The rumors of a cyber attack against Ubisoft circulated online in the last few days, while data extortion group LAPSUS$ claimed to have hacked the company.
Over the last few days, multiple users reported problems accessing some services of the gaming firms.
Ubisoft has finally announced to have suffered a ‘cyber security incident’ that caused temporary disruption.
“Last week, Ubisoft experienced a cyber security incident that caused temporary disruption to some of our games, systems, and services. Our IT teams are working with leading external experts to investigate the issue. As a precautionary measure we initiated a company-wide password reset.” reads the announcement of the company. “Also, we can confirm that all our games and services are functioning normally and that at this time there is no evidence any player personal information was accessed or exposed as a by-product of this incident.”
The company hired external experts to investigate the incident ad determine its impact on data and infrastructure. At this time, there is no evidence of a data breach during the incident and the services are up and running normally.
At this time there are no details about the incident, Lapsus$ gang may have breached the company network and exfiltrated internal data.
The cybercriminal group has recently stolen sensitive data from giant firms, including NVIDIA, and Samsung that already disclosed a data breach.
Thursday, March 10, Lapsus$ ransomware gang announced they’re starting to recruit insiders employed within major technology giants and ISPs, such companies include Microsoft, Apple, EA Games and IBM. Their scope of interests includes – major telecommunications companies such as Claro, Telefonica and AT&T.
This isn’t the first time that Ubisoft suffered a cyber incident, in December the gaming firm discloses a data breach that resulted in unauthorized access to ‘Just Dance’ user data. The security breach was caused by a misconfiguration, the good news is that the problem has been quickly solved.
In October 2020, the Egregor ransomware gang has hit the game developer Crytek and leaked files allegedly stolen from the systems of Ubisoft.
Follow me on Twitter: @securityaffairs and Facebook
|[adrotate banner=”9″]||[adrotate banner=”12″]|
(SecurityAffairs – hacking, Ubisoft)