Nintendo on Tuesday updated a notice about suffering a major privacy breach, noting that its investigation revealed that 140,000 additional accounts may have been "accessed maliciously" on top of the 160,000 it acknowledged back in April. The breach began in early April, and was linked to its Nintendo Network ID login system, the company said on its Japanese support site.
The company warned that impacted players' nicknames, dates of birth, regions and email addresses may have been viewed by a third party, and that unauthorized digital purchases could've been made in Nintendo's eShop. However, it noted that no credit card information was stolen.
Prior to Nintendo's April statement, players were complaining on social media that hackers were spending hundreds of dollars on Fortnite currency and other digital goods, as reported by our sister site ZDNet.
Nintendo users took to social media to complain that hackers were accessing their Nintendo accounts and then abusing attached payment card info to buy Fortnite currency and other Nintendo games.
The company disabled the ability to log in using your Nintendo Network ID, and the passwords of impacted accounts will be reset. People whose accounts were breached will be notified via email, and Nintendo recommends you set up two-step verification for your account if you haven't already.
"We sincerely apologize for any inconvenience caused and concern to our customers and related parties," Nintendo said on its Japanese site. "In the future, we will make further efforts to strengthen security and ensure safety so that similar events do not occur."
The company didn't immediately respond to a request for further comment.