• BURN MEDIA
    • Memeburn
      Tech-savvy insight and analysis
    • Motorburn
      Because cars are gadgets
    • Ventureburn
      Startup news for emerging markets
    • Jobsburn
      Digital industry jobs for the anti 9 to 5!
fortnite battle royale epic games

Fortnite security flaw let attackers hijack players’ accounts, buy V-Bucks

A swathe of Fortnite players’ accounts were left vulnerable to cyber criminals after a security vulnerability was discovered.

Details of the vulnerability was published by security company Check Point on Wednesday.

“By discovering a vulnerability found in some of Epic Games’ sub-domains, an XSS attack was permissible with the user merely needing to click on a link sent to them by the attacker,” Check Point writes in its report.

“Once clicked, with no need even for them to enter any login credentials, their Fortnite username and password could immediately be captured the attacker.”

This would allow those now in control of the account to purchase V-Bucks — Fortnite’s in game currency that can be purchased via credit cards — view their personal account info, and “eavesdrop on and record players’ in-game chatter and background home conversations”.

Check Point noted that Epic Games has since patched the issues.

Feature image: Epic Games

Author Bio

Andy Walker
Camper by day, run-and-gunner by night, Andy prefers his toast like his coffee -- dark and crunchy. Fuelled by his belief that PvZ: GW2 is 2016's game of the year, Andy also dabbles in the odd hard news story over on Memeburn. More