14 DAY TRIAL // Cybercriminals who successfully hacked Electronic Arts two months ago have released all the data stolen from the company after it failed to receive the demanded ransom, according to Security Affairs.
The data leak was first revealed on June 10 after the hackers posted a small sample on a cybercrime forum and offered the entire data set EA for sale for $28 million. Following the attack, EA stated that it has already enhanced security and does not anticipate any negative impact on our games or operations.
The hackers gained access to an EA internal Slack channel with stolen authentication cookies by purchasing them in the Genesis black market. Once the attackers got access to the EA IT support employee's account, they were able to fool him into allowing them network access to the EA internal network, where they managed to steal 780 GB worth of data from the company's servers.
The hackers allegedly stole the source codes of popular games developed by EA. In addition to that, the data dump includes the following frameworks and tools:
- XB PS and EA PFX and CRT with Keys
- XBOX and SONY private SDK and API keys
- Debug tools, SDK, and API keys
- Proprietary EA game frameworks
- FIFA 22 API key and SDK and debug tools
- FIFA 21 matchmaking server code
- FrostBite Game Engine source code and debug tools.
- The source code of the game FIFA 21
Cybercriminals stolen the source code of the game FIFA 21
A week ago, the stolen information was uploaded to an underground hacking forum and has since been widely distributed via torrent networks. The cybercriminals were unable to find a buyer for the stolen data, and as a result, they demanded Electronic Arts to pay an undisclosed sum to prevent online leaking.
The Record said, "According to a copy of the dump obtained by The Record, the leaked files contain the source code of the FIFA 21 soccer game, including tools to support the company’s server-side services."