Cybercriminals could have hacked into any Fortnite player’s account by taking advantage of a series of flaws on the video game maker’s website, according to new research.
Researchers from cybersecurity firm Check Point found that they could redirect traffic from Epic Games’s main login page—accounts.epicgames.com—to another page on the company’s website. There, they could then steal login tokens, a sort of digital key that allows Fortnite players to login with their accounts on other services such as Facebook, PlayStationNetwork, Xbox Live, Nintendo, and Google+.
The first step in an attack like this would be
This post first appeared on motherboard security news. Read the full article.