Stories
Slash Boxes
Comments

SoylentNews is people

posted by Fnord666 on Saturday April 25 2020, @03:35PM   Printer-friendly
from the another-day-another-breach dept.

Nintendo Confirms Breach of 160,000 Accounts:

Over the past few weeks, Nintendo gamers have been reporting suspicious activities on their accounts. According to the complaints, aired out on Twitter and Reddit, unauthorized actors were logging into victims' accounts and abusing the payment cards connected to the accounts to buy digital goods on Nintendo's online stores, such as V-Bucks, in-game currency used in Fortnite.

In a Friday statement, Nintendo said that attackers have been abusing its NNID (Nintendo Network ID) legacy login system since the beginning of April to hack into the accounts. NNID was primarily used for the Nintendo 3DS handheld and Wii U console (both now discontinued). This is different from a Nintendo account, which is used for the Nintendo Switch (Nintendo's most recent gaming console, released in 2017).

A NNID can be linked to a Nintendo account and used as a login option. If attackers were able to access a linked NNID, they could then access the linked Nintendo account. From there, they'd have access to payment methods (via PayPal or payment cards) necessary for making in-game purchases.

Nintendo did not provide further detail about how attackers had accessed NNID accounts other than to say they were "obtained illegally by some means other than our service." It has now disabled the ability to log into a Nintendo account using NNID.

In response to recent incidents related to some Nintendo Accounts, it is no longer possible to sign into a Nintendo Account using a Nintendo Network ID. We apologise for any inconvenience caused. Please visit our Support website for more information: https://t.co/GMrXr5OHW0

— Nintendo UK (@NintendoUK) April 24, 2020

Attackers may have also been able to access users' nicknames, dates of birth, countries and email address information, all of which were associated with the NNID, Nintendo warned. Credit card data was not accessed.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 0) by Anonymous Coward on Sunday April 26 2020, @12:38PM

    by Anonymous Coward on Sunday April 26 2020, @12:38PM (#987271)

    funny how that works.