Internet security group Netcraft recently reported that a web server belonging to Electronics Arts has been hacked to run a phishing scam targeting Apple users. The website, which has now been shut down, redirected users to a login page requesting their Apple ID and passwords.
The server in question was not one of those used for hosting games, rather it involved two websites used by the ea.com domain and is used to host a calendar. It is likely that vulnerabilities in the calendar software allowed the hacker to compromise the system and host his own phishing content.
This is not the first time in 2014 that EA has suffered in the hands of cyber attacks. The Origin service was taken down for several hours after a hacker group managed to disable the login system back in January. While that attack only disabled Origin for three hours, it was more than enough to shake confidence in the security of the service.
[source: BBC]
FB Comments