DDI Customers: Check Your Credit Card

If you’re a subscriber to Dungeons & Dragons Insider, you may want to check your credit card statement from the past few months for fraudulent charges. According to the Minneapolis Star Tribune, the e-commerce servicer Digital River (which handles the payment processing for DDI) was recently hacked, leading to possible leak of the personal information of almost 200,00 customers. The Star Tribune states:

The Eden Prairie company obtained a secret court order last month to block Eric Porat of Brooklyn from selling, destroying, altering or distributing purloined data on nearly 200,000 individuals. Digital River suspects that the information was stolen by hackers in New Delhi, India, possibly with help from a contractor working for Digital River.

According to a poster on RPG.net, the customer service line for Digital River assures the breach did not involve DDI subscribers. However, it is still a good idea to double-check your statements just in case. Exploring Digital River’s website seemingly yields no information about the breach at all, so the extent of the damage might not yet be known, or the company may be trying to keep a tight lid on it.

Digital River’s security guarantee states:

  • You pay nothing if any unauthorized charges are made to your card as a result of shopping with us.
  • Every software download is 100% virus free.
  • All information that you provide while shopping is encrypted so no one can access or use personal information in an unauthorized manner.

And if you believe you have been the victim of unauthorized charges, you can try and access your account through Digital River’s order support page or contact customer service.

About Dave

Dave "The Game" Chalker is the Editor-in-Chief and Co-Founder of Critical Hits. Since 2005, he has been bringing readers game news and advice, as well as editing nearly everything published here. He is the designer of the Origins Award-winning Get Bit!, a freelance designer and developer, son of a science fiction author, and a Master of Arts. He lives in MD with e, their three dogs, and two cats.


  1. It was only a matter of time before something like this directly affected the gaming community. I’m surprised it hasn’t happened en-masse to one of the major MMOs yet, frankly.

  2. Thanks for the heads up. I seem to recall that a couple of years ago there was debate about a consumer protection law that required vendors to notify customers whose data had been stolen – I wonder what lobbyists killed it….

  3. I expect somewhere on teh interwebs a forum troll is blaming WotC — “those money-grubbing whoooores” — for this.

  4. Leor Blumenthal says:

    Thanks for publicizing this important bit of info. Unfotunately, the dangers of a disgruntled employee swiping info provided confidentially by consumers applies to many aspects of our daily lives, where for the sake of convenience we give a website credit card info to be charged on a recurring basis.