security roundup

Weekly Roundup: EA Hack, Colonial Pipeline Ransom & Stolen Credentials

3 Mins Read

PUREVPNIndustry NewsWeekly Roundup: EA Hack, Colonial Pipeline Ransom & Stolen Credentials

Today’s Top Security Roundup includes:

  •         EA hacked and source code stolen
  •         Feds seize online market for stolen credentials
  •         Partial recovery of Colonial Pipeline ransom amount

EA Hacked and Source Code Stolen

Over the week, hackers stole 780GB of data from EA, including their source code. As it turns out, the hackers managed to download EA’s source code for games such as FIFA 21 and Frostbite.

An EA spokesperson said in a statement:

We are investigating a recent incident of intrusion into our network where a limited amount of game source code and related tools were stolen,” an EA spokesperson said in a statement. No player data was accessed, and we have no reason to believe there is any risk to player privacy.

A source code can be used for illicit purposes and holds immense value for a developer with evil intentions. With the source code in hand, the developer can copy the code and develop cheat codes or hacks for existing games.

The hacker can also sell the code to the highest bidder, who may use it to develop a game similar to the games offered by EA. However, it is doubtful that any game developer or EA’s competitor would purchase the code and develop games as it would immediately be clear who hacked or bought the hacked source code.

This stresses the importance of having a secure digital infrastructure which makes it impossible for hackers to penetrate. So whether it’s an SME or a large corporation, both need to invest in securing their online operations to evade such incidents.

Feds Seize Online Market for Stolen Credentials

The US Department of Justice (DOJ) announced the takedown of Slilpp, the largest online marketplace of stolen login credentials. Since its inception in 2012, Slilpp was actively used cyber criminals to buy and sell stolen login credentials.

The Department of Justice said in a statement:

According to the affidavit, a fraction of the victimized account providers have calculated losses so far; based on limited existing victim reports, the stolen login credentials sold over Slilpp have been used to cause over $200 million in losses in the United States. However, the full impact of Slilpp is not yet known.

It came to light that the inventory pool included almost 80 million stolen login credentials from more than 1,400 companies. It’s no doubt that the takedown is a significant step, but it’s unlikely that the takedown will slow down the sale of stolen credentials. In addition, several other sites are floating around where the hackers could continue doing their business.

It stresses the need to secure your digital accounts with a strong alphanumeric password and enable two-factor authentication. While ensuring the security of your online account with a strong password is essential, securing your internet connection is equally important. Make sure to encrypt your internet connection for optimal online privacy and security.

Partial Recovery of Colonial Pipeline Ransom Amount

The largest petroleum pipeline in the US, Colonial Pipeline, was reportedly breached by a single leaked password in the US. Additionally, the Department of Justice announced that it had managed to seize $2.3 million of the $4.4 million hijacked by the DarkSide ransomware group.

The hacking group received the ransomware amount in Bitcoins, raising questions about how DOJ managed to get the private key to the wallet where the Bitcoins were kept. Since blockchain records all transactions, tracing Bitcoins isn’t tricky.

After the hackers’ wallet address was discovered, the FBI managed to get a court order to seize the funds held in the digital wallet. The FBI somehow had the digital key required to access the wallet and make transactions. However, it’s a mystery how the FBI had access to the digital key, which isn’t public.

Although the newly introduced Ransomware and Digital Extortion Task Force managed to recover 64 of the 75 Bitcoins, it’s clear that privacy is increasingly under threat. So make sure to follow safe internet habits and keep your digital activities secure from prying eyes.

Topics :

author

PureVPN

date

November 24, 2022

time

1 year ago

PureVPN is a leading VPN service provider that excels in providing easy solutions for online privacy and security. With 6000+ servers in 65+ countries, It helps consumers and businesses in keeping their online identity secured.

Have Your Say!!

Join 3 million+ users to embrace internet freedom

Signup for PureVPN to get complete online security and privacy with a hidden IP address and encrypted internet traffic.