Latest in Gaming

Image credit: sezer66 via Getty Images

EA patched Origin security flaws that put millions of users at risk

Check Point Research and CyberInt warned EA of the vulnerabilities in its Origin platform.
99 Shares
Share
Tweet
Share
Save

Sponsored Links

sezer66 via Getty Images

EA patched flaws in its Origin platform that could have enabled hackers to hijack and exploit millions of users' accounts. The vulnerabilities were spotted by Check Point Research and CyberInt, and once exploited, they could have allowed player account takeover and identity theft. The cybersecurity companies alerted EA, which was quick to take action.

The vulnerabilities took advantage of abandoned subdomains, EA Games' use of authentication tokens and single sign-on and TRUST mechanisms built into the user login process. Had an attack been carried out, it could have been devastating, given that EA is the world's second largest gaming company and millions of user accounts would have been at risk.

The vulnerabilities are a reminder of how susceptible online and cloud platforms are to breaches. "These platforms are being increasingly targeted by hackers because of [the] huge amounts of sensitive customer data they hold," said Check Point's Oded Vanunu. Check Point and CyberInt advise gamers to enable two-factor authentication and only use official websites to download or purchase games. The companies also caution that parents should warn children about the threat of online fraud.

All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.
Comment
Comments
Share
99 Shares
Share
Tweet
Share
Save

Popular on Engadget

Engadget’s guide to Home Entertainment

Engadget’s guide to Home Entertainment

View
SpaceX is requesting permission to launch 30,000 more Starlink satellites

SpaceX is requesting permission to launch 30,000 more Starlink satellites

View
'League of Legends: Wild Rift' will land on mobile and consoles in 2020

'League of Legends: Wild Rift' will land on mobile and consoles in 2020

View
Riot celebrates ten years of 'LoL' by finally announcing new games

Riot celebrates ten years of 'LoL' by finally announcing new games

View
Watch Tesla's crash test lab wreck Model 3s to make them safer

Watch Tesla's crash test lab wreck Model 3s to make them safer

View

From around the web

Page 1Page 1ear iconeye iconFill 23text filevr