Privacy Ref Blog

Fallout from a Fallout

It is often that a data breach reveals other issues that a business is experiencing, but it isn’t every day I see the opposite. When I heard about what was happening at Bethesda Softworks and their online game, I was interested immediately.

The background on this is simple enough. Bethesda is a well-known video game maker with a number of well-known titles. Fallout 76 was the newest title in one of their series, but unlike previous titles, was an online game. Many were excited for this title and there special editions of this game offered to those willing to spend extra. Upon the launch of a game with a large amount of bugs and glitches, a number of issues took place.

First, the collector’s editions came with a few items, most notably a canvas bag. Many were disappointed that the bag was not actually made of canvas and instead more of a synthetic material. People began demanding refunds. This is where the issues got worse. A site was set up to process the refund requests, however an issue happened when providing a receipt to these customers. Individuals were getting the information of other customers, including names, emails, and partial credit card information. But it got worse.

It turned out that individuals were able to actually access and edit existing tickets of any person that had submitted one. That means if someone really wanted to, they could close out every ticket and “resolve” them. There were no bad actors that were found to do this, but there was no hacking or other illicit activity. This all happened because of hasty setup and lack of review by Bethesda.

The real moral here is that handling a breach, or any incident, is just as important as preventing such a scenario. Bethesda had an incident with the initial response and requests for refunds. It was bad, but had it been handled well, it would have been a footnote in the otherwise poor launch of their game. However, the mishandling of the refunds, and by extension the inadvertent release of their customers data made it that much worse. A good response may net little, but a poor response can make things exponentially worse.

Privacy Ref provides consulting and assessment services to build and improve organizational privacy programs. For more information call Privacy Ref at (888) 470-1528 or email us at info@privacyref.com

Posted on May 16, 2019 by Ben Siegel


« »

No Responses

Leave a Reply

Your email address will not be published. Required fields are marked *


« »

Subscribe to our mailing list

Please fill out the form below.

Required

Want to find out more?

Simply go to the contact page, fill out the form, and someone from Privacy Ref will be in touch with you. You can also send an email to info@privacyref.com or call (888) 470-1528.

News

April 5, 2019

See you at the Summit
Visit us at Booth 500 at the IAPP Global Privacy Summit. Bob Siegel will be facilitating the CIPM course. April 30th-May 1st, 9 am - 5 pm. Meeting time available to discuss your privacy needs is available for signup here.

Latest Blog Posts

May 17, 2019

1 Minute Quick Privacy Ref-ernces

If you have a moment take a look at our 1 minute videos to get caught up on the latest things going on in the privacy community. California Consumer Protection Act - Ben Siegel discusses the California Consumer Protection Act and how some of the advancing Amendments can drastically change the CCPA.

Continue reading this post...

May 16, 2019

Fallout from a Fallout

It is often that a data breach reveals other issues that a business is experiencing, but it isn’t every day I see the opposite. When I heard about what was happening at Bethesda Softworks and their online game, I was interested immediately.

The background on this is simple enough. Bethesda is a well-known video game maker with a number of well-known titles. Fallout 76 was the newest title in one of their series, but unlike previous titles, was an online game. Many were excited for this title and there special editions of this game offered to those willing to spend extra. Upon the launch of a game with a large amount of bugs and glitches, a number of issues took place.

Continue reading this post...

Other Recent Posts

PRIVACY REF