Video game publisher 2K is warning the public not to open any emails from its support account after confirming it had been hacked. “Earlier today, we became aware that an unauthorized third party illegally accessed the credentials of one of our vendors to the help desk platform that 2K uses to provide support to our customers,” the official 2K Support Twitter account posted on Tuesday.
News of the security breach broke yesterday after shared screenshots of phishing emails sent to 2K customers. The emails took the form of unsolicited support tickets. Those who opened the message were subsequently sent a second email prompting them to download “the new 2K games launcher.” Putting the 107MB executable through and , Bleeping Computer found it contained designed to steal any passwords its target may have stored on their browser.
Hey folks, please read an important message from our Customer Support team. Thank you. pic.twitter.com/yKI18eL7mY
— 2K Support (@2KSupport) September 20, 2022
For anyone who may have clicked on a link in the emails, 2K recommends immediately changing any passwords stored in your browser, enabling two-factor authentication where possible, installing anti-virus software and checking that the forwarding settings on your email accounts haven’t been changed.
2K shares the same parent company as Rockstar Games. Over the weekend, the studio suffered an unprecedented security breach that saw early gameplay footage of shared widely online. While there’s no evidence to suggest the two incidents are linked, the Rockstar Games hacker claimed they were also responsible for the recent . On Monday, the company said it was working with the FBI to investigate the incident.