Accounts with EA’s Origin service are reportedly being hijacked, with what looks like clear evidence of hackers being able to change passwords or email addresses belong to Origin accounts. It’s not obvious at this stage whether it’s something that’s affecting the entire service, or isolated incidents, but it’s looking more likely to be the latter.
Emails from Origin saying that passwords have been changed seems to be the first indicator that an account has been compromised. Digital Foundry‘s Richard Leadbetter was a recent victim of this, although a thread on GAF from two days back shows a fair number of support requests on EA’s own public forums – it’s definitely more than just one or two…
EA are apparently rather steadfast on the opinion that there’s nothing wrong with their security. “At this point, we have no reason to believe there has been any intrusion into our Origin database,” said a spokesperson.
As this becomes more and more frequent, it’s not hard to imagine a future where each and every user account is protected via something like Google’s 2 Step authentication, which requires a six digit code alongside your credentials each time you connect on a new computer. The code is dynamically generated on a smartphone, requiring the hacker to also have physical access to your phone.