SQL injection within the Oculus Developer Center

1. As an ongoing commitment to security for our internal systems, we regularly run security audits to identify vulnerabilities. Over the weekend we discovered a vulnerability that potentially allowed for SQL injection within the Oculus Developer Center.
2.  
3. When we discovered the vulnerability, we took down our systems as a precautionary effort and applied the required fixes. As an added security measure, we’re requiring all Developer Center users to change their passwords upon next login.
4.  
5. Please know that no credit card or address information is stored in the Developer Center database, and we don’t have any reason to believe that any personal or confidential information was taken before we discovered the issue.
6.  
7. Sorry for the inconvenience and if you have any questions, please email [email protected].
8.  
9.  
10. Sincerely,
11.  
12. The Oculus Team
13. www.oculusvr.com
14. [email protected]