informa
1 MIN READ
News

A now-fixed Origin vulnerability potentially opened the client to hackers

Until just recently, Electronic Arts’ digital game platform Origin had a security vulnerability that could be used run malicious apps on a user’s computer.

Until just recently, Electronic Arts’ digital game platform Origin had a security vulnerability that could be used to run malicious apps on an Origin user's computer.

Researchers speaking to TechCrunch offered a look at the exploit in action, explaining that the flaw itself allowed would-be attackers to use Origin as a channel to trick users into running any app of the attacker’s choosing. 

It was an issue exclusive to the Windows version of the client, and one that the researchers from Underdog Security say took advantage of how Origin uses “origin://“ links to start games by clicking on a link in a webpage. 

Combined with other recourses like PowerShell commands, the exploit could theoretically have been used to download and install malicious programs onto the computers of unsuspecting Origin users that clicked a hijacked link. The bug, which EA confirmed has been fixed as of this Monday, also potentially opened the door for hackers to steal account access tokens using a single line of code.

Latest Jobs

Xbox Game Studios

Redmond, Washington
10.5.22
Technical Lighting Artist

Innogames

Hamburg, Germany
10.5.22
Game Designer - Elvenar

Six Foot

Houston, TX
10.3.22
Six Foot Director, Player Relations

Hometopia Inc.

Remote
10.7.22
Lead Engineer
More Jobs   

CONNECT WITH US

Explore the
Subscribe to
Follow us

Game Developer Job Board

Game Developer Newsletter

@gamedevdotcom

Explore the

Game Developer Job Board

Browse open positions across the game industry or recruit new talent for your studio

Browse
Subscribe to

Game Developer Newsletter

Get daily Game Developer top stories every morning straight into your inbox

Subscribe
Follow us

@gamedevdotcom

Follow us @gamedevdotcom to stay up-to-date with the latest news & insider information about events & more