Several reports of a 2K Support hack that the studio has now addressed and we're going to go over how it happened and what to do.
First, you should avoid opening any emails from 2K Support and we'd recommend deleting them from your inbox.
Here's what you need to know about the latest 2K Support problem.
2K Support HACKED Statement
2K Support has now addressed the hack that attacked player's email addresses and sent info-stealing malware to users.
The statement provides suggestions on what to do if you have opened emails containing these links but the statement came hours after reports began.
The statement asks users to reset account passwords that are stored in their web browser, which is definitely something that everyone should make sure of.
This extends past NBA 2K23 as 2K is the publisher behind numerous popular game franchises, including NBA 2K, Borderlands, WWE 2K, PGA Tour 2K, Bioshock, Civilization, and Xcom.
The group reiterated that 2K Support will never ask for passwords but the hack specifically targeted email addresses.
BUY NOW: Get NBA 2K23 and start your journey today
What players are reporting
Today, players began receiving emails stating that they opened support tickets on 2ksupport.zendesk.com, the 2K Support ticketing system.
Some users confirmed that these tickets were created but others stated that they weren't the ones that originally opened the ticket.
These emails included an attached file named '2K Launcher.zip' hosted directly on 2ksupport.zendesk.com, under the guise of a new game launcher.
"Thank you for reaching out to 2K Support! The download for the new 2K games launcher can be found below,"
Until this problem is fixed, we'd avoid sending in any 2K Support tickets.
How to tell if it's malware
As we stated already, it's a lot smarter to completely delete the email without opening it but for your own information, the downloaded archive contains a 107 MB executable named '2K Launcher.exe'.
According to VirusTotal and Any.Run, this executable is the RedLine information-stealing malware.
RedLine Stealer is malware that steals information including browser history, browser cookies, saved browser passwords, credit cards, VPN passwords, IM content, system information, and cryptocurrency wallets.