- Chess.com disseminated the June 2025 cyber attack, which presented data from 4,541 users
- Computer pirates exploited a vulnerable third -party file transfer tool; The central systems were not violated
- No session or payment data were stolen; Victims obtain free identity theft and credit monitoring
Chess.com, the largest and most popular chess game platform, has confirmed the suffering of a cyber attack in which he lost confidential information about a small fragment of its user base.
In a notification of data violation presented to the office of the MAINE attorney general, the company said that the incident occurred on June 5 and was seen approximately two weeks later, on June 19.
In total, 4,541 people were exhibited, of more than 200 million registered users of Chess.com.
Intact infrastructure
The computer pirates, which were not appointed in the report, managed to steal the data through a file transfer tool administered by third parties used.
The company did not mean what it was, but Recorded future news He found two popular brands of file transfer tools: Wing FTP and Crushftp, both informing “severe vulnerabilities” in July 2025, which urged customers to patch.
The company also emphasized that its code and infrastructure remained intact, and that so far there was no evidence that the stolen files were abused in nature.
It is not known what kind of information they stole, apart from the names of the people, since the bank information and the confirmed login details of the people only confirmed.
Until now, no one attributed the responsibility of the attack.
Chess.com did what most companies do after a cyber attack: he hired a third -party cybersecurity team, launched an investigation, notified the relevant authorities and alerted the affected people. It also offers free identity and credit monitoring for victims.
The platform was founded in 2007 and since then it has become the number one place for chess lovers. Beyond the game, chess has a great social component: players can join clubs, chat and follow streamers or grandparents. The platform has applications for web, iOS and Android, and offers a mixture of casual games, training tools and professional transmissions.
Through Bleepingcomputer
