GOT(IT) #17: Exploit in Blizzard’s games, one third of global firms breached, plus the cryptocurrency craze

Blizzard_Entertainment_HQ_statue.jpgAn exploit in games with such a following could be atrocious. Security in online games is an odd, but extremely dangerous niche for attackers to focus on.

GOT(IT) #17. We have great fans of Blizzard games at Prey, we even managed to recreate the coin drop sound from Diablo! With that in mind, we also know the reach of their online servers, and how bad an attack could be.

But that’s not all! 2017’s security-threat tendencies have been reviewed and we’ve gained a little insight on what comes next.

Google Project Zero Found Exploit in All Blizzard Games


The security research team from Google, Project Zero, found a serious of cyber vulnerabilities that attackers could have exploited to execute malicious code on all gamer’s computers.

Games like Diablo III, Starcraft II, and Overwatch were open to DNS rebinding attacks, that could have potentially allow any website to run arbitrary code, as the team’s researcher Tavis Ormandy detailed.

The exploit was reported by Ormandy back in December, and Blizzard answered with a silently-rolled fix the researcher calls “bizarre”, because of its unnecessary complexity.

The company specified that they are working on a more robust patch that will roll out soon, but the issue raises a red flag for all major game companies around the world: with millions of periodic users each day, hackers could have found a new niche in online gaming.


One Third of all Global Firms Breached in 2017

Ruby-World-Map.pngMajor cyber-security firms are starting to review last year’s threat tendencies and we are starting to see the results of a year that was attack-packed.

The security and defense contractor, Thales, released its 2018 Thales Data Report and reveled in its analysis that about 36% of the world’s global organization has been a victim of a breach.

The study gathered the feedback from over 1200 senior IT executives from all around the globe, with staggering results: 67 percent of them were breached and 44 percent of them believed they were still vulnerable to data threats.

What’s also noticeable is the major shift to Cloud Services, since almost every organization (94%) stores sensible data in cloud and mobile environment.

To counter the threat presents in cloud-driven models, Thales recommends encryption as a must-have prevention tool: “there’s no sense in building a fortress when at the same time its leaky”, said the firm’s CTO Jon Geater.


The Cryptocurrency Craze Fueled Attacks and Scams

BN-WN988_3gND8_M_20171212035002.jpgAs it happens with most things techy that burst in popularity, cryptocurrencies caught the attention of scammers, attackers and thieves, who found a new niche in the growing digital market.

In the past weeks, we have seen all kinds of exploits and forced-mining attacks. From simple resource hijacking through website tabs, to Wi-Fi injected mining.

According to Malwarebytes Labs 2017 State of Malware Report, cryptocurrency mining has become the go-to side activity of most cyber-criminals. Well… It isn’t shocking! Their rocketing values, the user-privacy possibilities it provides, and the simple fact that it’s still a young with a lot to learn makes it the perfect scenario for malicious activity.

However, it’s not all about the cyber-criminals. Scammers are booming, with currencies like BitConnect that take advantage of an amazed public that’s ready to ride the virtual currency train. They are not the first scam, and they will not be. So… Be cautious! Not only security-wise.


What do you think cyber-crime is going to focus on this year? Gaming? IoT? The cryptocurrency market? Share your opinion with us! (Let’s hope the answer’s not ‘all’)


Nicolas Poggi

Nicolas Poggi

Nicolas Poggi is the head of mobile research at Prey, Inc., provider of the open source Prey Anti-Theft software protecting eight million mobile devices. Nic’s work explores technology innovations within the mobile marketplace, and their impact upon security. Nic also serves as Prey’s communications manager, overseeing the company’s brand and content creation. Nic is a technology and contemporary culture journalist and author, and before joining Prey held positions as head of indie coverage at TheGameFanatics, and as FM radio host and interviewer at IndieAir.