Skip to main content

Report: EA Games server compromised, hackers stealing Apple ID, credit card & Origin account info

Update: EA said in a statement that it’s investigating the reports (via TheVerge):

“Privacy and security are of the utmost importance to us, and we are currently investigating this report… We’ve taken immediate steps to disable any attempts to misuse EA domains…”

According to a report from internet security and research company Netcraft, hackers have compromised an EA Games server and are currently using it to host a phishing site that steals Apple IDs and more from unsuspecting users. The company published its report today and says it contacted EA yesterday to report the discovery, but as of publishing the compromised server and the phishing site stealing Apple IDs were still online.

Netcraft claims the phishing site being hosted on EA’s servers not only asks for an Apple ID and password but also the user’s “full name, card number, expiration date, verification code, date of birth, phone number, mother’s maiden name, plus other details that would be useful to a fraudster.” Netcraft also reports that EA Games is being targeted in other phishing attacks that are attempting to steal user data from its Origin game distribution service:

After submitting these details, the victim is redirected to the legitimate Apple ID website at https://appleid.apple.com/cgi-bin/WebObjects/MyAppleId.woa/… As well as hosting phishing sites, EA Games is also the target of phishing attacks which try to steal credentials from users of its Origindigital distribution platform. For example, the following site — which has been online for more than a week — is attempting to steal email addresses, passwords and security question answers.

While Netcraft is unsure of how the server was compromised, it speculates that an outdated version of WebCalendar 1.2.0 software (that has been patched since) running on the websites stored on the compromised servers could have provided a vulnerability for the attackers.

(via CNET)

FTC: We use income earning auto affiliate links. More.

You’re reading 9to5Mac — experts who break news about Apple and its surrounding ecosystem, day after day. Be sure to check out our homepage for all the latest news, and follow 9to5Mac on Twitter, Facebook, and LinkedIn to stay in the loop. Don’t know where to start? Check out our exclusive stories, reviews, how-tos, and subscribe to our YouTube channel

Comments

  1. Does anyone know the actual URL of the fake Apple site on EA or have they taken it down already?

  2. freshpressedguest - 10 years ago

    So what would be the appropriate measures to take? How can we tell if this has happened to us?

    • crisrod63 - 10 years ago

      Did you go to EA and enter your info, including Apple ID, password, credit card information? If you haven’t, it hasn’t happen to you yet :-)

      • freshpressedguest - 10 years ago

        Ha! No, but I am an Origins member and I was just curious if there was anything we should look out for. I should have been more clear about my concerns… Obviously I’m not going to enter my AppleID anywhere but with Apple interactions but I just wondered about if info that could compromise me was somehow stolen from the EA.

    • Cary Groneveldt - 10 years ago

      Simple: if your CC limit is suddenly maxed, they gotcha.

    • Cary Groneveldt - 10 years ago

      Appropriate measures? lol
      THERE ARE NONE.
      Privacy vulnerability is the net’s dirty little secret.
      The head of the FBI himself doesn’t even go online for fear of being hacked.
      Ya pays yer money & ya takes yer chances ….

  3. PooPsTech (@PoopsTech) - 10 years ago

    What has Apple don e ab out this situation? Are they helping EA?

  4. DaRk_ViVi (@DaRk_ViVi) - 10 years ago

    It could just be a virus that overwrites OS DNS to point requests to a fake one, or edit the hosts file to do that for ea.com.

  5. Katrina Gagen - 9 years ago

    Looking out for money being taken from your bank account this has happened to me just yesterday the bank are investigating for 49.49 usd that was taken from myaccount to pay for a game i would never even play. Problem is i also found out that someone has added their xbox 1 to myaccount and i dont even have an x box 1 not unless my lil uns that range between 4 and 9 have brought one and hidden it and have also got intellogent enough to use my account. I dont think so. It is being investigated but now i have to change my card completely. I have been with origin since 2012 and not once until yesterday have i had any issues as soon as my money has been refunded i will be taking my details of their site this is so inconvenient for me especially with onlya few weeks until christmas.

Author

Avatar for Jordan Kahn Jordan Kahn

Jordan writes about all things Apple as Senior Editor of 9to5Mac, & contributes to 9to5Google, 9to5Toys, & Electrek.co. He also co-authors 9to5Mac’s Logic Pros series.