According to a CNET report, Electronic Arts recently had to patch a vulnerability in its digital distribution client Origin. Security researchers from Check Point and CyberInt found that the vulnerability could have exposed millions of users to a security flaw that would have allowed hackers to hijack accounts without login or password theft. Instead, the exploit would steal a single sign-on authorization token, giving the hackers complete control. Oded Vanunu, head of products vulnerability research for Check Point, said in a statement: “EA’s Origin platform is hugely popular, and if left unpatched, these flaws would have enabled hackers to hijack and exploit millions of users’ accounts.”
As an alternative authentication method, access tokens are similar to passwords. They work as codes that services generate to keep you logged in. Last year, there was a similar vulnerability on Facebook, which also used access tokens as the way through to user accounts. The security researchers found the vulnerability by taking control of a subdomain owned by EA, specifically the site “eaplayinvite.ea.com,” which was inactive and hosted on Microsoft’s Azure cloud web service. The researchers requested to take over the inactive domain from Azure and managed to turn it into a phishing trap, enabling them to send malicious links to Origin users. Since the main EA site hosted it, users were more likely to trust the link.
Origin, Steam, GOG Galaxy, and vulnerabilities
This kind of security issue tends to go with the territory. Earlier this year, GOG Galaxy also had a patch for security issues. Last year, we reported on a Steam chat spying exploit. Gaming clients full of features are a hotbed for security issues. As such, it’s always smart to keep your client updated with the latest patch. Origin is safe to use now, as long as you have the latest patch.
CyberInt and Check Point notified EA in February, and Origin received a patch to fix the vulnerability within three weeks. Adrian Stone, EA’s director of game and platform security, had a statement provided by the security researchers. “Protecting our players is our priority. As a result of the report from CyberInt and Check Point, we engaged our product security response process to remediate the reported issues.”
Are you using the latest version of Origin? Have you ever had any issues with phishing? Drop your comments below! We’d like to read about your experiences.