Game studio CD Projekt Red has been under a lot of fire recently for the messy Cyberpunk 2077 launch, and now it seems the company isn't getting a break. In a tweet, CDPR announced that it was subject to a targeted cyber-attack, compromising some of the company's internal systems.
The attackers claim to have obtained full source code for Cyberpunk 2077, The Witcher 3, Gwent, an unreleased version of The Witcher 3, along with heaps of accounting, legal, admin, HR, and investor relations documents, and are threatening to send them to journalists if CDPR doesn't pay a ransom.
Important Update pic.twitter.com/PCEuhAJosRFebruary 9, 2021
The attackers claim to have encrypted all the server's data, but CD Projekt Red is currently restoring the data from a backup. Something that the attackers already anticipated, apparently.
CD Projekt Red says that it will not give in to the demands of the attackers, even if that means the data will be released. CDPR claims that to the best of their knowledge, no personal data of players has been compromised. CDPR is currently working together with law enforcement agencies to shed further light on the breach.
The crooks take the money and run, with nothing unlocked.
Or, since they were paid once, they ask for more (with nothing unlocked).
The crooks are the only possible winners here.
Lesson learned is to backup your stuff.
This source here states that, in at least their sample size of 5,000 IT managers of companies that paid a ransom, 95% of them got their data back. It would be bad for business as a ransomware operator if none of them ever unlocked the data, because then nobody would bother paying a ransom for files they know they won't get back anyways.
That being said, paying up only encourages more of the bad behavior because it proves that ransomware attacks are effective, so having a solid backup strategy is always a good plan, along with proper security.
Having an off-site backup system in place is cheaper and just as effective.
Yeah, down here in reality that's not really an option most of the time. Doubly so in the Work From Home era.
I am using an old HP workstation now.
Doesn't have to be expensive, last gen hardware is perfectly fine for it.