Yesterday the massive data breach by Electronic Arts was announced (EA) which resulted in theft approximately 780 GB of data containing FIFA 21 and Frostbite source code.
Although the code is not available (yet) on the web, hackers posted screenshots of the stolen content as proof that the code belonged. Today, a new report on the Motherboard provides more information on how the attack took place.
Hackers claim to have started by buying stolen cookies for $ 10 from the web. These cookies contained logins to an EA Employee Slack channel. They were used to give hackers access to a Slack channel, disguised as internal employees.
Then, now that they had access to the EA employees' Slack channel, they contacted IT Support to request multi-factor tokens, stating "I lost my phone at a party last night." The tokens were given and of course used to access the corporate network of EA.
Μόλις μπήκαν στο δίκτυο, ανακάλυψαν μια service που χρησιμοποιούνταν από τους προγραμματιστές παιχνιδιών.
They then created virtual machines on the server and gained access to the source code. Motherboard reports that a company spokesperson gave screenshots of Slack conversations and various other things to confirm how the hack was done.
In addition to the leaked source code, hackers gained access to documents related to PlayStation VR, gaming AI, and more.