Nintendo announced today that around 160,000 accounts were compromised since the beginning of April. Hackers were able to abuse this integration and compromise the accounts using Nintendo’s legacy Nintendo Network ID (NNID) system, which allows people to log into their Nintendo Account using their NNID credentials. While Nintendo did not specify how the hackers were abusing NNID, they did announce that they are disabling the ability to authenticate using NNID. They also warned that hackers might have gained access to more Personally Identifiable Information (PII) other than credit card information, such as birthdate, region, country of origin, etc.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased