The attack took place yesterday and the developer refused to cooperate with the hacker …
CD Projekt Red, developer of The Witcher 3 and Cyberpunk 2077, suffered a cyberattack yesterday, according to the company’s own statement (via VG247). The developer’s internal systems have been compromised and part of its networks has been encrypted. In addition, the hacker was able to collect “some data”, although CD Projekt did not specify what.
In response to the attack, the company said the data of players and users of its services was not affected and that the personal information of these groups was not compromised. In addition, the Polish developer was able to restore his systems through backups and sought to contact anyone who might be affected by the data leak.
Also according to CD Projekt’s statement, the hacker obtained the full source codes of Cyberpunk 2077, The Witcher 3, Gwent and an unreleased version of The Witcher 3. Regarding company data, information has been collected on accounting, human resources, administration and even legal documents.
Despite measures to minimize the damage and reverse what is possible, the developer will not be able to prevent the sale or leak of the information obtained by the hacker, which can prove to be very damaging to the company, considering in particular the variety of data obtained. in the cyberattack. Still, CD Projekt’s decision was not to accept the hacker’s requests and to disclose the note he left with his statement on Twitter.
You can view the full version, as well as its translated version, below:
Yesterday we found out that we had been the victim of a cyber attack, as a result of which some of our internal systems had been compromised.
An unidentified agent obtained unauthorized access to our internal network, collected certain data belonging to the CD PROJEKT group, and left a ransom note, the contents of which we made public. Although some devices on our network have been encrypted, our backups remain intact. Our IT structure is already secure and has started to restore data.
We will not agree to the requirements or negotiate with the agent, knowing that this may lead to the possible disclosure of compromised data. We are taking the necessary steps to mitigate the consequences of such disclosure, including contacting any party likely to be affected by the leak.
We are still investigating the incident, but at this point we can confirm that – to the best of our knowledge – the compromised systems did not contain personal data about our players or users of our services.
We have already contacted the relevant authorities, including the police and the president of the office for the protection of personal data, as well as the IT experts working there, and we will cooperate closely with them to fully investigate this incident.
It is not easy for CD Projekt. Recently, the company has faced problems due to the troubled launch of Cyberpunk 2077, even monitored by the Polish Department of Consumer Protection, in addition to the game’s removal from the PS Store. Now, the cyber attack can leave the developer in an even more difficult situation.
See as well: