Update: EA said in a statement that it’s investigating the reports (via TheVerge):

“Privacy and security are of the utmost importance to us, and we are currently investigating this report… We’ve taken immediate steps to disable any attempts to misuse EA domains…”

According to a report from internet security and research company Netcraft, hackers have compromised an EA Games server and are currently using it to host a phishing site that steals Apple IDs and more from unsuspecting users. The company published its report today and says it contacted EA yesterday to report the discovery, but as of publishing the compromised server and the phishing site stealing Apple IDs were still online.

Netcraft claims the phishing site being hosted on EA’s servers not only asks for an Apple ID and password but also the user’s “full name, card number, expiration date, verification code, date of birth, phone number, mother’s maiden name, plus other details that would be useful to a fraudster.” Netcraft also reports that EA Games is being targeted in other phishing attacks that are attempting to steal user data from its Origin game distribution service:

After submitting these details, the victim is redirected to the legitimate Apple ID website at https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/… As well as hosting phishing sites, EA Games is also the target of phishing attacks which try to steal credentials from users of its Origindigital distribution platform. For example, the following site — which has been online for more than a week — is attempting to steal email addresses, passwords and security question answers.

While Netcraft is unsure of how the server was compromised, it speculates that an outdated version of WebCalendar 1.2.0 software (that has been patched since) running on the websites stored on the compromised servers could have provided a vulnerability for the attackers.

(via CNET)

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

11 Responses to “Report: EA Games server compromised, hackers stealing Apple ID, credit card & Origin account info”

  1. Does anyone know the actual URL of the fake Apple site on EA or have they taken it down already?

    Like

  2. So what would be the appropriate measures to take? How can we tell if this has happened to us?

    Like

    • crisrod63 says:

      Did you go to EA and enter your info, including Apple ID, password, credit card information? If you haven’t, it hasn’t happen to you yet :-)

      Like

      • Ha! No, but I am an Origins member and I was just curious if there was anything we should look out for. I should have been more clear about my concerns… Obviously I’m not going to enter my AppleID anywhere but with Apple interactions but I just wondered about if info that could compromise me was somehow stolen from the EA.

        Like

    • Simple: if your CC limit is suddenly maxed, they gotcha.

      Like

    • Appropriate measures? lol
      THERE ARE NONE.
      Privacy vulnerability is the net’s dirty little secret.
      The head of the FBI himself doesn’t even go online for fear of being hacked.
      Ya pays yer money & ya takes yer chances ….

      Like

  3. What has Apple don e ab out this situation? Are they helping EA?

    Like

  4. It could just be a virus that overwrites OS DNS to point requests to a fake one, or edit the hosts file to do that for ea.com.

    Like

  5. Looking out for money being taken from your bank account this has happened to me just yesterday the bank are investigating for 49.49 usd that was taken from myaccount to pay for a game i would never even play. Problem is i also found out that someone has added their xbox 1 to myaccount and i dont even have an x box 1 not unless my lil uns that range between 4 and 9 have brought one and hidden it and have also got intellogent enough to use my account. I dont think so. It is being investigated but now i have to change my card completely. I have been with origin since 2012 and not once until yesterday have i had any issues as soon as my money has been refunded i will be taking my details of their site this is so inconvenient for me especially with onlya few weeks until christmas.

    Like