this post was submitted on 29 Feb 2024
362 points (98.1% liked)

Games

32371 readers
1263 users here now

Welcome to the largest gaming community on Lemmy! Discussion for all kinds of games. Video games, tabletop games, card games etc.

Weekly Threads:

What Are You Playing?

The Weekly Discussion Topic

Rules:

  1. Submissions have to be related to games

  2. No bigotry or harassment, be civil

  3. No excessive self-promotion

  4. Stay on-topic; no memes, funny videos, giveaways, reposts, or low-effort posts

  5. Mark Spoilers and NSFW

  6. No linking to piracy

More information about the community rules can be found here.

founded 1 year ago
MODERATORS
[email protected]
[email protected]
[email protected]
[email protected]
362
Epic Games reportedly hit by 189GB hack, including login and payment info (www.rockpapershotgun.com)
submitted 8 months ago by [email protected] to c/[email protected]
40 comments fedilink hide all child comments
 

The report comes from Cyber Daily, who also broke the news of last year's confirmed hack attack on Insomniac Games. The site claims that new ransomware group Mogilevich are the culprits, as per the screencap of a darkweb posting above, and that the hackers are now trying to get Epic or another party to pay up for the return of the data, with a deadline of 4th March.

Epic, however, say that they've yet to see any proof that a ransomware attack has taken place. "We are investigating but there is currently zero evidence that these claims are legitimate," a spokesperson told Eurogamer this morning.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 55 points 8 months ago (4 children)

No, when you store your card, it doesn't actually store the whole card details. It communicates with the payment processor and when the card is approved, it gets back a token that says "this card is valid", so in the future they just have to send that token and the payment processor says "yup I know the card you're talking about".

At least that's how it's supposed to be. You're really not supposed to store card info yourself.

[–] [email protected] 27 points 8 months ago

That's the ideal, but not always the case. Last time I read the PCI rules, merchants could (still) handle/store card details just as they could before the hands-off approach existed; it just required someone to attest that precautions were taken. I'm sure you can guess how foolproof that is.

[–] mnemonicmonkeys 17 points 8 months ago

At least that's how it's supposed to be. You're really not supposed to store card info yourself.

Don't forget that we're talking about a company that took 3 years to add a shopping cart to their store

[–] [email protected] 7 points 8 months ago (1 children)

My last role was in payment processing and this is exactly how we did it.

[–] [email protected] 4 points 8 months ago (1 children)

Mine was too. We still had a couple systems using the old methods, but mostly had moved to the token system.

You also just get laid off? They took out ~50% of the payments department at my last job

[–] [email protected] 2 points 8 months ago

Nah, got laid off last March.

[–] [email protected] 1 points 8 months ago (1 children)

Just don't use a debit card?

Credit cards have all sorts of consumer protections if the card gets stolen.