Video game publisher Ubisoft is currently investigating a reported data breach following evidence shared by prominent researchers from vx-underground. According to the researchers, an unidentified threat actor had unauthorized access to Ubisoft’s infrastructure for approximately 48 hours on December 20, 2023. The breach was discovered, and the intruders were reportedly locked out by administrators.
The method through which the attackers gained access remains unclear, but it’s known that they attempted to access user data from the game Rainbow Six Siege without success. Ubisoft, a multinational gaming company, is renowned for its popular franchises like Assassin’s Creed, Tom Clancy’s Rainbow Six Siege, Far Cry, and Watch Dogs, among others. The threat actor claimed to have accessed Microsoft Teams, Confluence, and SharePoint installations within the company.
In communication with vx-underground, the attackers revealed their intention to exfiltrate approximately 900GB of data stolen from Ubisoft. This incident marks another cybersecurity challenge for Ubisoft, which previously experienced a severe impact on its games, systems, and services in a March 2022 cyber incident claimed by the Lapsus$ extortion gang. Ubisoft has faced cyber threats in the past, with the Egregor ransomware gang targeting the game developer Crytek in October 2020 and subsequently leaking files allegedly stolen from Ubisoft. The recent breach underscores the persistent challenges faced by gaming companies in securing their infrastructure and protecting user data from evolving cyber threats.
Reference