Monday, May 16, 2022
  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables
No Result
View All Result
Lowyat.NET
No Result
View All Result
Home Security

EA Ignored Vulnerabilities For Months Before Getting Hacked

And ultimately compromised by a US$10 cookie.

by Ian Chee
June 30, 2021
Electronic Arts
36
SHARES
720
VIEWS
Share on FacebookShare on Twitter

Earlier this month, reports about major game publisher Electronic Arts getting hacked emerged. While the company appeared to have been taken by surprise, more recent reports suggest otherwise. The company has been warned of its domain vulnerabilities, and those warnings were ignored for months.

ZDNet reports that representatives from Israeli cybersecurity company Cyberpion approached EA late last year regarding this. The company had warned of at least six vulnerabilities including login pages that connected via HTTP rather than the safer HTTPS protocol. Other issues include over 500 DNS misconfigurations across the publisher’s domains. The company even went as far as to simulate an attack based on the disclosed vulnerabilities in December 2020.

ADVERTISEMENT

The reports states that EA acknowledged the vulnerabilities disclosed by Cyberpion. The publisher also said that it will contact the cybersecurity firm if it had any more questions, but that never happened. Which may have ultimately led to the hack earlier this month. Vice reports that the hack was initiated as simply as buying stolen cookies – the very same one that websites these days tell you they use – for US$10 (~RM42).

Battlefield 2042 trailer

EA has responded to the statements by Cyberpion stating that the latter approached them as a potential vendor. The publisher explained that the cybersecurity firm did not provide them with a full list of the vulnerabilities, but instead asked for a sales meeting to “show off their techniques”. Beyond that, EA also said that Cyberpion did not follow its product security vulnerability disclosure process. Which, maybe with hindsight, sounds like a strange deflection of responsibility given the events that transpired.

(Source: ZDNet, Vice, EA)

Tags: CyberpionEAElectronic ArtsHacksecurity
Updated 4:27 pm, Wed, 30 June 21
Back to top
Share14Tweet9SendShare

ADVERTISEMENT

RELATED ARTICLES

Google Will Make It Easier To Remove Personal Info From Search Results
Security

Google Will Make It Easier To Remove Personal Info From Search Results

by Ikmal Rozlan
May 12, 2022

It is borderline impossible to stay completely invisible on the Internet, so there are times when your personal and sensitive...

Read more
google chrome password
Security

Google Assistant Can Now Change Your Password For You

by Ikmal Rozlan
May 9, 2022

Google is reportedly rolling out the password changer feature for Google Assistant. First announced at Google I/O last year, it...

Read more
Microsoft edge browser
Software

Microsoft Edge To Offer A Free Built-In VPN Soon

by Ikmal Rozlan
May 1, 2022

In a rather interesting move by Microsoft, the company is currently working to integrate a free VPN straight into its...

Read more
phishing scam
Security

Banking Phishing Scam Found Impersonating Several Malaysian Apps

by Ikmal Rozlan
April 8, 2022

Slovakian cyber security firm ESET Research has published a report detailing how malicious Android apps have been targeting customers of...

Read more
Load More
No Result
View All Result

TRENDING TODAY

  1. 1
    Fintech

    Next Batch Of Enhanced Touch N Go Card Will Arrive In June

  2. 2
    Smartwatches

    Huawei Watch D Hands On: On The Go Blood Pressure Monitoring

  3. 3
    News

    Selangor Residents To Get Free Health Screening Via Selangkah

  4. 4
    Mobile Phones

    Huawei Mate Xs 2 Foldable Phone To Launch In Malaysia On 19 May

  5. 5
    Social Media

    Elon Musk Gets Told Off By Twitter Legal Team For Breaking NDA

Lowyat.NET

Consumer Tech News & Reviews Malaysia

NETWORK

  • Hype
  • Murai
  • Lipstiq
  • Diva
  • Varnam
  • Moviedash
  • Autofreaks

ABOUT

  • Advertise
  • Careers
  • Privacy Statement
  • Contact Us
  • Editorial Policy
  • Terms & Conditions

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

No Result
View All Result
  • News
    • Lifestyle
    • Computing
    • Hardware
    • Internet
    • Rumours & Leaks
    • Software
  • Forums
    • Kopitiam
    • Tradezone
    • Property Talk
    • Finance & Business
    • Fast and Furious
  • Gaming
    • PC Gaming
    • Console
    • Esports
  • Mobile
    • Apps
    • OS
    • Tablets
    • Phones
    • Telco
      • Celcom
      • DiGi
      • Maxis
      • Tune Talk
      • U Mobile
      • Buzzme
  • Pricelists
    • Hardware
      • Compu-zone
      • Viewnet
      • Thundermatch
      • Sri Computers
    • Notebooks
      • Compu-zone
    • Smartphones
      • Thundermatch
  • More
    • Automotive Tech
    • Drone
    • Enterprise
    • Entertainment
    • Fashion
    • E-Hailing
    • Wearables

©2022 LOWYAT MEDIA, LLC. ALL RIGHTS RESERVED.

We use cookies to improve your experience. Learn More.