Facepalm: The hackers chargeable for the current knowledge breach involving Digital Arts have divulged how they did the deed. A consultant for the hacking group instructed Motherboard they obtained the ball rolling by buying stolen cookies on-line for simply $10. Ouch.
From there, the hackers have been ready to make use of the cookies to achieve entry to a Slack channel utilized by EA workers.
As soon as on Slack, one of many hackers messaged an EA IT help member and defined that that they had misplaced their cellphone at a celebration the night time earlier than. They have been profitable in getting a multifactor authentication token that gave them entry to EA’s company community (this apparently labored twice, the rep stated).
With entry to EA’s community, the hackers positioned a service for builders compiling video games that they have been capable of log into. Making a digital machine reportedly gave them much more visibility on the community, permitting them to entry one other service and obtain recreation supply code.
Motherboard stated the rep offered screenshots to again up their story, together with photographs of the Slack chats. When Motherboard reached out to EA, a rep “confirmed to Motherboard the contours of the outline of the breach given by the hackers.”
Motherboard stated yesterday that the hackers made away with roughly 780GB of information together with the supply code for FIFA 21 and code associated to the Frostbite engine.
Picture credit score AkuAlip