Fortnite Fixes Security Exploit Which Affected All 200M+ Player Accounts
If you’re a Fortnite player, you might want to take this opportunity to change your account password and make sure that everything’s as it should be. Turns out that there was a flaw in the game’s login procedure which could have given hackers access to any and all 200 million of their registered player accounts.
The security flaw was reported by Check Point, an independent cybersecurity firm. According to Check Point’s researchers, hackers could’ve gained access to accounts by exploiting weaknesses in Epic Games’ web infrastructure, using phishing links that would have looked like a legitimate Epic Games sub-domain. Once clicked, malicious code would then capture the user’s login credentials and give the hacker access to the whole account including personal information, the ability to purchase premium currency, and even eavesdrop on in-game communications.
Epic Games has since fixed the issue and thanks Check Point for pointing it out. “We were made aware of the vulnerabilities and they were soon addressed. We thank Check Point for bringing this to our attention,” said Epic. “As always, we encourage players to protect their accounts by not re-using passwords and using strong passwords, and not sharing account information with others.”
For an in-depth look at how the security exploit works, you can head over to the Check Point official site.