announced that it was hacked, and some user account information including usernames, passwords (even encrypted ones), and email addresses were compromised.
“We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems,” wrote the company in a blog post. “We instantly took steps to close off this access, to begin a thorough investigation with relevant authorities, internal and external security
experts, and to start restoring the integrity of any compromised systems.”
The company’s Uplay service was not hacked; rather, the attack targeted some if its online systems. Ubisoft says that despite the information breach, the hacker
(s) didn’t get any user payment information such as credit card numbers, nor did they gain access to other personal data such as phone numbers or physical home addresses.
The hack apparently originated via stolen credentials, and the company is looking into ways to “expand and strengthen” its security.
If there’s an upside, no games appear to have been affected, and the attack seems to be an isolated incident. However, Ubi.com is currently “under maintenance”, so apparently there’s still something going on. None of this bodes well for the company’s efforts to improve its relationship to gamers.
In the meantime, Ubisoft users should update their passwords here
Update - 7/3:
There's a thread over on Ubisoft's Forum that has a lot of information on the hack
and resolution of it, if you're having related issues resetting your password. Users are also reporting trouble deleting accounts.