Epic Games

Epic Games

The fined Epic Games, the video game company behind Fortnite, was fined $520 million by the US Federal Trade Commission (FTC) for non-compliance with the Children's Online Privacy Protection Act (COPPA).

Epic Games have to pay $275 million for violating COPPA and another $245 million in refunds for tricking users into making unwanted charges and, changing the default privacy settings.

The company intentionally stored personal information, such as names and emails, of its Fortnite subscribers, including minors.

With this data, the firm monitors their activity within the game.

In the case of minors, Epic Games did not have parental consent.

Source: https://www.incibe-cert.es/en/early-warning/cybersecurity-highlights/ftc-fines-epic-games-coppa-violations

TPRM report: https://scoringcyber.rankiteo.com/company/epic-games

"id": "epi32022123",
"linkid": "epic-games",
"type": "Data Leak",
"date": "12/2022",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Video Game',
                        'name': 'Epic Games',
                        'type': 'Company'}],
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information']},
 'description': 'Epic Games, the video game company behind Fortnite, was fined '
                '$520 million by the US Federal Trade Commission (FTC) for '
                "non-compliance with the Children's Online Privacy Protection "
                'Act (COPPA). The company has to pay $275 million for '
                'violating COPPA and another $245 million in refunds for '
                'tricking users into making unwanted charges and changing the '
                'default privacy settings. The company intentionally stored '
                'personal information, such as names and emails, of its '
                'Fortnite subscribers, including minors. With this data, the '
                'firm monitors their activity within the game. In the case of '
                'minors, Epic Games did not have parental consent.',
 'impact': {'data_compromised': ['Names', 'Emails'],
            'financial_loss': ['$275 million for COPPA violation',
                               '$245 million in refunds'],
            'legal_liabilities': 'COPPA Violation'},
 'motivation': 'Financial Gain',
 'regulatory_compliance': {'fines_imposed': '$520 million',
                           'regulations_violated': 'COPPA'},
 'threat_actor': 'Epic Games',
 'title': 'Epic Games Fined for COPPA Violations and Unwanted Charges',
 'type': 'Data Privacy Violation'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.