Since the release of Cyberpunk 2077, CD Projekt falls from Charybdis to Scylla. And if we could think of the company back on an upward slope, others decided otherwise to dig into internal servers.
More than heckled marketing, bugs that keep popping up out of nowhere, disappointed people who have been on the crusade for months and never let go … And now, this. CD Projekt RED revealed on Twitter to be a major cyber attack victim, with ransom demand expiring within 48 hours.
Important Update pic.twitter.com/PCEuhAJosR
– CD PROJEKT RED (@CDPROJEKTRED) February 9, 2021
Yesterday we discovered that we had been the victim of a targeted cyberattack and that our internal systems had been compromised.
An unidentified individual has gained unauthorized access to our internal work network, collected data belonging to the CD Projekt group, and left a ransom note, the contents of which we share publicly.
If some devices on our network have been encrypted, our backups remain intact. We have already secured our IT infrastructure and started restoring our data.
We will not give in to the demand or negotiate with this individual, and we are aware that this may end with the release of the compromised data. We are taking the necessary measures to mitigate the consequences of such a publication by contacting the parties who could be affected by this violation.
We are still investigating this incident but can confirm that our knowledge and the compromised systems did not contain any personal data of players or users of our services.
We have already contacted the relevant authorities, law enforcement, and the Data Protection Officer and IT forensics specialists, and we will cooperate in the investigation of this incident.
The message left by the hacker (s) warns that they have recovered the full source codes of Cyberpunk 2077, The Witcher 3, Gwent, and another version of The Witcher 3 (on PS5 and Xbox Series X | S?), as well as administrative documents.
It is explained that if no agreement is reached, the files will be sold or posted online, and the documents will be sent to journalists.
The idea behind the maneuver would be to tarnish the company’s image by revealing an operation described as “crappy” and that investors no longer have confidence in.
One way of further driving the group, which, in the hacker’s head, deserves these reprisals after the release of Cyberpunk 2077 and the multiple scandals concerning its end state and the treatment of development teams management.
We obviously hope for the studio, which had already had to deal with a theft and a ransom demand in 2017, will manage to get out of this situation, which is neither fair nor deserved.