A now-fixed security hole in the account system of Fortnite devs Epic Games could let scoundrels log in as other folks and even buy things, just by getting them to click on a dodgy link. Unlike many phishing schemes, this worked by hijacking the user’s authentication token – not even needing to trick them into entering their username and password. Epic say they’ve now fixed it but oof, that’s a bad’un. On the bright side, hey kids, you now have a great excuse for why your dad’s credit card bill shows someone spent £50 on virtuadances.
from Rock, Paper, Shotgun http://bit.ly/2HqtRAS
via ifttt
Keine Kommentare:
Kommentar veröffentlichen