Publisher 2K Games has been the victim of a cyber attack in which hackers managed to penetrate the company’s help desk. Subsequently, emails containing malware were allegedly sent to gamers via the helpdesk account.The cyber attack took place on September 20, after which
emails were sent to gamers on behalf of the 2K helpdesk containing a link to the so-called new 2K launcher. Therefore, 2K Games has closed the helpdesk for the time being. All recent e-mails from the helpdesk must therefore be seen as fake. As far as is known, no user data was stolen during the cyber attack; it only seems to be a compromised helpdesk account.
Hey folks, please read an important message from our Customer Support team. Thank you. pic.twitter.com/yKI18eL7mY— 2K Support (@2KSupport) September 20, 2022
2K advises victims not to open the email and the link sent in it. If this has already happened, the company recommends that you change all passwords stored in the browser, enable two-step verification, use an antivirus program and verify that no email settings have been changed.
BleepingComputer’s investigation shows that the fake launcher in the emails is actually RedLine Stealer malware. This software is commonly used to steal locally stored credentials. In this case, the program would have searched for sensitive data in files from FileZilla, Discord, Steam and web browsers, among others.