Jump to content

EA's Origin client vulnerability left millions of accounts at risk


Recommended Posts

APEXsad.png.7da45e0e64f85f6cdfdfa74ffdf4f9da.png

Check Point Research and CyberInt, two groups known for cyber threat intelligence and analysis, recently collaborated in an investigation on Origin, the PC gaming client owned by Electronic Arts. They found “a chain of vulnerabilities that, once exploited, could have led to the takeover of millions of player accounts”. The duo estimate that over 300 million accounts are at risk.

These vulnerabilities “took advantage of EA Games’ use of authentication tokens in conjunction with the oAuth Single Sign-On (SSO) and TRUST mechanism that is built into EA Game’s user login process”.

Check Point Research also produced a video and published it on Youtube, breaking down the specifics of the process.

Their full report can be read here, providing a much more in-depth explanation of their findings.

EA has currently provided no public comment on the matter.

 

Link to post
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
  • Found PCGamingWiki useful? Please consider making a Donation or visiting our Patreon.
  • Who's Online   2 Members, 0 Anonymous, 466 Guests (See full list)

  • Recently Browsing   0 members

    No registered users viewing this page.

  • Forum Statistics

    1,488
    Total Topics
    8,082
    Total Posts
×
×
  • Create New...