Ubisoft says it's investigating reports of a new security breach

Ubisoft is investigating whether it suffered a breach after images of the company's internal software and developer tools were leaked online.
Ubisoft is a French video game publisher known for well-known titles, including Assassin's Creed, FarCry, Tom Clancy's Rainbow Six Siege, and the new Avatar: Frontiers of Pandora.
Ubisoft told BleepingComputer that they are investigating an alleged data security incident after security research collective VX-Underground shared screenshots of what appears to be the company's internal services.
In a tweet, vx-underground says that an unknown threat actor told them that they breached Ubisoft on December 20th. Once inside the company's systems, they said they planned to exfiltrate around 900GB of data.
As part of this alleged breach, the threat actor claimed they gained access to the Ubisoft SharePoint server, Microsoft Teams, Confluence, and MongoDB Atlas panel, sharing screenshots of their access to some of these services.
MongoDB Atlas recently disclosed a breach, but based on their disclosure, it does not appear that this incident is related.
The threat actors told vx-underground that they attempted to steal data Rainbow 6 Siege user data but were detected and lost access before they could do so.
Ubisoft was previously breached by the Egregor ransomware gang in 2020, who released portions of the Ubisoft Watch Dogs game's source code.
The company suffered a second breach in 2022 that disrupted its games, systems, and services.
MongoDB says customer data was exposed in a cyberattack.
Long Beach, California turns off IT systems after cyberattack.
Mortgage giant Mr. Cooper says customer data exposed in breach.
Mortgage giant Mr. Cooper hit by cyberattack impacting IT systems.
University of Michigan employee, student data stolen in cyberattack.


This Cyber News was published on www.bleepingcomputer.com. Publication date: Fri, 22 Dec 2023 18:15:29 +0000


Cyber News related to Ubisoft says it's investigating reports of a new security breach