Cyberattack on Ubisoft’s IT infrastructure causes a data breach
Ubisoft Entertainment has announced that a cyberattack on the company’s IT infrastructure targeting the popular game series Just Dance left users’ information compromised.
According to Ubisoft’s statement, the cyberattack was specifically aimed at Just Dance and happened as a result of misconfiguration. Although quickly managed, it left personal data of the players exposed. Ubisoft is a French video game company, and its Just Dance release is a popular game series with over 700 songs.
“The data in question was limited to ‘technical identifiers’ which include GamerTags, profile IDs, and Device IDs as well as Just Dance videos that were recorded and uploaded to be shared publicly with the in-game community and/or on your social media profiles. Our investigation has not shown that any Ubisoft account information has been compromised as a result of this incident,” the statement says.
Ubisoft further announced it would notify all potentially impacted by the breach users via email. Going forward, the company will also take proactive steps to ensure no such incident happens again.
The video game company has already suffered from a data breach back in 2020, when Egregor ransomware operators hit Ubisoft and another game developer, Crytek. Allegedly, 20 MB of Ubisoft’s sensitive information was leaked to the darknet as a result.
Earlier this week, Axios revealed that the last two years were characterized by “the wave of resignations” at Ubisoft due to low compensation, lack of opportunities, and frustration with the creative direction. A number of developers told Axios that due to massive resignations, certain projects were delayed and issues unsolved, as “no one was still there who knew the system.”
More from CyberNews:
Subscribe to our newsletter