Ubisoft confirms ‘cybersecurity incident’ and resets staff passwords

Video game developer Ubisoft has confirmed that it suffered a “cybersecurity incident” that caused disruption to its games, systems and services.

The announcement comes after several Ubisoft users reported issues accessing their Ubisoft service last week.

The LAPSUS$ data extortion group, which has claimed responsibility for hacking Samsung, NVIDIA, and Mercado Libre so far, appears to be behind the incident.

Ubisoft Launches “Company-Wide Password Reset”

Video game production giant Ubisoft says it suffered a cybersecurity incident last week.

“Last week, Ubisoft experienced a cybersecurity incident that caused a temporary disruption to some of our games, systems and services,” said company in a brief press release.

“Our IT teams are working with leading external experts to investigate the issue. As a precaution, we have launched a company-wide password reset.”

Based in Montreuil with its studios around the world, the game maker has repeatedly produced hit titles such as Assassin’s Creed, Far Cry, For Honor, Just Dance, Prince of Persia, Rabbids, Rayman, Tom Clancy’s and Watch Dogs.

On March 4, Twitter and Downdetector users reported issues accessing some of the Ubisoft services, which appear to be related to this incident:

Ubisoft drops tweets
Ubisoft users reported issues last week (Twitter)

At this time, there is no evidence that any players’ personal information was exposed during the incident.

The company confirms that all Ubisoft games and services are now working normally.

LAPSUS$ Group Responds to Disclosure

News from Ubisoft confirming that the cybersecurity incident was reported for the first time by The Verge.

Moments later, the admins of what is believed to be Lapsus$’s Telegram group reacted to The Verge’s initial report with a smiling emoji, implying that Lapsus$ is behind the hack:

Lapsus$ seems to claim responsibility
The Lapsus$ group seems to claim responsibility for Telegram (Computer Beep)

Lapsus$ has already leaked gigabytes of proprietary data allegedly stolen from leading companies as Samsung, NVIDIA and Mercado Libre confirmed this month that they suffered a breach.

Data extortion groups like Lapsus$ are breached, but instead of encrypting confidential files like a ransomware operator would, these actors steal and store victims’ proprietary data and release it if their extortion demands don’t are not satisfied.

In 2020, Egregor ransomware hit game developer Crytek and leaked what they claimed were stolen files from Ubisoft’s network. Although at the time, Ubisoft did not confirm the authenticity of the claim.

In this case, however, it does not appear that Lapsus$ or any other malicious actor was able to obtain Ubisoft’s proprietary data, and the investigation is ongoing.

Source link