Fortnite could be facing a large suit over a data breach. After a flaw in the login systems was discovered earlier this year, a law firm is now filing a class-action suit against Epic Games, the publisher of the massive battle royale game.
Franklin D. Azar & Associates is seeking affected players to join the suit, saying you may have a claim if your Epic Games account incurred charges on a linked card that you did not authorize.
The breach in question, as discovered by cybersecutiry firm Check Point Software Technologies, allowed hackers to control accounts and purchase in-game items, posing as the hacked account. It allowed hackers to utilize flaws in Epic sub-domains to get into accounts without even needing passwords.
Epic acknowledged and fixed the issue, though Azar & Associates notes that it was not until two months after the flaw was uncovered and there was no disclosure of how many accounts were affected.
"Fortnite users have no guarantee that the above security measures will in fact adequately protect their personal information," the claim says. "Fortnite users therefore have an ongoing interest in ensuring that their personal information is protected from past and future cybersecurity threats."
Despite its global success, Fortnite has also experienced a few stumbles this year. Reports of crunch at the Epic offices paint a dreary picture of working—though a recent two-week break might be addressing that—and Epic's found itself at the center of most loot box conversations. In front of the U.K. parliament, Epic marketing director Matt Weissinger said the company did not think its games were addictive. But the popularity of Fortnite mixed with the high interest in its cosmetics and purchasables seems to have attracted folks who poke around for ways to exploit that. People affected could now look to make a case over it.