2K Advises Players to Change Credentials After Malicious Data Breach

[UPDATE]: According to reports from Bleeping Computer, some 2K customers got emails on Tuesday referring to Zendesk support cases they had not started. Zip files containing executable applications disguised as a new launcher for 2K games were attached to the emails; however, these zip files really included RedLine malware, which steals personal information.

The RedLine virus that was given to consumers may identify and send a variety of sensitive data, including stored browser passwords, email account login information, cryptocurrency wallet credentials, credit card information, and more. It is often sold on the dark web.

 

Players have been advised to reset their passwords after 2K announced that its customer support services were stolen this week.

In a post on Twitter, the company said that it had “become aware that an unauthorized third party illegally accessed the credentials of one of our vendors to the help desk platform that 2K uses to support our customers.”

Hey folks, please read an important message from our Customer Support team. Thank you. pic.twitter.com/yKI18eL7mY

— 2K Support (@2KSupport) September 20, 2022

It then validated that certain gamers had received malicious links from outside sources. Players who may have clicked on the link are advised to change any passwords saved in a web browser by 2K Support. If users have already clicked on these links, 2K recommends that they change any browser-saved passwords, download antivirus software, enable multi-factor authentication where it’s practical, and double-check that their email account forwarding settings haven’t been altered.

The unauthorized party sent a communication to certain players containing a malicious link. Please do not open any emails or click on any links that you receive from the 2K Games support account.”

– 2k Support

Users were kindly reminded by the publisher that they would never be asked for their password or other private information and that they would be informed as soon as it is safe to access the website and emails once again.

Cyber assaults have been increasingly prevalent over the last several days. Approximately 90 videos of Grand Theft Auto 6 gameplay were released after Rockstar Games was hacked; however, even though Take-Two Interactive is the parent company of both Rockstar Games and 2K, there is no evidence linking the two assaults.

The same hacker that reportedly targeted Rockstar also targeted Uber, and the business is now collaborating with the FBI and U.S. Justice Department to look at the matter. Blizzard also had a breach in the gaming industry when more than 40 minutes of Diablo 4 gameplay leaked online.

Given the years of effort being exposed to the community, the latest data breaches has disrupted the gaming industry. To prevent such circumstances in the future, meaningful changes must be made.