Hackers have succeeded in breaking into the systems of one of the world’s biggest video game publisher, Electronic Arts (EA).
According to a spokesperson, the hackers were able to steal source code used in company games.
Online forum posts reviewed and vetted by an independent cybersecurity expert show that on June 6, the hackers claimed to have obtained 780 gigabytes of data from the video game publisher, EA.
The data said to have been obtained include the Frostbite source code, which is the game engine that powers the FIFA, Madden, and Battlefield series of video games, among others.
The hackers also claimed to offer “full capability of exploiting on all EA services,” as well as claiming to have stolen software development tools for FIFA ’21 and server code for player matchmaking in FIFA ’22.
Cybersecurity expert and threat analyst at Emsisoft, Brett Callow, said that losing control over source code could be problematic for EA’s business.
“Source code could, theoretically, be copied by other developers or used to create hacks for games,” Brett Callow said.
Ekram Ahmed, a spokesperson for the cybersecurity firm Check Point, also added his opinion. He said:
“Anytime source code gets leaked, it’s not good. Hackers can comb through the code, identify deeper flaws for exploit, and sell that previous code on the dark web to malicious threat actors.”
A spokesperson for EA confirmed to CNN that no player data was compromised in the breach. He further added that:
“We (EA) are investigating a recent incident of intrusion into our network where a limited amount of game source code and related tools were stolen. No player data was accessed, and we have no reason to believe there is any risk to player privacy. Following the incident, we’ve already made security improvements and do not expect an impact on our games or our business. We are actively working with law enforcement officials and other experts as part of this ongoing criminal investigation.”
The breach comes as cyber attacks are once again gaining attention, with ransomware attacks being targeted at top infrastructure companies such as the meatpacking business, JBS USA; and the fuel distributor Colonial Pipeline.
The EA added that the breach was, however, not a ransomware attack.