Information reaching Kossyderrickent has it that Ubisoft has successfully fought of a hack that sought to steal 900gb of data.
Following the massive ransomware attack against Insomniac Games, Ubisoft was apparently targeted by hackers who tried stealing almost 1 terabyte of data.
Speaking with Bleeping Computer, the European company confirmed they are currently investigating an alleged data security incident following a report from VX-Underground, which also provided proof of how hackers had access to the company’s Microsoft Teams, Confluence, and SharePoint. The hackers had access to Ubisoft’s data for around 48 hours before the administration realized what was happening and cut off access. In the end, it seems like the attack did not have major consequences, as the hackers lost access before they could steal the 900 GB of data that was targeted.
Apparently, the “threat actor” would not share how they got initial access, but upon entry into Ubisoft’s internal systems, the hacker “audited users access rights and spent time thoroughly reviewing Microsoft Teams, Confluence, and SharePoint”.
Access was revoked before the threat actor successfully exfiltrated Rainbow Six Siege user data.
“We are aware of an alleged data security incident and are currently investigating. We don’t have more to share at this time,” Ubisoft said in a statement to BleepingComputer.
“They aimed to exfiltrate roughly 900GB of data but lost access,” vx-underground adds. It’s not clear what, if any, data the hacker obtained before they were kicked from the system.
December 20th an unknown Threat Actor compromised Ubisoft. The individual had access for roughly 48 hours until administration realized something was off and access was revoked.
They aimed to exfiltrate roughly 900gb of data but lost access.
Discover more from KossyDerrickent
Subscribe to get the latest posts sent to your email.