Threat actors have posted data allegedly stolen from Activision, the maker of the ‘Call of Duty’ videogames, in December 2022.
The attacker posted a dataset on a popular cybercriminal forum, giving away the information for free. The post claims that close to 20,000 records of employee information are included in the database.
The attackers claimed “19,444 unique records of employee info, dumped on December 5, 2022,” adding that the data would be “great for phishing.”
According to the Cybernews research team, the leaked data includes Activision employees’ first and last names, job titles, email addresses, and, in some cases, phone numbers.
On February 20, researchers at VX-Underground announced Activision had suffered a data breach last year and opted to keep the incident away from public scrutiny.
Screenshots of the supposed breach suggest attackers accessed Activision’s corporate Slack environment and game release calendar.
A representative of Activision Blizzard, the parent company, told Cybernews that the security incident occurred on December 4. The representative emphasized that no sensitive data was exposed.
“Our information security team swiftly addressed an SMS phishing attempt and quickly resolved it. Following a thorough investigation, we determined that no sensitive employee data, game code, or player data was accessed,” the company rep told Cybernews.
Earlier this year, Microsoft announced plans to acquire Activision Blizzard for $68.7 billion in cash, reportedly the biggest deal in the tech sector.
The deal would boost Microsoft’s stake in the gaming console market. The company takes up around 30% of the global market with its Xbox gaming machine.
To close the deal with the maker of Call of Duty, Warcraft, Tony Hawk’s, and other popular games, Microsoft first must convince European lawmakers the transfer doesn’t violate EU antitrust laws.
More from Cybernews:
Subscribe to our newsletter