Industry - Data Breach
Executive Summary
Nintendo confirmed a data breach affecting approximately 160,000 accounts caused by hackers impersonating Nintendo Network IDs from the Wii U/3DS era. The breach exposed users' names, dates of birth, countries, and email addresses, though no credit card information was stolen. In response, Nintendo disabled the ability to log into Nintendo Accounts using Nintendo Network IDs and reset passwords for affected users.
What Happened
Nintendo confirmed a data breach affecting approximately 160,000 user accounts in April 2020. Hackers exploited the Nintendo Network ID system from the Wii U and 3DS era by impersonating legitimate account credentials. In response, Nintendo disabled the ability to log into Nintendo Accounts using Nintendo Network IDs and reset passwords for all affected users.
Who Is Affected
Approximately 160,000 Nintendo account holders were impacted by this breach. Exposed information included users' real names, dates of birth, countries of residence, and email addresses. Credit card information was not accessed during the breach.
Why It Matters
This incident demonstrates how legacy authentication systems from older gaming platforms can create vulnerabilities even after new account systems are implemented. The breach of 160,000 accounts represents a significant exposure of personal information that could be used for targeted phishing attacks or identity theft. Nintendo's decision to permanently disable the legacy login method reflects the security risks of maintaining backward compatibility with outdated authentication systems.
What You Should Do
If you received an email from Nintendo about a password reset, change your password immediately using Nintendo's official channels. Enable two-factor authentication on your Nintendo Account to add an extra layer of security. Monitor your email account for phishing attempts that may reference the exposed personal information, and avoid clicking links in unsolicited messages claiming to be from Nintendo.
Summary generated from verified sources and reviewed before publication. How we summarize.