Vulnerability in EA Origin client allows intruders to control gamers’ PCs

For convenience of millions of users Origin supports URL that begins with «origin://».

Such links make possible to open application quickly and download a game, following a simple link from the website.

Researchers of Undergo Security found that using this bag intruders could make links origin://../Malware”, that would enable attackers to use any application with the rights of current user.

“An attacker could’ve ran anything they wanted,” – argue Underdog Security experts.

Specialists explain that potential cybercriminals could also transit PowerShell commands to vulnerable PC, in this way loading in system additional malware and installing it.

Malware origin:// link could be sent user in a letter or published on intruders’ web-page. In combination with XSS-vulnerability exploit could also work independently, without victim’s participation.

Además, bug allowed abduction of tokens from users’ accounts with the use of simple one-line code. Como resultado, criminals got access to user’s account without a password.

Origin EA Vulnerability
‘Popping calc’ to demonstrate a remote code execution bug in Origin

EA developers already eliminated this problem; update for vulnerability issued on Monday, abril 15, 2019.

Fuente: https://techcrunch.com

Acerca de Trojan Killer

Trojan Killer llevar portátil en su dispositivo de memoria. Asegúrese de que usted es capaz de ayudar a su PC resistir cualquier amenaza cibernética donde quiera que vaya.

también puedes ver

MageCart en la plataforma de nube Heroku

Los investigadores encontraron Varios MageCart Web skimmers En Heroku Cloud Platform

Investigadores de Malwarebytes informaron sobre la búsqueda de varios skimmers MageCart web en la plataforma de nube Heroku …

Android Spyware CallerSpy

máscaras spyware CallerSpy como una aplicación de chat Android

expertos de Trend Micro descubrieron que el malware CallerSpy, que enmascara como una aplicación de chat y Android, …

Deja una respuesta