Skip to main content

A hacker used 2K Games’ support desk to send gamers malware

A hacker used 2K Games’ support desk to send gamers malware


The help desk sent email links containing password-stealing malware

Share this story

2K Games logo in white and red surrounded by a pattern of angular black bars
The Verge

Hackers have really been targeting the gaming industry this week — and seem to have focused on companies linked to Take-Two Interactive.

On Tuesday, game publisher 2K Games notified the public that an “unauthorized third party” had compromised its help desk platform and used it to send malicious links to customers. The disclosure came just one day after Rockstar confirmed that development footage from GTA VI was stolen and leaked by a hacker who had broken into its network and downloaded confidential data.

There’s no sign (yet) that the 2K hack is linked to the earlier breach of Rockstar, but both Rockstar and 2K are owned by Take-Two Interactive, making it an especially damaging week for the parent company’s security record.

2K Games is the publisher of a number of popular franchises across the sports, shooter, and action genres, including Borderlands, BioShock, Civilization, and the NBA 2K and WWE 2K series. Collectively, these games have sold hundreds of millions of units: the NBA 2K franchise alone had sold 112 million copies as of 2021. With this huge base of players, it’s a big deal when one of the company’s trusted information channels — in this case, the support desk, operated through Zendesk — is compromised.

According to reports from Bleeping Computer, on Tuesday, a number of 2K customers received emails referencing Zendesk support tickets they had not created. Attached to the emails were zip files containing executable programs labeled as a new launcher for 2K games — but that actually contained information-stealing malware known as RedLine.

The RedLine malware that was sent to customers is commonly sold on the dark web and is able to locate and transmit a wide range of sensitive data, such as saved browser passwords, email account login details, cryptocurrency wallet information, credit card information, and more. In April, research from Bitdefender identified over 10,000 attacks using RedLine — likely only a fraction of the number that take place on a monthly basis.

So far, 2K has not provided additional information about the number of customers that might have been affected. The company’s Twitter account had not posted any further updates as of Wednesday morning, and the company did not respond to questions from The Verge by time of publication.

Per details shared in the initial tweet, the support desk will remain offline while the company addresses the situation. Any customers who had interacted with the malicious links were advised to install and run an antivirus program, monitor their email accounts for unauthorized changes, and reset any passwords stored in the browser — a task that could prove difficult and time-consuming for anyone affected.

“We deeply apologize for any inconvenience and disruption this matter may cause,” the Twitter statement said.

Today’s Storystream

Feed refreshed 19 minutes ago Midjourneys

The Verge
Andrew Webster19 minutes ago
“There’s an endless array of drama going on surrounding Twitch right now.”

That’s Ryan Morrison, CEO of Evolved Talent Agency, which represents some of the biggest streamers around. And he’s right — as you can read in this investigation from my colleague Ash Parrish, who looked into just what’s going on with Amazon’s livestreaming service.

The Verge
Richard Lawler26 minutes ago
Green light.

NASA’s spacecraft crashed, and everyone is very happy about it.

Otherwise, Mitchell Clark is kicking off the day with a deeper look at Dish Network’s definitely-real 5G wireless service , and Walmart’s metaverse vision in Roblox is not looking good at all.

Asian America learns how to hit back

The desperate, confused, righteous campaign to stop Asian hate

Esther WangSep 26
External Link
Jess WeatherbedTwo hours ago
Won’t anyone think of the billionaires?

Forbes reports that rising inflation and falling stock prices have collectively cost members of the Forbes 400 US rich list $500 billion in 2022 with tech tycoons suffering the biggest losses.

Jeff Bezos (worth $151 billion) lost $50 billion, Google’s Larry Page and Sergey Brin (worth a collective $182b) lost almost $60b, Mark Zuckerberg (worth $57.7b) lost $76.8b, and Twitter co-founder Jack Dorsey (worth $4.5b) lost $10.4b. Former Microsoft CEO Steve Ballmer (worth $83b) lost $13.5b while his ex-boss Bill Gates (worth $106b) lost $28b, albeit $20b of that via charity donations.

Thomas Ricker6:45 AM UTC
Check out this delightful DART Easter egg.

Just Google for “NASA DART.” You’re welcome.

Richard Lawler12:00 AM UTC
A direct strike at 14,000 mph.

The Double Asteroid Redirection Test (DART) scored a hit on the asteroid Dimorphos, but as Mary Beth Griggs explains, the real science work is just beginning.

Now planetary scientists will wait to see how the impact changed the asteroid’s orbit, and to download pictures from DART’s LICIACube satellite which had a front-row seat to the crash.

The Verge
We’re about an hour away from a space crash.

At 7:14PM ET, a NASA spacecraft is going to smash into an asteroid! Coverage of the collision — called the Double Asteroid Redirection Test — is now live.

Emma RothSep 26
There’s a surprise in the sky tonight.

Jupiter will be about 367 million miles away from Earth this evening. While that may seem like a long way, it’s the closest it’s been to our home planet since 1963.

During this time, Jupiter will be visible to the naked eye (but binoculars can help). You can check where and when you can get a glimpse of the gas giant from this website.

Emma RothSep 26
Missing classic Mario?

One fan, who goes by the name Metroid Mike 64 on Twitter, just built a full-on 2D Mario game inside Super Mario Maker 2 complete with 40 levels and eight worlds.

Looking at the gameplay shared on Twitter is enough to make me want to break out my SNES, or at least buy Super Mario Maker 2 so I can play this epic retro revamp.

External Link
Russell BrandomSep 26
The US might still force TikTok into a data security deal with Oracle.

The New York Times says the White House is still working on TikTok’s Trump-era data security deal, which has been in a weird limbo for nearly two years now. The terms are basically the same: Oracle plays babysitter but the app doesn’t get banned. Maybe it will happen now, though?

Richard LawlerSep 26
Don’t miss this dive into Guillermo del Toro’s stop-motion Pinocchio flick.

Andrew Webster and Charles Pulliam-Moore covered Netflix’s Tudum reveals (yes, it’s going to keep using that brand name) over the weekend as the streamer showed off things that haven’t been canceled yet.

Beyond The Way of the Househusband season two news and timing information about two The Witcher projects, you should make time for this incredible behind-the-scenes video showing the process of making Pinocchio.