Watch Dogs: Legion is releasing soon but some unsettling events have occurred. ZDNet has reported how Ubisoft has become one of the latest victims to have its files stolen by a ransomware gang. This theft may actually include the source code for the upcoming game.
A group called Egregor has posted data online indicating it has obtained files from Ubisoft’s internal networks. Earlier this week, it posted on its site that it was in possession of the files. However, it is reported there is only 20 MB of data. Ubisoft has also had advanced notice that multiple employees have fallen prey to phishing scams.
Hey @Ubisoft, what would happen if someone from your company registers to @abuse_ch‘s I Got Phished (https://t.co/mvOrnG5uDR) service?
— MalwareHunterTeam (@malwrhunterteam) February 1, 2020
Can you guess it? It’s not that hard…
That was not the first notice given to Ubisoft, either. Barely four months earlier, the same team tried to provide even greater details, but they went unnoticed.
These the roles/titles of the people who got phished at @Ubisoft in a campaign (by an actor basically not even trying) that would fail 100% at a company where there is at least a little care about sec. I thought some big company like them would care not a little, but much…
— MalwareHunterTeam (@malwrhunterteam) October 18, 2019
😫 pic.twitter.com/9Lj5A4qZdv
ZDNet was unable to get a response from Ubisoft, but it was able to contact Egregor. It stated that data had been stolen but not encrypted. This means that Ubisoft has not lost any of the files, but the threat these files could be released to the public is still a real possibility. These types of events seem to be a new trend at Ubisoft, as other leaks have also happened in the last year.