Security researchers at Check Point and CyberInt discovered vulnerabilities in the Origin gaming platform from Electronic Arts. They found one of their subdomains redirected to an abandoned host on Microsoft’s Azure cloud computing service that was free to register by anyone. The researchers were able to register “ea-invite-reg.azurewebsites.net”” as the name of their own web application service on Azure. The effect was a redirection of authenticated EA players to the researchers’ server without the victim’s SSO token.”
Source: https://www.bleepingcomputer.com/news/security/ea-fixes-origin-game-platform-to-prevent-account-takeovers/