2K Games, a California-based video game publisher, reported that a cyberattack had hit its help desk platform, wherein the hackers sent fake support tickets to the targeted customers to spread malware.
From the firm’s statement via a Twitter post, they confirmed that their help desk platform had been hacked by an unknown entity, targeting one of their vendors to send malware-injected messages to players.
As the malicious message had attached a link that carried the payload, the video game firm warned all customers not to open emails and not click on links they received from the 2K Games’ help desk account.
The video game firm listed some tips on mitigating a potential attack if one of the targets has clicked on the malware-injected links.
For those that have clicked on the attached malicious links, 2K Games recommends resetting all user account passwords stored in their computer’s web browsers and enabling multi-factor authentication (MFA) on all online platforms. Additionally, the firm suggests running anti-virus software on the impacted machine or computer to help get rid of any malware spread by the hackers.
The affected help desk platform was immediately taken down upon the incident’s investigation. Until it is safe to interact with the support staff again and a notice has been issued, 2K Games advise users to refrain from communicating with the compromised help desk account.
Based on reports received about the incident, it showed that the affected 2K Games users had received emails from the video game firm’s help desk group instructing them to open a link for a support ticket. Many of the email recipients stated that they had not opened a ticket, hence their confusion of receiving notifications for one.
Upon clicking the ticket’s link, another email will be sent to the targets, which now encloses a ZIP file named ‘2K Launcher[.]zip.’ Researchers have attempted to run the downloadable file, discovering that it carried the RedLine info-stealing malware.
In the cybersecurity landscape, it is well-known how the RedLine info-stealer is notorious as a tool that cybercriminals use for stealing data, such as web browsing histories, browser passwords, cookies, banking credentials, VPN data, messaging platforms’ contents, and cryptocurrency wallets.
The researchers deliberate whether this attack on 2K Games is related to the recent hack on Rockstar Games that led to the leak of the GTA 6’s source code and video gameplay.
