Ransomware cyber

2K

Sep 27, 2022 1 min read
2K

The help desk platform of American video game publisher 2K was hacked and used to target customers with fake support tickets pushing malware via embedded links.

An unauthorized third party accessed the credentials of one of their vendors to the help desk platform and sent a communication to certain players containing a malicious link.

The company advised those who might have clicked one of the malicious links to reset their user account passwords stored in your web browser, enable multi-factor authentication and install and run anti virus program.

Source: https://www.bleepingcomputer.com/news/security/2k-games-says-hacked-help-desk-targeted-players-with-malware/

TPRM report: https://www.rankiteo.com/company/2k-games

"id": "2k232421922",
"linkid": "2k-games",
"type": "Ransomware",
"date": "6/2017",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Video Game Publishing',
                        'location': 'United States',
                        'name': '2K',
                        'type': 'Company'}],
 'attack_vector': 'Email Phishing',
 'customer_advisories': ['Reset Browser Stored Passwords',
                         'Enable Multi-Factor Authentication',
                         'Install and Run Anti-Virus Program'],
 'description': 'The help desk platform of American video game publisher 2K '
                'was hacked and used to target customers with fake support '
                'tickets pushing malware via embedded links. An unauthorized '
                'third party accessed the credentials of one of their vendors '
                'to the help desk platform and sent a communication to certain '
                'players containing a malicious link.',
 'impact': {'systems_affected': ['Help Desk Platform']},
 'initial_access_broker': {'entry_point': 'Compromised Vendor Credentials'},
 'motivation': 'Malware Distribution',
 'post_incident_analysis': {'corrective_actions': ['Reset Browser Stored '
                                                   'Passwords',
                                                   'Enable Multi-Factor '
                                                   'Authentication',
                                                   'Install and Run Anti-Virus '
                                                   'Program'],
                            'root_causes': 'Compromised Vendor Credentials'},
 'recommendations': ['Reset Browser Stored Passwords',
                     'Enable Multi-Factor Authentication',
                     'Install and Run Anti-Virus Program'],
 'references': [{'source': '2K Official Statement'}],
 'response': {'communication_strategy': ['Alert to Customers'],
              'containment_measures': ['Password Reset Recommendation',
                                       'Multi-Factor Authentication '
                                       'Recommendation',
                                       'Anti-Virus Program Installation']},
 'threat_actor': 'Unauthorized Third Party',
 'title': '2K Help Desk Platform Hack',
 'type': 'Phishing, Malware Distribution',
 'vulnerability_exploited': 'Compromised Vendor Credentials'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.