Do you have a Codemaster account

I got this E-Mail today and i am not sure if it is legit but just in case it is here are the details.

Important information regarding your account
---------------------------------------------------------------------

Dear valued Codemasters customer,

On Friday 3rd June, unauthorised entry was gained to our Codemasters.com
website. As soon as the intrusion was detected, we immediately took
codemasters.com and associated web services offline in order to prevent
any further intrusion.

During the days since the attack we have conducted a thorough
investigation in order to ascertain the extent and scope of the breach
and have regrettably discovered that the intruder was able to gain
access to the following:

Codemasters.com website

Access to the Codemasters corporate website and sub-domains.

DiRT 3 VIP code redemption page

Access to the DiRT 3 VIP code redemption page.

The Codemasters EStore

We believe the following have been compromised: Customer names and
addresses, email addresses, telephone numbers, encrypted passwords and
order history. Please note that no personal payment information was
stored with Codemasters as we use external payment providers, meaning
your payment details were not at risk from this intrusion.

Codemasters CodeM database

Members' names, usernames, screen names, email addresses, date of birth,
encrypted passwords, newsletter preferences, any biographies entered by
users, details of last site activity, IP addresses and Xbox Live
Gamertags are all believed to have been compromised.

Whilst we do not have confirmation that any of this data was actually
downloaded onto an external device, we have to assume that, as access
was gained, all of these details were compromised and/or stolen.

The Codemasters.com website will remain offline for the foreseeable
future with all Codemasters.com traffic re-directed to the Codemasters
Facebook page instead. A new website will launch later in the year.

Advice

For your security, in the first instance we advise you to change any
passwords you have associated with other Codemasters accounts. If you
use the same login information for other sites, you should change that
information too. Furthermore, be extra cautious of potential scams, via
email, phone, or post that ask you for personal or sensitive
information. Please note that Codemasters will never ask you for any
payment data such as credit card numbers or bank account details, nor
will Codemasters ask you for passwords or other personal identifying
data. Be aware too of fraudulent emails that may outwardly appear to be
from Codemasters with links inviting you to visit websites. The safest
way to visit your favourite websites is always by typing in the address
manually into the address bar of your browser.

Unfortunately, Codemasters is the latest victim in on-going targeted
attacks against numerous game companies. We assure you that we are doing
everything within our legal means to track down the perpetrators and
take action to the full extent of the law.

We apologise for this incident and regret any inconvenience caused.

We are contacting all customers who may have been affected directly.

Should you have any concerns or wish to speak to a member of our
Customer Services team, please email them at
custservice@codemasters.com.

You have been sent this email as part of your Codemasters Code M
membership. If you have any questions or queries about this email or
your CodeM account, please email CodeM@codemasters.com. The Codemasters
Software Company Limited, registered in England (Company No. 2044132)
whose registered office is at Codemasters Campus, Southam, Warwickshire,
CV47 2DL, England. For more Privacy information, please read the
Codemasters Privacy Policy : http://www.codemasters.co.uk/privacy/

 

Phishing Bill! I'd rather go fishing.http://bestsmileys.com/fish/18.gif BTW,

 

Those are my suspicions exactly Augie but just on the chance it was legal i posted it.
I have a Hotmail account just for things i dont want to use my proper E-Mail account for and just today i got 7 junk mails one of them offering me 5.2$
and another sending nude pictures of Susan, their security must be a disaster.

 

The full copy/paste might not truly show what the links in the email are.

That could be a phishing email, someone wanting access to your gaming account and then on to your PayPal or w/e accounts are linked to it.

Checkout the full email headers Bill.

 

Yeah, I'm going to go with David. That email is Legit. It is merely informing you of a situation and not asking you to do anything other than to change your password, which it does not provide a link for you to do, it assumes you will simply log in at the website. It also further warns you that if you have other accounts with the same data, at other places, you should assume they are at risk and change them as well.

Phishing emails generally follow a format where they tell you there was a problem with YOUR account and you need to log in to a provided link and verify your information is correct.. this email is informing you of a security breach on the company's side and telling you to change your information, not verify it.

 

Sorry for taking time to reply David (i had a system crash and it took a while to get back up and running)
I don't have an account it was just random along with the other junk in the Hotmail account.

 

Bill, unsolicited mail can be classified as spam or phishing IMHO, especially if you don't have an account with them. Dump it.

Not too long ago, I received an email from a bank that I deal with. It said that I had an online account (which I don't have with them) and to click on the link. Immediately I called the bank and they told me that it was phishing and that they were aware of it. One phrase in that letter was cut off and that made it even more suspicious.

The email you received seems to be well written and thus makes it look *genuine*.

BTW: I have my spam box set up to delete all emails immediately but this bank email arrived in my inbox. Thing was that this email showed up in my primary email account.

 

I'm not certain but I think that even the 'on hover' element can be falsified, to be sure, I usually copy the URL and paste it into Notepad to check it - even then, if the URL appears to take you somewhere other than the main top-level page for the expected site, something could have been pre-loaded on that landing page.

There's also a real and increasing risk of cookie 'stealing' which would give 'them' most of what they need to crack any accounts you may have recently visited. You're currently logged into FB on another tab? Inside 2 minutes, they've emailed all your FB contacts with some phishing email and you have to recover your account.

 

I do not open anything i am not 100% sure of, i have been bitten before.
Personally i hate Hotmail but it is handy to have it for times when i do not want to give out my real e-mail.

I have had this week alone 4 or 5 offering me millions of $ if i will just let them use my name and bank plus 2 from the FBI telling me they have intercepted money in my name and so it goes on.