Please read our List of Android, iOS, and Windows apps affected by the Heartbleed OpenSSL bug. It will explain more about the Heartbleed bug. We also have a robust list of Websites Affected by Heartbleed and a guide to protecting your smartphone or tablet from Heartbleed.
Heartbleed is bad news, folks. The short version is: it’s the worst, most widespread security flaw that the Internet has ever seen. Many of the online services that we use every day rely on OpenSSL, an open-source encryption protocol that scrambles data as it’s being transmitted so that hackers can’t obtain the raw information. The actual mechanics of Heartbleed get a little technical (read about it here), but the basic idea here is that just about every online service you interact with was or is still affected.
Now that the flaw’s been identified, steps are being taken by online service providers to plug the hole. Still, your sensitive data – including passwords – may have been compromised. Heartbleed was an undetected security issue for more than two years. Before you start changing your passwords, you’re going to want to know if the online service in question was affected and, more importantly, if it’s been fixed yet. You’re still vulnerable if you change your password before the fix is implemented.
We’ve compiled a list here of notable online gaming services that have and haven’t been affected. Think of it as your guide to fixing any damage Heartbleed has caused in the realm of gaming. This is a fluid situation, but we’ll keep this list as updated as we can. When an official statement from potentially affected companies isn’t available, we’ve been using this very helpful URL checker. If there are any other sites you’d like us to check and reach out for official comment on, let us know at the bottom of this post.
|Apple Game Center||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|ArenaNet||FIXED/UNAFFECTED||“All our first party HTTPs sites … [don’t] suffer from Heartbleed.” –Reddit||CHANGE PASSWORD NOW|
|Battlelog (Battlefield)||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Battle.net||UNAFFECTED||“Battle.net’s encryption was not affected…” –Blizzard Entertainment||SAFE|
|Best Buy||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|CallofDuty.com||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Desura||CAN’T CHECK||Comment request pending.||UNKNOWN|
|EVE Online||UNAFFECTED||Service unaffected, though store.eve.com users should change passwords.||SAFE|
|GameStop||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|GOG.com||FIXED||“We updated our OpenSSL so we’re not vulnerable…” –GOG.com||CHANGE PASSWORD NOW|
|Humble Bundle||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|League of Legends||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Minecraft.net||FIXED||Full explanation here.||CHANGE PASSWORD NOW|
|MLG.tv||UNAFFECTED||Services were unaffected, via email from an MLG spokesperson.||SAFE|
|Nintendo||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Origin||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|PlayStation Store||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Rockstar Games Social Club||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Sony Online Entertainment||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Steam||FIXED||“Valve says vulnerabilities … have been resolved.” –@SteamDB||CHANGE PASSWORD NOW|
|Twitch||CAN’T CHECK||Comment request pending.||UNKNOWN|
|Wargaming||FIXED/UNAFFECTED||Comment request pending.||CHANGE PASSWORD NOW|
|Xbox Live||UNAFFECTED||Microsoft services were unaffected, via email from a MS spokesperson.||SAFE|