EA hacked and stolen data and source code sold online

Earlier this year, CD Projekt Red was the victim of a major data breach, resulting in the sale of source code and the theft of other information. After the release of Cyberpunk 2077, some in the gaming community joked about this, but many people found another dangerous aspect of this type of hacking: employee personal information such as home address. I couldn’t understand the sale. Polish studios are far from the only studios to have been hit by this type of breach and are now reporting data stolen by another major company.

With a broken report from Motherboard, EA is the latest hacked company. Of the stolen data, you’ll find the FIFA 21 source code and the Frostbite engine as well as many valuable developer tools. According to the first report, hackers are trying to sell the source code for a private price, unlike what happened to CD Projetk Red. The total amount of data is reportedly up to 780GB.

EA is investigating the case.A spokeswoman said BBC, “We are investigating recent intrusions into the network where a limited amount of game source code and related tools have been stolen.” Also, player data is not accessed and player privacy is currently being used. He added that there is no reason to think that is at risk. EA also confirmed that it had contacted the appropriate authorities.

“This incident demonstrates the fact that even tech organizations are vulnerable to potential data breaches,” said a known security advocate. Eric Kron To tell Game Informer. “In this case, the source code for some products that are very valuable and expensive to create intellectual property was stolen by cybercriminals and offered on the open market. Interestingly, at this time, They didn’t seem to demand a ransom. If this data contains a large amount of proprietary information, it is valuable to competitors or could be used in future attacks on EA. May contain. Products or customers with EA games installed. “

“Unfortunately, the success of these attacks is often a by-product of human error. Reusing passwords and obtaining credentials are common ways for attackers to access systems and networks. For this reason, it is wise for organizations to educate their employees on a regular basis: about potential attack vectors and the importance of being alert to attacks that could target them. Data loss prevention controls help identify when sensitive data can move from a victim’s network and can play an important role in an organization’s hierarchical security strategy. ”