EA hacked and source code stolen

Hackers have stolen valuable information from major game publisher Electronic Arts (EA), the company said.

The attackers claimed to have downloaded source code for games such as FIFA 21 and for the proprietary Frostbite game engine used as the base for many other high-profile games.

News of the hack was first reported by news site Vice, which said some 780GB of data was stolen.

EA said no player data had been stolen in the breach.

The firm is one of the largest games companies in the world. It counts major series such as Battlefield, Star Wars: Jedi Fallen Order, The Sims, and Titanfall among the titles it develops or publishes - as well as a vast array of annual sports games.

https://www.bbc.com/news/technology-57431987

https://www.vice.com/en/article/wx5xpx/hackers-steal-data-electronic-arts-ea-fifa-source-code

#hacker #hacked #ea #games
📡@cRyPtHoN_INFOSEC_FR
📡@cRyPtHoN_INFOSEC_EN
📡@cRyPtHoN_INFOSEC_DE
📡@BlackBox_Archiv

Baby Clothes Giant Carter’s Leaks 410K Customer Records
https://threatpost.com/baby-clothes-carters-leaks-customer-records/166866/

McDonald’s Suffers Data Breach (only South Korea and Taiwan affected apparently)

https://www.infosecurity-magazine.com:443/news/mcdonalds-suffers-data-breach/

DarkTracer : DarkWeb Criminal Intelligence (@darktracer_int) Tweeted:
[ALERT] Prometheus ransomware gang leaked some data from "Aero-Space Computer Supplies" to their DarkWeb leak blog. https://t.co/wXoozu72Zy https://twitter.com/darktracer_int/status/1404280138590679043?s=20

Volkswagen, Audi disclose data breach impacting over 3.3 million customers, interested buyers
An unsecured treasure trove of data used for sales was exposed online.

https://www.zdnet.com/article/volkswagen-audi-disclose-data-breach-impacting-over-3-3-million-customers-interested-buyers/

Fotolog - 16,717,854 breached accounts
https://haveibeenpwned.com/PwnedWebsites#Fotolog

In December 2018, the photo sharing social network Fotolog suffered a data breach (https://www.theregister.com/2019/02/11/620_million_hacked_accounts_dark_web/) that exposed 16.7 million unique email addresses. The data also included usernames and unsalted SHA-256 password hashes. The site was dissolved the following year and repurposed as a news website based in Brcko, Bosnia and Herzegovina.

Amazon Web Services Misconfiguration Exposes Half a Million Cosmetics Customers
https://www.infosecurity-magazine.com:443/news/aws-misconfiguration-exposes/

University of California - 547,422 breached accounts
https://haveibeenpwned.com/PwnedWebsites#UC

In December 2020, the University of California, Berkeley suffered a data breach due to vulnerability in in a third-party provider, Accellion (https://portswigger.net/daily-swig/uc-berkeley-confirms-data-breach-becomes-latest-victim-of-accellion-cyber-attack). The breach exposed extensive personal data on both students and staff including 547 thousand unique email addresses, names, dates of birth, genders, social security numbers, ethnicities and other academic related data attributes. Further analysis is available in Exploring the Impact of the UC Data Breach (https://cgorlla.github.io/project/uc ).

The Ragnar Locker ransomware gang have published download links for more than 700GB of archived data stolen from Taiwanese memory and storage chip maker ADATA.

https://www.bleepingcomputer.com/news/security/adata-suffers-700-gb-data-leak-in-ragnar-locker-ransomware-attack/

Embryology Data Breach Follows Fertility Clinic Ransomware Hit
https://threatpost.com/embryology-data-breach-fertility-clinic-ransomware/167087/

Ohio Medicaid Provider Suffers Data Breach
https://www.infosecurity-magazine.com:443/news/ohio-medicaid-provider-suffers/

Holy cow, that's a lot of data:

https://twitter.com/iblametom/status/1407287798462300162

Data breach at US eye clinic impacting 500,000 patients potentially exposed private medical information

https://portswigger.net/daily-swig/data-breach-at-us-eye-clinic-impacting-500-000-patients-potentially-exposed-private-medical-information

yotepresto.com - 1,444,629 breached accounts
https://haveibeenpwned.com/PwnedWebsites#YoteprestoCom

In June 2020, the Mexican lending platform yotepresto.com suffered a data breach (https://newsbeezer.com/mexicoeng/yotepresto-has-disclosed-the-emails-and-passwords-of-all-1-4-million-customers/). Over 1.4 million customers were impacted by the breach which disclosed email and IP addresses, usernames and passwords stored as bcrypt hashes. The data was provided to HIBP by dehashed.com (https://dehashed.com/).

Data Breach at WorkForce West Virginia
https://www.infosecurity-magazine.com:443/news/data-breach-at-workforce-west/

Teespring - 8,234,193 breached accounts
https://haveibeenpwned.com/PwnedWebsites#Teespring

In April 2020, the custom printed apparel website Teespring suffered a data breach that exposed 8.2 million customer records (https://www.zdnet.com/article/hacker-leaks-data-of-millions-of-teespring-users/). The data included email addresses, names, geographic locations and social media IDs.

Cloud Database Exposes 800M+ WordPress Users' Records
https://www.infosecurity-magazine.com:443/news/cloud-database-exposes-800m/

Scraped LinkedIn data. This time more than the last one.

https://restoreprivacy.com/linkedin-data-leak-700-million-users/

Data Breach at Las Vegas Hospital
https://www.infosecurity-magazine.com:443/news/data-breach-at-las-vegas-hospital/