Vulnerability in EA Origin client allows intruders to control gamers’ PCs

For convenience of millions of users Origin supports URL that begins with «origin://».

Such links make possible to open application quickly and download a game, following a simple link from the website.

Researchers of Undergo Security found that using this bag intruders could make links origin://../malware”, that would enable attackers to use any application with the rights of current user.

“An attacker could’ve ran anything they wanted,” – argue Underdog Security experts.

Specialists explain that potential cybercriminals could also transit PowerShell commands to vulnerable PC, in this way loading in system additional malware and installing it.

malware origin:// link could be sent user in a letter or published on intruders’ web-page. In combination with XSS-vulnerability exploit could also work independently, without victim’s participation.

Bovendien, bug allowed abduction of tokens from users’ accounts with the use of simple one-line code. Als gevolg, criminals got access to user’s account without a password.

Origin EA Vulnerability
‘Popping calc’ to demonstrate a remote code execution bug in Origin

EA developers already eliminated this problem; update for vulnerability issued on Monday, april 15, 2019.

Bron: https://techcrunch.com

Over Trojan Killer

Carry Trojan Killer Portable op je memory stick. Zorg ervoor dat u in staat om uw pc te weerstaan ​​elke cyberdreigingen overal mee naar toe bent.

Controleer ook

MageCart op de Heroku Cloud Platform

Onderzoekers vonden verschillende MageCart Web Skimmers Op Heroku Cloud Platform

Onderzoekers van Malwarebytes rapporteerde over het vinden van een aantal MageCart web skimmers op de Heroku cloud-platform …

Android Spyware CallerSpy

CallerSpy spyware maskers als een Android-chat-applicatie

Trend Micro deskundigen ontdekte de malware CallerSpy, waarachter een Android chat-toepassing en, …

Laat een antwoord achter