Game studio Ubisoft investigates data security incident allegations


Video game giant Ubisoft said it was investigating allegations that hackers infiltrated its systems this week and attempted to steal data.

A spokesperson for the French company told Recorded Future News that Ubisoft officials are “aware of an alleged data security incident and are currently investigating.”

“We have no more to share at this time,” they added.

The claims were made in a series of social media posts from vx-underground, which maintains the largest collection of malware source codes, samples and articles on the Internet. The account has become well known for its contacts with hackers and ransomware gangs, and it often shares information relayed by malicious actors.

Hackers told vx-underground on Thursday evening that they allegedly had access to Ubisoft’s systems and accounts for “about 48 hours” until the company realized something was wrong and revoked their access.

“They aimed to exfiltrate around 900 GB of data but lost access to it,” according to the vx-underground account. explain.

“The threat actor would not explain how he gained initial access. Upon arrival, they audited user access rights and spent time taking an in-depth look at Microsoft Teams, Confluence and SharePoint.

The vx-underground account shared purported screenshots, provided by the hackers, of Microsoft Teams accounts and other hotspots.

The video game publisher, best known for games like Assassin’s Creed, Far Cry and Prince of Persia, was already attacked by the Egregor ransomware gang in 2020. The group leaked the source code of a popular game.

The company also confirmed in 2021 that a misconfiguration of its IT infrastructure exposed player data from its Just Dance video game series.

If confirmed, the incident would be the latest in a series of headline-grabbing attacks against major gaming studios.

On Thursday, a British court sentenced Arion Kurtaj to an indefinite hospitalization order following his role in multiple attacks on major companies – the largest of which involved Rockstar Games, the developer of Grand Theft Auto.

Kurtaj will remain in a secure hospital for life or until doctors believe he no longer poses a danger to society, with Judge Patricia Lees at Southwark Crown Court saying he remained “determined to commit crimes.” other serious offenses if the opportunity arises.

Less than two weeks ago, Sony started an investigation in reports of a ransomware attack against its subsidiary Insomniac Games, the studio behind popular titles like Spider-Man, Spyro the Dragon and more.

Other gaming giants like Electronic arts, Activision Blizzard, Bandai Namco, Capcom, Red Project CD And Riot Games have each faced cybersecurity incidents in the past three years.

Get more information with the

Future saved

Intelligence cloud.

Learn more.

No previous articles

No new articles

Jonathan Greig

Jonathan Greig is a breaking news reporter at Recorded Future News. Jonathan has worked as a journalist around the world since 2014. Before returning to New York, he worked for media outlets in South Africa, Jordan and Cambodia. He previously covered cybersecurity at ZDNet and TechRepublic.

Leave a comment