"Video Game Publisher Admits Helpdesk Was Hijacked"

US video game publisher 2K recently warned players of its games not to click on links sent out by its help desk, as they are likely to be malicious.  The company which is a subsidiary of Take-Two Interactive, released a brief statement on Twitter overnight.  The company became aware that an unauthorized third party illegally accessed the credentials of one of their vendors to the help desk platform that 2K uses to provide support to their customers.  The unauthorized party sent a communication to certain players containing a malicious link.  The 2K Games support function is now offline while the firm investigates, and will remain so until the firm makes an announcement to the contrary.  The malware in question is reportedly designed to steal information from victims, including their passwords.  The company is urging users who have already clicked on the malicious link to reset account passwords stored in their browser, enable multi-factor authentication (MFA) on all sensitive accounts like email and online banking, preferably via an authentication app rather than text message, install and run anti-virus from a reputable vendor, and check account settings to see if any forwarding rules have been added on email accounts.  One 2K Games customer responded angrily to the new post, claiming that they informed the company about the compromise 10 hours before it finally notified all users.

Infosecurity reports: "Video Game Publisher Admits Helpdesk Was Hijacked"