As Electronic Arts — one of the world’s largest video game publishers — fixes a flaw that left more than 300 million gamers vulnerable to hackers, a cybersecurity researcher is urging platforms to add additional layers of protection for when players log on.
Oded Vanunu, of cybersecurity firm Check Point, told Cheddar Wednesday, “It’s very important to understand that this kind of huge platform that serves millions of users are very perfect platforms for malicious actors’ cybercrime.”
The Israel-based Check Point, along with the cyber-threat detection company CyberInt, published a report laying out flaws that EA has now addressed.
The vulnerabilities were found on EA’s Origin network, a digital platform the company uses to distribute games, including "Madden NFL" and "The Sims," online.
Check Point’s technical analysis explained that the security flaws stemmed from abandoned subdomains and issues with how the gaming company had developed its user log-in system.
If the vulnerabilities had been exploited by hackers, Vanunu says they could have enabled identity theft and account takeover.
“Once you have the accounts, you control the players, you control the games, you control the credit information, you control the friends that are in your community” said Vanunu.
Both Check Point and CyberInt called on platforms to make two-factor authentication available, and for users to take advantage of the feature. “If someone manages to steal your account, they still won’t have access to the second factor. And it’s random,” explained Vanunu.
Vanunu added that EA's Origin isn’t the only gaming platform to experience this kind of vulnerability.
Earlier this year, the researchers found a similar security flaw on the popular online game Fortnite.
And just two months ago, TechCrunch reported that researchers had found a vulnerability on EA’s Origin app that would have allowed hackers to remotely run unapproved code on players’ computers.
Bambu Ventures's Kyle Pretsch dives into Lemonaid’s $10M buyout, down from 23andMe’s $400M price tag, and what’s next after Chrome Co.’s dramatic pivot.
Former Cisco Systems CEO John Chambers learned all about technology’s volatile highs and lows as a veteran of the internet’s early boom days during the late 1990s and the ensuing meltdown that followed the mania. And now he is seeing potential signs of the cycle repeating with another transformative technology in artificial intelligence. Chambers is trying take some of the lessons he learned while riding a wave that turned Cisco into the world's most valuable company in 2000 before a crash hammered its stock price and apply them as an investor in AI startups. He recently discussed AI's promise and perils during an interview with The Associated Press.
Grove Collaborative’s CEO shares how the company is reinventing everyday goods with sustainability at the core and working toward a plastic-free future.
Atlanta Mayor Andre Dickens shares plans for affordable housing, community-led growth, and why private and public grocery stores could be key to food equity.
Tesla reported a surprise increase in sales in the third quarter as the electric car maker likely benefited from a rush by consumers to take advantage of a $7,500 credit before it expired on Sept. 30. The company reported Thursday that sales in the three months through September rose 7% compared to the same period a year ago. The gain follows two quarters of steep declines as people turned off by CEO Elon Musk’s foray into right-wing politics avoided buying his company’s cars and even protested at some dealerships. Sales rose to 497,099 vehicles, compared with 462,890 in the same period last year.
Tom’s Guide Editor-in-Chief Mark Spoonauer breaks down Apple & Amazon's latest product drops—what's hot, what's hype, and what really matters for users.
