Ubisoft and Crytek Breached?

ZDNet reports on a ransomware gang's claims to have posted user information harvested from Ubisoft's and Crytek's networks. It does not seem certain that this is confirmed, and they note that details about how such data may have been obtained remain unclear. Neither company responded to their requests for comment on the story. They have had contact with the gang: "However, in an email interview with ZDNet, the Egregor gang provided more details about the two incidents. The ransomware operators said they breached the Ubisoft network, but only stole data, and did not encrypt any of the company's files. On the other hand, 'Crytek has been encrypted fully,' the Egregor crew told ZDNet." They say that user accounts are not the only files allegedly compromised:
For the Ubisoft leak, the Egregor group shared files to suggest they were in possession of source code from one of the company's Watch Dogs games. On its web portal, the group touted they were in possession of the source code for the Watch Dogs: Legion game, scheduled to be released later this month. It was, however, impossible to verify that these files came from the new game, rather than an existing release.

For the past year, security researchers have tried to reach out and notify Ubisoft about several of its employees getting phished, with no results, which may provide a clue of how the hackers might have got it.

But while hackers leaked only 20 MB from Ubisoft, they leaked 300 MB from Crytek, and this data contained a lot more information.

The Crytek files included documents that appeared to have been stolen from the company's game development division. These documents contained resources and information about the development process of games like Arena of Fate and Warface, but also Crytek's old Gface social gaming network.
View : : :
4 Replies. 1 pages. Viewing page 1.
Newer [  1  ] Older
4.
 
Re: Ubisoft and Crytek Breached?
Oct 17, 2020, 07:42
4.
Re: Ubisoft and Crytek Breached? Oct 17, 2020, 07:42
Oct 17, 2020, 07:42
 
Seems a phishing credential login not a hack. Fleshy meatbags are usually the weaklink. Certainly in our work it has been 2fa that has saved a few employees bacon due to phishing.
Its not the cough that carries you off but the coffin they carry you off in.
3.
 
Re: Ubisoft and Crytek Breached?
Oct 16, 2020, 23:03
3.
Re: Ubisoft and Crytek Breached? Oct 16, 2020, 23:03
Oct 16, 2020, 23:03
 
Dev wrote on Oct 16, 2020, 22:41:
White hats have been trying to reach ubisoft for a YEAR with no response?!
Wow, next thing we'll hear is how important security is to them.

Depends on which branch of Ubisoft .. or if we are talking about a STUDIO of Ubisoft... Ubisoft is huge.. and what they got seems to be more from the anti-cheat development branch if anything. Ie. nothing of value. Crytek on the other hand was apparently hacked super hard, complete with encryption trojan.
Avatar 54727
2.
 
Re: Ubisoft and Crytek Breached?
Oct 16, 2020, 22:41
Dev
 
2.
Re: Ubisoft and Crytek Breached? Oct 16, 2020, 22:41
Oct 16, 2020, 22:41
 Dev
 
White hats have been trying to reach ubisoft for a YEAR with no response?!
Wow, next thing we'll hear is how important security is to them.
1.
 
Re: Ubisoft and Crytek Breached?
Oct 16, 2020, 20:14
1.
Re: Ubisoft and Crytek Breached? Oct 16, 2020, 20:14
Oct 16, 2020, 20:14
 
Anyone can infect a company but very few can play Crysis Remastered at 8k with ray tracing and ultra settings while maintaining a consistent 240 FPS.
A mask is an IQ test
"All of humanity's problems stem from man's inability to sit quietly in a room alone." Blaise Pascal
Avatar 58135
4 Replies. 1 pages. Viewing page 1.
Newer [  1  ] Older