Insomniac Games, a subsidiary of Sony, faces the aftermath of a Rhysida ransomware attack that occurred in November, leading to the compromise of personal information belonging to its employees. The California-based gaming studio, known for its recent projects like Marvel’s Spider-Man 2 and the upcoming Marvel’s Wolverine, refused to pay a $2 million ransom demanded by Rhysida, resulting in the online leak of over 1.3 million files. The leaked data includes sensitive information such as ID scans, internal documents, and screenshots of the upcoming Wolverine game.
Insomniac Games is taking swift action by sending data breach notification letters to affected employees, acknowledging the emotional toll the cyberattack has taken on its development team. The breach notification letter outlines the period of data theft, between November 25 and November 26, and the subsequent release of the stolen files on the Rhysida ransomware group’s leak site. Insomniac and Sony are providing additional identity protection services and credit monitoring beyond the standard benefits package, aiming to assist affected employees in the aftermath of the ransomware attack.
