Major EA Origin Gaming Client Security Exploit Potentially Left 300 Million Users Exposed

by Brandon Hill — Wednesday, June 26, 2019, 12:08 PM EDT

Another day, another report on vulnerabilities in the software that many of us use on a daily basis. This time around, researchers from Check Point and CyberInt rallied together to detail a number of exploits that they discovered in the Origin client used to deliver games to consumers. Origin is an Electronic Arts property.

What makes the latest Origin exploit rather dangerous is the fact that it does not require intervention from the user with respect to handing over their logins or passcode information. In this case, the exploit allows an attacker to steal tokens associated with oAuth Single Sign-On (SSO) and TRUST routines in place with the EA Games user login process.

As a result, Check Point and CyberInt were able to hijack a number of ea.com and origin.com subdomains to perform a full takeover of user accounts. The researchers were able to hijack eaplayinvite.ea.com, which had previously been an inactive subdomain hosted on Microsoft Azure.

“EA’s Origin platform is hugely popular; and if left unpatched, these flaws would have enabled hackers to hijack and exploit millions of users’ accounts,” said Oded Vanunu, Head of Products Vulnerability Research at Check Point. “Along with the vulnerabilities we recently found in the platforms used by Epic Games for Fortnite, this shows how susceptible online and cloud applications are to attacks and breaches.” With access to the subdomain, the research team was able to setup a phishing page masquerading as an official EA site – using an official EA domain – to steal access tokens.

For its part, EA thanked the researchers for discovering the vulnerabilities. Given that Check Point and CyberInt are reputable security research firms that don’t have an axe to grind, they were able to disclose the vulnerabilities to EA, giving them time to address the issues, before going public with their findings.

“Protecting our players is our priority,” said Adrian Stone, Senior Director for Game and Platform Security at EA. “We [have] engaged our product security response process to remediate the reported issues. Working together under the tenet of Coordinated Vulnerability Disclosure strengthens our relationships with the wider cybersecurity community and is a key part of ensuring our players stay secure.”

According to EA, it has over 300 million registered gamers around the world using its services.

Tags: security, Electronic Arts, ORIGIN, EA, (NASDAQ:EA), security-breach

Brandon Hill

Brandon received his first PC, an IBM Aptiva 310, in 1994 and hasn’t looked back since. He cut his teeth on computer building/repair working at a mom and pop computer shop as a plucky teen in the mid 90s and went on to join AnandTech as the Senior News Editor in 1999. Brandon would later help to form DailyTech where he served as Editor-in-Chief from 2008 until 2014. Brandon is a tech geek at heart, and family members always know where to turn when they need free tech support. When he isn’t writing about the tech hardware or studying up on the latest in mobile gadgets, you’ll find him browsing forums that cater to his long-running passion: automobiles.

Opinions and content posted by HotHardware contributors are their own.

Which New GPU Is For You?

Stay updated with the latest news and updates. Subscribe to our newsletter!

Subscribe Now