This Origin Phish Isn't Very Sporting
Cybercrime | News | Scams

This Origin Phish Isn’t Very Sporting

Posted: April 11, 2014 by Christopher Boyd

We’ve observed a Twitter feed claiming to be a support channel for all things EA Sport.

What tends to happen is someone sends a query to the official EA Sport account (@EASPORTSFIFA, note the verified symbol on the profile), at which point the one in question (@EAFlFAHELPUK) will interject into the conversation with a link to visit.

As it uses the same avatar as the official account, recipients may not notice they’ve been sidelined into an entirely different conversation. This is a pretty clever tactic – here’s an example:

eatwteet2

Another one:

Where is the linesman?

The account sending links isn’t verified, and swore at another Twitter user not too long ago – not common behaviour for a support channel!

Yellow card, ref!

The link is a bit.ly link which so far has had 282 clicks since April 2nd. It leads to an EA Sports Origin login page.

uh oh

Origin is EA’s answer to Steam, and all your EA games are tied to your Origin account. Handing that login to phishers could prove expensive if you can’t reclaim your stolen credentials.

Red card, please…

Christopher Boyd

RELATED ARTICLES

Fishing in a lake
Cybercrime

Law enforcement reels in phishing-as-a-service whopper

April 18, 2024 - A major international law enforcement effort has disrupted the notorious LabHost phishing-as-a-service platform.

CONTINUE READING 0 Comments
Cerebral logo
News | Privacy

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million

April 18, 2024 - The Federal Trade Commission (FTC) has reached a settlement with online mental health services company Cerebral after the company was charged with failing to secure and protect sensitive health data.

CONTINUE READING 0 Comments
JuicyFields investment scam
News | Scams

Cannabis investment scam JuicyFields ends in 9 arrests

April 18, 2024 - JuicyFields was an investment scam that urged victims to invest in cannabis production.

CONTINUE READING 0 Comments
A mobile phone in the hands of a young woman in a dark colored t-shirt.
Privacy

Should you share your location with your partner?

April 17, 2024 - Location sharing is popular among couples. But is it something you want in your own relationship?

CONTINUE READING 0 Comments
Giant Tiger logo
News | Personal

Giant Tiger breach sees 2.8 million records leaked

April 16, 2024 - A threat actor claims to be in possession of 2.8 million records originating from a hack at Canadian retail chain Giant Tiger

CONTINUE READING 0 Comments

ABOUT THE AUTHOR

Christopher Boyd

Christopher Boyd

Former Director of Research at FaceTime Security Labs. He has a very particular set of skills. Skills that make him a nightmare for threats like you.

Contributors icon

Contributors

Threat Center icon

Threat Center

Podcasts icon

Podcast

Glossary icon

Glossary

Scams icon

Scams