What happened now? 2K Games, a subsidiary of Take-Two, has warned users that the data stolen in last month’s hack is still being used and to watch for any suspicious activity on their accounts. The company found that the attackers stole email addresses, names and other personal information, but does not believe that any financial data or passwords were stolen.
Just as the company dealt with the aftermath of the GTA 6 leak last month, Take-Two announced that it had suffered yet another hack on September 19, although this time it was the 2K Games subsidiary that was the victim.
The hacker was able to obtain system credentials belonging to a vendor that 2K uses to run its helpdesk platform. Once the threat actor gained access to customer email addresses, it would send out emails that looked like official emails containing malicious links that could download password-stealing malware. 2K tweeted a warning not to open emails or follow links coming from her gaming support account.
Anyone who has already clicked on the link has been advised to reset all user account passwords stored in their browser, enable multi-factor authentication where possible, install and run a good antivirus program, and check their email account settings to see if it is being forwarded whether rules have been added.
Hey guys, please read the important message from our support team. Thank you. pic.twitter.com/yKI18eL7mY
— 2K Support (@2KSupport) September 20, 2022
2K Games has hired a third party to complete a legal investigation into the breach. Yesterday, it was confirmed that in addition to the emails, the hacker accessed and copied customer names, support IDs, player tags, and console data.
The good news for users is that the 2K Games online help portal is now safe to use, and emails from the support address can once again be trusted. As a precaution, the studio previously advised all players, not just those who received emails, to reset their account passwords and ensure that multi-factor authentication is enabled.
September was the perfect month for hacking. There were warnings for users of WordPress, Steam, Uber and others. There was also a hole in FastCompany where racist messages were sent via Apple News push notifications.
h/t: Ars Technique