Video Gamers Are In The Target Area

Uploaded on 2021-01-19 in NEWS-Cybersecurity News, FREE TO VIEW

The online gaming industry is much bigger than you might think, with an estimated value of $200 billion in 2020 and with lockdown restrictions in place in many countries, a lot more on-line gaming is taking place.

The growing success of this industry and the multitude of users also draws the  attention to cyber criminals looking for new targets and it turns out the gaming industry has not been prioritising its cyber security.  Cyber security researchers analysts have discovered that half a million gaming companies employees’ information have been breached, along with a million compromised internal accounts on the Dark Web.

The leading video game-maker Capcom (Resident Evil, Street Fighter, and Mega Man) announced  its computer systems were hacked at the end of 2020 , in just the  the latest known cyber attack to hit the games industry.  It said some of its internal networks had been suspended "due to unauthorised access" from outside Capcom. But it said "at present", there was no sign that customer information had been accessed.

The security intelligence firm KELA has inspected  the top  25 publicly listed companies in the gaming sector, delving in to Dark Web marketplaces, and has found a thriving black market including nearly one million compromised accounts related to employee- and customer-facing resources, 50% which were listed for sale in 2020. 

Compromised accounts were found for nearly all of the top 25 gaming companies studied. This could put these firms at risk of customer data theft, corporate espionage, ransomware and more.

KELA said it had tracked ransomware attacks on four gaming companies in recent months. Elsewhere, the researchers found half-a-million gaming employee credentials exposed on the dark web after breaches at third-party firms, many of which were available for free. These could also provide attackers with a useful foothold in victim networks, they warned. KELA has urged gaming companies to invest in ongoing monitoring of their digital assets across the dark web, as well as enhanced staff training on things like password management, and deployment of multi-factor authentication (MFA).

According to the Cloud delivery network provider Akamai Technologies, the gaming community is among the most lucrative targets for hackers to make a quick profit. In its research report, “2019 State of the Internet/Security Web Attacks and Gaming Abuse” Akamai stated that there were 55 billion cases across all industries.

The report highlighted that nearly 67% of credential stuffing attacks target organizations based in the United States. It stated that Russia is the second largest source of application attacks and China is ranked as the fourth highest source country. 
On the other hand, the United Kingdom ranked as the second highest targeted country with Japan, Canada, Australia, and Italy are all also among the countries most targeted.

When considering hacking and other cyber security problems, the gaming industry is frequently ignored, but the evidence shows that the gaming industry is highly vulnerable to security concerns and many customers are completely unaware of how much danger their personal information might be in.

KELA:        BBC:      Infosecurity:        CISO Mag:       TecEze

You Might Also Read:

Businesses Need To Protect Data, Not Just Devices:

 

« WhatsApp Updates Its 'Privacy' Rules
British Police Launch CyberAlarm »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Information Security Systems (ISSCOM)

Information Security Systems (ISSCOM)

ISSCOM provide services to help companies implement Information Security Management Systems (ISMS) by providing consultancy and hands-on assistance.

QMS International

QMS International

QMS is one of the leading ISO certification bodies in the UK and serves clients worldwide.

Identillect Technologies

Identillect Technologies

Identillect Technologies provide a user-friendly secure email solution to protect critical information, with an emphasis on simplicity.

OSIRIS Lab - NYU Tandon

OSIRIS Lab - NYU Tandon

The Offensive Security, Incident Response & Internet Security Lab (OSIRIS) is a security research environment where students analyze and understand how attackers take advantage of real systems.

Digital Ship

Digital Ship

Digital Ship provides news, information, conferences and events focused on digital ship systems, information technology and security relating to maritime operations.

Oak Ridge National Laboratory (ORNL)

Oak Ridge National Laboratory (ORNL)

ORNL conducts basic and applied research and development in key areas of science for energy, advanced materials, supercomputing and national security including cybersecurity.

Scanmeter

Scanmeter

Scanmeter helps identifying vulnerabilities in software and systems before they can be exploited by an attacker.

Naukrigulf

Naukrigulf

Naukrigulf.com is one of the fastest growing job sites in the Gulf, with thousands of registered job seekers and a robust CV database across many sectors, including cybersecurity.

CyberASAP

CyberASAP

CyberASAP provides expertise, knowledge and support to convert academic ideas into commercial products in the cyber security space.

Titans24

Titans24

Titans24 is a Software-as-a-Service security platform for web applications. It prevents attacks on business websites that are protected under 11 cyber-security layers.

SterlingRisk Programs

SterlingRisk Programs

SterlingRisk’s Cyber practice brings experience working with a wide array of clients across a broad spectrum of industries.

Aristi Technologies

Aristi Technologies

Aristi provides cybersecurity risk and compliance services to help manage your unique cyber risks, safeguarding your systems and data and complying with government and industry standards.

Kontron

Kontron

Kontron offers a combined portfolio of secure hardware, middleware and services for Internet of Things (IoT) and Industry 4.0 applications.

Trenton Systems

Trenton Systems

Trenton Systems are committed to providing high-performance computing solutions to customers running mission-critical applications in harsh settings worldwide and across various industries.

Incyber

Incyber

Incyber is a fully integrated network and cybersecurity solutions provider contracted to safeguard public and private enterprise, high value data and sensitive industries.

Anjolen

Anjolen

Anjolen provides expertise in cybersecurity, compliance and cyber forensic services.