20 Nov EA Origin Client Bug Exposes Gamer Data
A researcher known online as ‘Beard’ recently revealed a bug in EA’s Origin online gaming and digital distribution platform which allows attackers to gain access to account data.
Beard discovered that when a user requests to edit his account on EA.com, the Origin client generates an auto-login URL, in which the token is basically the equivalent of the user’s active username and password.
According to Beard, the auto-login URL worked regardless of IP address or browser and can easily be grabbed by anyone if the user is on an unsecured network.
Source: ZDNet
