A Fortnite security bug let attackers access user accounts after they clicked a suspicious link that was sent to them. Researchers at Check Point Research found the bug and notified Epic Games in November, which then patched the vulnerability within a few weeks.
Epic Games told The Verge in a statement: “We were made aware of the vulnerabilities and they were soon addressed. We thank Check Point for bringing this to our attention. As always, we encourage players to protect their accounts by not re-using passwords and using strong passwords, and not sharing account information with others.”
After the takeover, attackers could potentially use the accounts to purchase and gift the in-game currency V-Bucks. Check Point says the bug could...