Cyberpunk 2077 developer faces a ransomware attack days after a new hotfix; source code out
The company also showcased a screenshot of the demands that the hackers left in exchange for access to the encrypted data. Here is everything we know about the CD Projekt Red ransomware attack and Cyberpunk 2077 hotfix.
CD Projekt Red, the video game developer, and publisher behind notable titles like Cyberpunk 2077 and Witcher 3 has just shared a new announcement. As part of the announcement, the company revealed that it has faced a major ransomware attack. This hack allowed external actors, access to its internal network. CD Projekt Red stated that hackers were able to encrypt some computing devices and grab “certain data”. The company also showcased a screenshot of the demands that the hackers left in exchange for access to the encrypted data. This hack attack came just days after the company rolled out a new hotfix for Cyberpunk 2077. Here is everything we know about the CD Projekt Red ransomware attack and Cyberpunk 2077 hotfix.
CD Projekt Red victim of a ransomware attack, data leaks online
The game developer took to Twitter to disclose the hack sharing its official statement and the ransomware demand. CD Projekt Red noted that it will not comply with the demands or negotiate with the hacker. It also stated that it does not believe that the “compromised systems” contained “any personal data” on players and users that use CD Projekt Red services. The company stated that its backups are unaffected and it is working to restore the encrypted data. It is also aware that this move may result in the release of “the compromised data”. To prepare for this eventuality, the company is “approaching any parties that may be affected due to the breach”.
Important Update pic.twitter.com/PCEuhAJosR
— CD PROJEKT RED (@CDPROJEKTRED) February 9, 2021
In addition, the company has already approached authorities including law enforcement, the President of the Personal Data Protection Office in Poland, and the IT forensic specialists. The ransomware demand claimed that the hacker accessed the source code of Cyberpunk 2077, Witcher 3, Gwent, and “an unreleased version of Witcher 3”. It is threatening to release the source code online along with internal legal, HR, investor, and financial documents. The hacker also stated that it will share the documents with “contacts in gaming journalism” which will affect the reputation of the company. Just hours after the disclosure, it looks like the compromised data has already leaked online. The hacker seems to be auctioning off the source code on EXPLOIT forums starting from $1,000,000.
CD Projekt Red's ransomed data has been leaked online. pic.twitter.com/T4Zzqfn78F
— vx-underground (@vxunderground) February 10, 2021
Cyberpunk 2077 gets a new hotfix to fix a potential security vulnerability
The information regarding the hack came just hours after CD Projekt Red release a hotfix for Cyberpunk 2077. This is the second hotfix that the company has rolled out in the last two weeks to fix issues with the game. The hotfix 1.12 is out for Cyberpunk 2077 players on Windows and it fixes the “buffer overrun” problem and removes/replaces “non-ASLR DLLs”. Both these changes fix security issues in the modding system for the game.