Apple ID Phishing Scam Infected Electronic Arts Server
March 20, 2014

Hackers Compromise EA Server As Part Of Apple ID Phishing Scheme

redOrbit Staff & Wire Reports - Your Universe Online

An EA Games web server was breached by hackers on Wednesday and made to display a page prompting visitors to enter their Apple ID account information as part of a phishing scam, various media outlets have reported.

The hacking was first reported by UK based Internet security services company Netcraft, which revealed that the compromised server hosted a calendar used by a pair of EA websites. That calendar was based on WebCalendar 1.2.0 – a nearly four year old version known to contain multiple security vulnerabilities that have since been fixed.

“The phishing site attempts to trick a victim into submitting his Apple ID and password,” explained Netcraft’s Paul Mutton. “It then presents a second form which asks the victim to verify his full name, card number, expiration date, verification code, date of birth, phone number, mother's maiden name, plus other details that would be useful to a fraudster. After submitting these details, the victim is redirected to the legitimate Apple ID website.”

Among the security vulnerabilities present in WebCalendar 1.2.0 is one that makes it possible for people to change settings and execute arbitrary code without authentication, said Brittany Hillen of SlashGear. While it has not been confirmed, she said that it has been suggested that these flaws could have played a role in the server being compromised.

“The easiest way to avoid getting taken in by this phishing scam is to avoid websites that you think may not be trustworthy, and never enter your login information into an online form unless you're absolutely certain that the site is legit. Clicking a link in an email or webpage you stumble on doesn't count,” said MacObserver managing editor Jeff Gamet.

According to the Apple Insider staff, hackers frequently target the over 500 million men and women who have Apple IDs. Not only is the iPad and iPhone manufacturers’ userbase one of the largest and fastest growing in the tech world, but more often than not those accounts have active credit cards associated with them.

“If you think you may have been taken in by this phishing scam, change your Apple ID right away, and take steps to help avoid becoming an identity theft victim,” Gamet said. However, as he also pointed out, the whole incident “probably could've been avoided if EA had updated some of the web modules they're using on their servers.”

PROTECT YOURSELF: McAfee Total Protection 3PC 2014