Jump to content
AnotherGills

EA's Origin client vulnerability left millions of accounts at risk

Recommended Posts

APEXsad.png.7da45e0e64f85f6cdfdfa74ffdf4f9da.png

Check Point Research and CyberInt, two groups known for cyber threat intelligence and analysis, recently collaborated in an investigation on Origin, the PC gaming client owned by Electronic Arts. They found “a chain of vulnerabilities that, once exploited, could have led to the takeover of millions of player accounts”. The duo estimate that over 300 million accounts are at risk.

These vulnerabilities “took advantage of EA Games’ use of authentication tokens in conjunction with the oAuth Single Sign-On (SSO) and TRUST mechanism that is built into EA Game’s user login process”.

Check Point Research also produced a video and published it on Youtube, breaking down the specifics of the process.

Their full report can be read here, providing a much more in-depth explanation of their findings.

EA has currently provided no public comment on the matter.

 

Share this post


Link to post
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now

×
×
  • Create New...