As Electronic Arts — one of the world’s largest video game publishers — fixes a flaw that left more than 300 million gamers vulnerable to hackers, a cybersecurity researcher is urging platforms to add additional layers of protection for when players log on.
Oded Vanunu, of cybersecurity firm Check Point, told Cheddar Wednesday, “It’s very important to understand that this kind of huge platform that serves millions of users are very perfect platforms for malicious actors’ cybercrime.”
The Israel-based Check Point, along with the cyber-threat detection company CyberInt, published a report laying out flaws that EA has now addressed.
The vulnerabilities were found on EA’s Origin network, a digital platform the company uses to distribute games, including "Madden NFL" and "The Sims," online.
Check Point’s technical analysis explained that the security flaws stemmed from abandoned subdomains and issues with how the gaming company had developed its user log-in system.
If the vulnerabilities had been exploited by hackers, Vanunu says they could have enabled identity theft and account takeover.
“Once you have the accounts, you control the players, you control the games, you control the credit information, you control the friends that are in your community” said Vanunu.
Both Check Point and CyberInt called on platforms to make two-factor authentication available, and for users to take advantage of the feature. “If someone manages to steal your account, they still won’t have access to the second factor. And it’s random,” explained Vanunu.
Vanunu added that EA's Origin isn’t the only gaming platform to experience this kind of vulnerability.
Earlier this year, the researchers found a similar security flaw on the popular online game Fortnite.
And just two months ago, TechCrunch reported that researchers had found a vulnerability on EA’s Origin app that would have allowed hackers to remotely run unapproved code on players’ computers.
Astronauts will have to wait until next year before flying to the moon and another few years before landing on it. NASA on Tuesday announced the latest round of delays in its Artemis moon-landing program.
The Biden administration has enacted a new labor rule that aims to prevent the misclassification of workers as independent contractors. The labor department rule going into effect Tuesday replaces a scrapped Trump-era standard that lowered the bar for classifying employees as contractors
The KC-46 was to be the ideal candidate for a fixed-price development program. Instead, it has cost Boeing billions, and made industry wary of such deals.
Dave Long, CEO and Co-Founder of Orangetheory Fitness joins Cheddar to chat trends in the industry for 2024. He updates us on the company's plans to expand and what the state of the economy has meant for business.
One of the world's largest renewable energy developers will be getting hundreds of wind turbines from General Electric spinoff GE Vernova as part of a record equipment order and long-term service deal.
A moon landing attempt by a private US company appears doomed because of a fuel leak on the newly launched spacecraft. Astrobotic Technology managed to orient the lander toward the sun Monday so its solar panel could capture sunlight and charge its onboard battery.
Treasury Secretary Janet Yellen has announced that 100,000 businesses have signed up for a new database that collects ownership information intended to help unmask shell company owners. Yellen says the database will send the message that “the United States is not a haven for dirty money.”
A new version of the federal student aid application known as the FAFSA is available for the 2024-2025 school year, but only on a limited basis as the U.S. Department of Education works on a redesign meant to make it easier to apply.
