Yesterday Twitch suffered a massive leak in which the source code and user payout information found its way onto 4chan.

At the time, it was unclear how this occurred, but in the hours following the revelation, Twitch confirmed that it had indeed been hacked.

We can confirm a breach has taken place. Our teams are working with urgency to understand the extent of this. We will update the community as soon as additional information is available. Thank you for bearing with us.

— Twitch (@Twitch) October 6, 2021

Now the dust is somewhat settling, the streaming platform has posted an update to its blog as to how the hack happened.

Much like Facebook’s outage from earlier in the week, it looks like a configuration error is to blame, with the servers in particular being cited as the point of vulnerability.

“We have learned that some data was exposed to the internet due to an error in a Twitch server configuration change that was subsequently accessed by a malicious third party. Our teams are working with urgency to investigate the incident,” the company’s blog post noted.

“As the investigation is ongoing, we are still in the process of understanding the impact in detail. We understand that this situation raises concerns, and we want to address some of those here while our investigation continues,” it adds.

For those concerned that their information has been compromised, the company explains that there is no evidence at this stage that login credentials have been stolen. Either way, it is advisable to practice good password hygiene for your Twitch account.

The company ended its post by stating that no credit card information was taken, as full credit card numbers are not stored on Twitch. While we have to take the Amazon-owned platform’s word on that, it may be best to keep an eye out for any suspicious activity on your banking profile.