GAMING GIANT EA has suffered a security major balls-up after its website leaked the personal details of gamers signing up for its FIFA 20 Global Series competition.
When players started entering their personal information on EA's website to register for the tournament, they noticed that there was as already information on the screen - er, somebody else's information. As per Engadget, this included their username, email address and date of birth.
EA was quick to acknowledge the breach and said it took down the page as soon as it became aware of the problem.
We're aware of a potential issue affecting the registration page for the EA SPORTS FIFA 20 Global Series that went live earlier today. We take these matters seriously, and we immediately took down the page while we investigate the matter. We'll share updates as soon as possible.— EA SPORTS FIFA (@EASPORTSFIFA) October 3, 2019
It's as yet unclear if the breach has been reported to the ICO. Under GDPR rules, if EA can't prove the screw-up was not due to negligence, it could face a penalty of up to €20m or four per cent of its annual revenue.
The breach, ironically, occurred just hours after EA - in a bid to celebrate er, 'National Cyber Security Month' - announced that users switching on two-factor authentication will net themselves a month of its Origin Access Basic subscription service for free. µ
Social network handed over info in 88 per cent of cases
Straight outta beta
But quickly backtracks on sharp-tongued remarks