‘Fortnite’ vulnerability put millions of accounts at risk
It turns out that for the millions of people playingFortnite, there was more than just a Victory Royale at stake.
On Jan. 16, internet security firm Check Point Research disclosed a vulnerability in the popular online video game that could have allowed malicious actors to take over practically anyFortniteaccount — all a player had to do was click a malicious link.
“By discovering a vulnerability found in some of [Fortnite owner] Epic Games’ sub-domains, an XSS attack was permissible with the user merely needing to click on a link sent to them by the attacker,” explains the report. “Once clicked, with no need even for them to enter any login credentials, their Fortnite username and password could immediately be captured [by] the attacker.”
SEE ALSO: Why ‘Fortnite’ bypassing Google Play could be a security nightmare
Epic Games confirmed the now-patc
Be the first to write a comment.
