364
submitted 8 months ago by Carighan@lemmy.world to c/games@lemmy.world

The report comes from Cyber Daily, who also broke the news of last year's confirmed hack attack on Insomniac Games. The site claims that new ransomware group Mogilevich are the culprits, as per the screencap of a darkweb posting above, and that the hackers are now trying to get Epic or another party to pay up for the return of the data, with a deadline of 4th March.

Epic, however, say that they've yet to see any proof that a ransomware attack has taken place. "We are investigating but there is currently zero evidence that these claims are legitimate," a spokesperson told Eurogamer this morning.

all 42 comments
sorted by: hot top controversial new old
[-] moody 65 points 8 months ago

Situations like this are why I never save my payment information anywhere.

[-] TheIllustrativeMan@lemmy.world 8 points 8 months ago* (last edited 8 months ago)

I use a CC, so I really don't give a shit if someone steals my number.

Last time my card got skimmed it was $0 and <30 seconds to fix, including hold time. They don't fuck around when you're reporting stolen info, because legally it's their money, not yours.

[-] Whirlybird@aussie.zone 1 points 8 months ago* (last edited 8 months ago)

Eh, credit card details being stolen is basically inconsequential these days. Usually your bank will catch any illegal uses and stop them, and if they don't all it takes is a single call and it'll be taken care of.

In cases like this though, it's pretty much never your actual credit card details, but a token. That token is used by the store to charge your card, but it's 100% useless to anyone else. Epic likely never even see your credit card details, they'd just go directly to the payment merchant who then give epic a token.

[-] notannpc@lemmy.world 43 points 8 months ago

https://cyberplace.social/@GossiTheDog/112010182183098717

Trustworthy infosec folks seem to suggest that this ransomeware group is full of shit. I suppose we will see though.

[-] Risk@feddit.uk 43 points 8 months ago

In the situation that payment details are leaked - I presume one must cancel the associated card?

[-] Fredselfish@lemmy.world 69 points 8 months ago

Good thing Epic doesn't have my card information because I only use it for the free games. Now if this was steam I be worried.

[-] themeatbridge@lemmy.world 14 points 8 months ago
[-] SuckMyWang@lemmy.world 2 points 8 months ago

But you’ll get free credit checks for a year so nothing to fear

[-] 9715698@lemmy.world 6 points 8 months ago

It's almost surprising, for good shitty EGS is, that they don't makes you save a payment method to check out the free games.

[-] Risk@feddit.uk 2 points 8 months ago

I'm not sure if I've ever entered mine either. I ought to go check...

[-] Blackmist@feddit.uk 1 points 8 months ago

I can't see any listed in the Manage Payment Management section.

I assume I never saved them, when I bought Outer Wilds years ago.

[-] Carighan@lemmy.world 11 points 8 months ago

Hrm, depends. Usually in modern online payment systems it should be impossible for the debitor to have the CVC of the card and hence leaked information could not make actual payments from it, but it could spam the card's number with bogus payments to continuously keep it being blocked.

In any case if you're affected I would recommend asking your bank how to proceed, just to be on the safe side.

[-] webhead@lemmy.world 8 points 8 months ago* (last edited 8 months ago)

That's not a requirement. You can make payments without one though the odds of approval aren't great. If the actual real card numbers got leaked, you need to cancel that card. Also if they actually leaked REAL card numbers, Epic is going to be in deep shit with the card brands.

This article has no real details though so we'll see. I kind of doubt this is legit.

[-] dai@lemmy.world 4 points 8 months ago

I guess the answer is money, but why would you do any handling of card details in-house. Having a third party process transactions passes to some degree ensuring security onto said third party.

I'd still doubt any risk of full card details being leaked unless the hack goes much deeper than just Epic.

[-] elvith@feddit.de 4 points 8 months ago

On the other hand, when steam had a leak a few years ago (where you could see other people’s account details after logging in instead of yours) my credit card got exchanged automatically by the bank, as they saw that I had used it to buy games on steam - even though in this „leak“ only the last 4 digits were leaked and nothing more

[-] HeyJoe@lemmy.world 3 points 8 months ago

For me I started using a service called Privacy a few years ago and haven't looked back so far. It's changed how I handle all online transactions. It let's you create virtual cards that are either good once or forever and once it's used by that merchant it's tied to them. So if someone ever did try to charge you that wasn't that exact merchant it gets blocked. You can set daily, and monthly limits as well and pause the card or close it whenever. So I would use this virtual card for the payment on epic and then this happens and all I do is close it out and open a new one. So far I did have 1 place that had my card charged from a place that wasn't them. The cool part is you know who almost screwed you because of the card thats being used. It was a local pizza place and I called to let them know they probably got hacked.

[-] jaykay@lemmy.zip 14 points 8 months ago

You can’t sound more like an ad haha

[-] HeyJoe@lemmy.world 5 points 8 months ago

My bad lol. It is really great though!

[-] Jakeroxs@sh.itjust.works 1 points 8 months ago

One used to have a similar thing before they got bought out by Walmart and started dropping features 🙃

[-] Kusimulkku@lemm.ee 33 points 8 months ago

189GB hack

That's how we're quantifying them now??

[-] Patches@sh.itjust.works 40 points 8 months ago

They stole half a copy of the latest Call Of Duty

[-] piecat@lemmy.world 7 points 8 months ago

Is that street value?

[-] Pocketyeti@lemmy.world 27 points 8 months ago

I mean oh no, my library of free games...

[-] woelkchen@lemmy.world 1 points 8 months ago

Gosh, what happens to my payment info in such a case?

[-] Dark_Arc@social.packetloss.gg 14 points 8 months ago
[-] Carighan@lemmy.world 30 points 8 months ago

Nah, use Mastodon or Bluesky 😜

[-] Dark_Arc@social.packetloss.gg 6 points 8 months ago

I hate this... 😂

[-] SRo@lemmy.dbzer0.com 5 points 8 months ago

Hahaha fuck epic

[-] phi1997@kbin.social 5 points 8 months ago

Glad I never made an account there

[-] DarkGamer@kbin.social 2 points 8 months ago

Free games in exchange for identity theft. No thanks.

[-] pivot_root@lemmy.world 2 points 8 months ago

Press F for all those people who decided to pay for shit on that platform because of the holiday 25% off voucher. Saved $15 in exchange for random unauthorized charges in the future.

[-] nutsack@lemmy.world 4 points 8 months ago

it's all good. this sort of thing happens constantly

[-] atocci@kbin.social 3 points 8 months ago

If I only have an account through Xbox login, and my only payment method is PayPal, what kind of risks are there?

[-] ColonelPanic@lemm.ee 3 points 8 months ago

You're fine unless something happens to PayPal.

this post was submitted on 29 Feb 2024
364 points (98.1% liked)

Games

32663 readers
716 users here now

Welcome to the largest gaming community on Lemmy! Discussion for all kinds of games. Video games, tabletop games, card games etc.

Weekly Threads:

What Are You Playing?

The Weekly Discussion Topic

Rules:

  1. Submissions have to be related to games

  2. No bigotry or harassment, be civil

  3. No excessive self-promotion

  4. Stay on-topic; no memes, funny videos, giveaways, reposts, or low-effort posts

  5. Mark Spoilers and NSFW

  6. No linking to piracy

More information about the community rules can be found here.

founded 1 year ago
MODERATORS