EA server hacked and used for phishing

4.2
Recently a Electronic Arts server was used in attempts to trick users via phishing. The compromised server was used in phishing attempts relating to Apple ID and other information viable in identity theft. The server in question was hosting two websites from EA, they were purportedly running outdated software with widely known security issues.

The phishing site attempts to trick a victim into submitting his Apple ID and password. It then presents a second form which asks the victim to verify his full name, card number, expiration date, verification code, date of birth, phone number, mother's maiden name, plus other details that would be useful to a fraudster. After submitting these details, the victim is redirected to the legitimate Apple ID website.Netcraft


Posted:
Related Forum: PC General Forum

Comments

"EA server hacked and used for phishing" :: Login/Create an Account :: 55 comments

If you would like to post a comment please signin to your account or register for an account.

SIKSPosted:

EA has to improve it's security for it's servers. They really can't afford this to happen again.

AdamuPosted:

pvtpunchu
-Dropz Why would someone hack the EA servers? That is ridiculous.


So they could do this man!


Well they hacked it and got people to enter there credit card information so they could use there card of what ever they wanted to do with it.

TonyTonyChopperPosted:

EA just fix it
Come on guys

pvtpunchuPosted:

Larger named and widely trusted sites are more prime targets for hackas obviously.

pvtpunchuPosted:

-Dropz Why would someone hack the EA servers? That is ridiculous.


So they could do this man!

DRPZPosted:

Why would someone hack the EA servers? That is ridiculous.

blogPosted:

wow and the internet was meant to be getting more secure -_-

MultitaskPosted:

VIT wonder if they know it's a crime and could lead to serious trouble.


Yeah good thing they didn't get caught cause they would suffer sever punishment.

CBR_FIREBLADEPosted:

I'm sorry but companies like this will never message you asking for you card number, sort code mothers maiden name etc, if you every get something like an email asking you for bank details you should always report it. The phishing mails stand out like a sore thumb, people just need to think about what they are doing and why anyone would be asking for bank details which could allow someone access to your account.

TaigaAisakaPosted:

VIT wonder if they know it's a crime and could lead to serious trouble.


I'm sure they know it's a crime, just they probably don't care about it being illegal as they can get what they need from users who they trick.