Jun 14, 2021 15:00:00

The developer of 'Cyberpunk 2077' admits that game-related data and employee information were leaked in a cyber attack

CD Projekt , a Polish game developer known as the developer of ' Cyberpunk 2077 ' and The Witcher series, revealed that it had leaked game data and employee information due to a large-scale cyber attack on its official website. I am.

Security breach update --CDPROJEKT
https://www.cdprojekt.com/en/media/news/security-breach-update/

CD Projekt was hit by a cyberattack in February 2021 and stolen source code and internal documents such as 'Cyberpunk 2077,' 'The Witcher 3 Wild Hunt,' 'Gwent Witcher Card Game,' and 'Unreleased Version of The Witcher 3.' It was. It has also been revealed that the data stolen by this cyber attack is sold by hackers for over 100 million yen.

The developer of 'Cyberpunk 2077' is attacked by a cyber attack and the source code of the game and internal documents are stolen --GIGAZINE

CD Projekt seems to have continued to investigate the cyber attacks carried out against the company in February 2021, and revealed the details on June 10, 2021. In past reports, it was said that 'data stolen from the server of CD Projekt is sold on the Internet', but CD Projekt also said that 'internal data illegally acquired by cyber attacks is still on the Internet. It is distributed on the Internet, 'and admits that the data leaked by cyber attacks is sold on the Internet.

CD Projekt also notes that the leaked data could include not only game-related data, but also employee and contractor-related data. However, the details of the leaked employee data have not been confirmed yet. In addition, it has not been possible to confirm whether the leaked data may have been tampered with.

CD Projekt not only works with the Polish police and several experts and law enforcement agencies, but also keeps in touch with the International Criminal Police Organization and the Europol Organization.

Since the cyber attack in February 2021, CD Projekt has taken several measures to protect and strengthen the internal system in preparation for future cyber attacks, and the following are listed as some of them.

・ CD Projekt's core IT infrastructure has been redesigned and deployed
· Implementation of a new next-generation firewall with advanced anti-malware protection
・ Adopt new remote access solution
· Limit the number of privileged accounts and access to them
· Install new mechanisms to protect endpoints, servers and networks
-Improved event monitoring mechanism
・ Expand domestic security sector
· Establishing partnerships with multiple external cybersecurity and IT specialists

In addition, CD Projekt said, 'We will do our best to protect the privacy of our employees and other stakeholders, regardless of the authenticity of the employee data leaked on the Internet.' We promise to take action against the parties that sell our products.