We value your privacy

We use cookies to enhance your browsing experience, serve personalized ads or content, and analyze our traffic. By clicking "Accept All", you consent to our use of cookies.

Customize Consent Preferences

We use cookies to help you navigate efficiently and perform certain functions. You will find detailed information about all cookies under each consent category below.

The cookies that are categorized as "Necessary" are stored on your browser as they are essential for enabling the basic functionalities of the site. ... 

Always Active

Necessary cookies are required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data.

No cookies to display.

Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features.

No cookies to display.

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics such as the number of visitors, bounce rate, traffic source, etc.

No cookies to display.

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

No cookies to display.

Advertisement cookies are used to provide visitors with customized advertisements based on the pages you visited previously and to analyze the effectiveness of the ad campaigns.

No cookies to display.

avatar
admin
 Pinned July 6, 2019

<> Embed

@  Email

Report

Repin Zoom
Uploaded by user
EA patched Origin security flaws that put millions of users at risk
<> Embed @  Email Report

EA patched Origin security flaws that put millions of users at risk

Christine Fisher, @cfisherwrites

June 26, 2019
 
EA patched Origin security flaws that put millions of users at risk | DeviceDaily.com
 

EA patched flaws in its Origin platform that could have enabled hackers to hijack and exploit millions of users’ accounts. The vulnerabilities were spotted by Check Point Research and CyberInt, and once exploited, they could have allowed player account takeover and identity theft. The cybersecurity companies alerted EA, which was quick to take action.

The vulnerabilities took advantage of abandoned subdomains, EA Games’ use of authentication tokens and single sign-on and TRUST mechanisms built into the user login process. Had an attack been carried out, it could have been devastating, given that EA is the world’s second largest gaming company and millions of user accounts would have been at risk.

The vulnerabilities are a reminder of how susceptible online and cloud platforms are to breaches. “These platforms are being increasingly targeted by hackers because of [the] huge amounts of sensitive customer data they hold,” said Check Point’s Oded Vanunu. Check Point and CyberInt advise gamers to enable two-factor authentication and only use official websites to download or purchase games. The companies also caution that parents should warn children about the threat of online fraud.

Engadget RSS Feed

(32)