‘Electronic Arts’ Hit by Massive Data Breach Involving User Records and Source Code

Last updated August 18, 2021
Written by:
Bill Toulas
Bill Toulas
Infosec Writer
Source: Wikipedia, Credits: King of Hearts

‘Electronic Arts,’ the California-based video game company with an annual revenue of $5.5 billion, has suffered a massive data breach incident that has compromised user records as well as game source code. The company has confirmed the unfortunate incident but stated that no player data was accessed and that there’s no reason to believe there is any risk to player privacy. However, from what samples have appeared on hacker forums, this may not be accurate.

Source: CyberNews
Image: technadu.com

Overall, the hackers stole roughly 780 GB of data which they advertise for sale on several forums and marketplaces by now, and the list includes the following:

Image: technadu.com
Image: technadu.com

We don’t know what these records contain exactly, but we would guess that social engineering, phishing, scamming actors would make good use of these details. Still, EA doesn’t accept that any player data has been compromised, so we’re reproducing that part with caution. EA is still investigating the intrusion, so we may have an update on the matter soon.

Prakash Bell, Head of Customer Success, at Check Point Software Technologies has shared the following comment with TechNadu on the incident:

Proprietary source code getting leaked is definitely not good news. This is serious IP theft where hackers are able to harvest precious information in their hands; being able to see the inner workings of a game, exploit security gaps and even reverse-engineer games for malicious purposes.

Besides loss of reputation and intellectual property loss, the impacted companies also suffer huge monetary loss both from investments made and future revenue. The large number of reports that are out about this is not surprising, as hackers are usually quick to monetize what they steal, and such proprietary information can gain hackers big money on the dark net.

In the meantime, if you are playing an EA game and you have an online account for it, you should reset your password as soon as possible and also enable 2FA on your account. If you receive any suspicious unsolicited emails, do not jump to action - but instead take a good look at the sender’s address and the content first. It is likely that scammers will try to trick you into giving away your account credentials by using this security incident as bait.

At the same time, CD Projekt, the publisher of ‘Cyberpunk 2077’ who has suffered a data-stealing ransomware incident in February 2021, has just announced that the stolen data is now circulating the internet. They cannot confirm the validity or authenticity of the data yet, but they have valid reasons to believe it is the result of that particular security incident. The firm’s IT systems have been adequately strengthened by now, so players, employees, and partners shouldn’t fear anything.



For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: