EA domain server "compromised" with phishing scam, EA takes "immediate steps" to disable threat

A report stating that an EA server had been "compromised by hackers" to host a phishing site targeting Apple ID account holders has been posted over on Netcraft.

According to the report, the compromised server is used by two EA websites - like EA.com - which host a calendar based on WebCalendar 1.2.0.

Netcraft states the version was released in September 2008 and "contains several security vulnerabilities" addressed in subsequent releases.

VG247 reached out to EA Corporate Communications' John Reseburg for confirmation of the report.

"While the underlying claims have not been validated, we've taken immediate steps to disable any attempts to misuse EA domains," Reseburg told us.

"We found it, we have isolated it, and we are making sure such attempts are no longer possible."

Netcraft said it has blocked access to all phishing sites mentioned in its report, and informed EA yesterday of the compromise, and stated that the "vulnerable server and the phishing content is still online at the time of publication."

Thanks, AmongTech.