Game dev 2K’s support site hacked to push malware via fake tickets

[Gandalf_The_Grey]

Content source

https://www.bleepingcomputer.com/news/security/game-dev-2k-s-support-site-hacked-to-push-malware-via-fake-tickets/

Hackers have compromised the support system of American video game publisher 2K and now are sending support tickets to gamers containing the RedLine password-stealing malware.

2K is the publisher behind numerous popular game franchises, including NBA 2K, Borderlands, WWE 2K, PGA Tour 2K, Bioshock, Civilization, and Xcom.

Starting today, 2K customers began receiving emails stating that they opened support tickets on 2ksupport.zendesk.com, 2K's online support ticketing system. While the users confirmed these tickets had been created, numerous recipients on Twitter and Reddit stated that they were not the ones who opened the tickets.

Soon after the tickets were opened, the gamers received another email containing a reply to their ticket from an alleged 2K support representative named 'Prince K.'

This email includes an attached file named '2K Launcher.zip' hosted directly on 2ksupport.zendesk.com, which pretended to be a new game launcher.

According to VirusTotal and Any.Run, this executable is the RedLine information-stealing malware.

Game dev 2K’s support site hacked to push malware via fake tickets

Hackers have compromised the support system of American video game publisher 2K and now are sending support tickets to gamers containing the RedLine password-stealing malware.

www.bleepingcomputer.com

 

[Local Host]

Doesn't affect EU accounts which are in another data center.