![]() ![]() ![]() The company only acknowledged receipt of the bug notification and patched the vulnerability at the end of December, according to researchers. ![]() An attacker could create a malicious link using a legitimate Epic Games sub-domain to trigger the attack.Ĭheck Point notified Epic Games in November of the vulnerability. Researchers at Check Point, on Wednesday, said the vulnerability is tied to the way the single-sign-on (SSO) works between PlayStationNetwork, Xbox Live, Nintendo, Facebook and Google and the Epic Games server. The vulnerability is tied to an insecure Fortnite application program interface (API) used by players to log into their accounts using third-party credentials or tokens. Epic Games patched a bug that could have allowed hackers to break into millions of Fortnite accounts and steal virtual currency or resell virtual goods. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |