If you think you may have given your login information to a phishing site, here's how to help re-secure your account.
Phishing is a technique used by scammers to try to get your account information and passwords.
Phishing scams typically work by trying to trick you into thinking you're entering information into a legitimate website, when really you’re providing info to a scammer.
Scammers will try to use your login or other account information to access your account and payment information. Avoid giving your info to phishers and scammers by only logging in on official EA sites.
If you’re having trouble or notice things are missing from your account, follow these steps to get help.
Phishers and scammers will try to get you to give out your account information, namely your password. We will never ask you for your password.
Scammers will try to scare you into thinking your account has been compromised when it hasn’t.
You may get a message saying something like “Your account has been temporarily suspended due to suspicious activity. Please log in here to see more information.” This is another attempt to get you to give up your username and password, and logging in there will bring you to a site that isn’t http://www.ea.com.
As a reminder, we’ll never send you a message asking for your login information.
You can come across scams and phishers when you click, visit, or try to make purchases from third-party sites. These sites will try to get you to visit them by advertising great deals on games, in-game currency, gamer accounts, ways to disable digital rights management (DRM), or hacks to modify game content.
Sometimes emails and websites look like they’re officially EA, but they’re actually from a third-party, nonsecure company.
EA sends emails from addresses that include “ea.com.” Be cautious of any email addresses that don't use “ea.com” as the domain name.
Even if they include "ea" somewhere in the email address, make sure it's from an official subdomain.
All ea.com subdomains will lead with the subcategory, then ea.com.
If you see the domain or subdomain written in any other way, this isn't an official EA website.
Yes, e.ea.com is an official EA email address. Because it leads with the subcategory, then ends with ea.com, we can tell it’s a legitimate address.
If you receive a phishing email or message, don’t panic. Your account may not have been compromised. All the phisher may have is your email address, which can be relatively easy to find.
Scammers can duplicate the images and text from an official EA email. If you receive a suspicious-looking email, check who the sender is and where the links in the email are taking you.
The official EA website uses the URL http://www.ea.com. Be aware of any links that don't use “ea.com” as the domain name. Even if they include "ea" somewhere in the URL, make sure it is from an official subdomain, just like with email addresses.
The text of a hyperlink may contain a URL that is not the URL it actually links to.
Notice how in the image below, when you hover your mouse over this link, the URL in the text box in the bottom left doesn't match the original one we’ve hovered over.
Depending on your browser, you can check links like this in the bottom of your browser or in a small text box that hovers over the link.
Make sure that any link you click leads to the place it claims it will take you.
Redirecting is a technique where a scammer embeds something in a link that takes you to the real site initially, but then moves you to a fake page that looks identical.
There are many examples of this, but one simple thing to look out for in any URL is the word “redirect.” For example: http://www.ea.com/redirect?url=http://fakesite.com
See how it says “redirect” in the middle of the URL? This means that this link will take you away from the official EA site. We'll never redirect you from http://www.ea.com to another site.