After a targeted cyber attack, the source codes of CD Projekt Red games got stolen and reportedly sold at the dark web auction for $7 million. The game included The Witcher 3 (contained the unreleased version), Gwent: The Witcher Card Game and Cyberpunk 2077.
Following the cyber attack, a ransomware note had been delivered to the CD Projekt Red that threatened them to either sell their information or leak them if the company does not come to an agreement. The cyber attack has also left the company’s game data along with other legal documents compromised such as legal, accounting, investor relations and HR.
A news portal had stated that an auction had been created on an online forum named XSS for selling the stolen files. The bidding started at $1,000,000 and exceeded $500,000 in increments. KELA, the darknet intelligence reporter, had been monitoring the auction and had announced that the auction had been closed after the hackers named redengine got a satisfactory offer outside the forum. However, the buyer was not identified but the purchase had been made bearing no further intention of selling or distribution.
Briefly following the initial cyber attack, the CD Projekt Red had issued a public statement.
“Yesterday, we discovered that we have become a victim of a targeted cyber attack, due to which some of our internal systems have been compromised,” CDPR tweeted. “An unidentified actor gained unauthorized access to our internal network, collected certain data belonging to CD PROJEKT capital group, and left a ransom note the content of which we release to the public.”
The cybersecurity experts analysing the ransom note had identified the perpetrators unofficially. The hacking group HelloKitty. The game developer had been in contact with the authorities under investigation.
CDPR’s statement read, “We are taking necessary steps to mitigate the consequences of such a release, in particular by approaching any parties that may be affected due to the breach.”
Furthermore, the statement had mentioned that the developers would not negotiate or pay any kind of ransom. They are aware that this step could lead to the leakage of the crucial information of the company.
Disclaimer: Read the complete disclaimer here.