logins and unauthorised purchases being made from their accounts.

Now the company has confirmed those accounts were hacked, in a post on its Japanese website.

It said that hackers had been able to access online logins that had been made available elsewhere on the internet, with issues beginning in April. It gave no details of how the details were stolen or how widely they had been used.

Nintendo confirmed that some people had used the logins for illegal purchases on its stores. It asked that users investigate such incidents themselves, try and cancel the payments, and inform Nintendo – though it cautioned the company may not be able to reply straight away.

The hackers were able to steal Nintendo Network IDs – which are used as login usernames on the online service – and passwords, the company said. While those NNID accounts give access to some personal information including a person's data of birth and email address, many people also use the same login on their Nintendo account, which can be used in the Nintendo Store or its online eShop for games.

The NNID was an old way of logging in to Nintendo services, but has been kept around to allow players to login through with their older account details. In response to the hack, it will get rid of those NNID logins, asking people to sign in using their email address instead.

Nintendo also said that it had reset people's account passwords, and that they will have to register a new one. It asked people not to use the same password as on any other sites.

It also asked users to turn on two-factor authorisation, which ensures that people are unable to access accounts even if they do have the password.

Users affected by the hack will be contacted over email, Nintendo said.

"We sincerely apologise for any inconvenience caused and concern to our customers and related parties," it said in the post, which appeared in Japanese. "In the future, we will make further efforts to strengthen security and ensure safety so that similar events do not occur."

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in