Video Gamers Are In The Target Area

Uploaded on 2021-01-19 in NEWS-Cybersecurity News, FREE TO VIEW

The online gaming industry is much bigger than you might think, with an estimated value of $200 billion in 2020 and with lockdown restrictions in place in many countries, a lot more on-line gaming is taking place.

The growing success of this industry and the multitude of users also draws the  attention to cyber criminals looking for new targets and it turns out the gaming industry has not been prioritising its cyber security.  Cyber security researchers analysts have discovered that half a million gaming companies employees’ information have been breached, along with a million compromised internal accounts on the Dark Web.

The leading video game-maker Capcom (Resident Evil, Street Fighter, and Mega Man) announced  its computer systems were hacked at the end of 2020 , in just the  the latest known cyber attack to hit the games industry.  It said some of its internal networks had been suspended "due to unauthorised access" from outside Capcom. But it said "at present", there was no sign that customer information had been accessed.

The security intelligence firm KELA has inspected  the top  25 publicly listed companies in the gaming sector, delving in to Dark Web marketplaces, and has found a thriving black market including nearly one million compromised accounts related to employee- and customer-facing resources, 50% which were listed for sale in 2020. 

Compromised accounts were found for nearly all of the top 25 gaming companies studied. This could put these firms at risk of customer data theft, corporate espionage, ransomware and more.

KELA said it had tracked ransomware attacks on four gaming companies in recent months. Elsewhere, the researchers found half-a-million gaming employee credentials exposed on the dark web after breaches at third-party firms, many of which were available for free. These could also provide attackers with a useful foothold in victim networks, they warned. KELA has urged gaming companies to invest in ongoing monitoring of their digital assets across the dark web, as well as enhanced staff training on things like password management, and deployment of multi-factor authentication (MFA).

According to the Cloud delivery network provider Akamai Technologies, the gaming community is among the most lucrative targets for hackers to make a quick profit. In its research report, “2019 State of the Internet/Security Web Attacks and Gaming Abuse” Akamai stated that there were 55 billion cases across all industries.

The report highlighted that nearly 67% of credential stuffing attacks target organizations based in the United States. It stated that Russia is the second largest source of application attacks and China is ranked as the fourth highest source country. 
On the other hand, the United Kingdom ranked as the second highest targeted country with Japan, Canada, Australia, and Italy are all also among the countries most targeted.

When considering hacking and other cyber security problems, the gaming industry is frequently ignored, but the evidence shows that the gaming industry is highly vulnerable to security concerns and many customers are completely unaware of how much danger their personal information might be in.

KELA:        BBC:      Infosecurity:        CISO Mag:       TecEze

You Might Also Read:

Businesses Need To Protect Data, Not Just Devices:

 

« WhatsApp Updates Its 'Privacy' Rules
British Police Launch CyberAlarm »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Acalvio Technologies

Acalvio Technologies

Acalvio provides Advanced Threat Defense (ATD) solutions to detect, engage and respond to malicious activity inside the perimeter.

Government CSIRT - Chile

Government CSIRT - Chile

Government CSIRT is the Computer Security Incident Response Team for State networks and government cyberspace in Chile.

Trusted CI

Trusted CI

Trusted CI, the NSF Cybersecurity Center of Excellence is comprised of cybersecurity experts who have spent decades working with science and engineering communities.

CyberKnight Technologies

CyberKnight Technologies

CyberKnight Technologies is a cybersecurity focused value-added-distributor (VAD) headquartered in Dubai and covering the Middle East.

Cypherix

Cypherix

Cypherix is tightly focused on cryptography and data security. We leverage our expertise to deliver state-of-the-art, world-class encryption software packages.

SurePassID

SurePassID

SurePassID is a provider of highly secure, highly extensible multi-factor authentication (MFA) solutions.

Centraleyes

Centraleyes

Centraleyes (formerly CyGov) is a cutting-edge integrated cyber risk management platform that gives organizations unparalleled understanding of their cyber risk and compliance.

iON United

iON United

iON United is a full-service IT security solutions provider and one of the most trusted names in cybersecurity in Canada.

Air IT

Air IT

Air IT are a responsive, client-focused and award-winning Managed Service Provider, helping clients achieve success and transformation through their IT and communications.

Cyware

Cyware

Cyware is the only company building Virtual Cyber Fusion Centers enabling end-to-end threat intelligence automation, sharing, and unprecedented threat response for organizations globally.

Kodem Security

Kodem Security

Our mission is to make AppSec simple. Meet the world’s first dynamic software composition analysis platform. Only Kodem uses runtime intelligence to determine application risk.

Methods

Methods

Methods is the leading digital transformation partner for the UK public sector. We care deeply about making our public services better and have been doing this for over 28 years.

RightCue Assurance

RightCue Assurance

RightCue Assurance identify opportunities for improvement in the Information Security for your organisation and work with you to reduce cyber risk.

Bluerydge

Bluerydge

Bluerydge specialises in cyber security and technology, focusing on the delivery of innovative sovereign solutions through trusted, cleared and experienced professionals.

Cypheria

Cypheria

Cypheria harness the expertise of elite military units and combine it with extensive digital combat experience to deliver unparalleled security solutions for organizations.

Cassini

Cassini

Cassini Cyber Threat Intelligence (CTI) helps protect your organisation from cyber attacks using threat intelligence from trusted New Zealand agencies.