CD Projekt has just announced that they are the new victim in a cyberattack that leaked the source code of The Witcher 3 and Cyberpunk 2077 along with several sensitive information from the developer.
“Yesterday we discovered that we have become a victim of a targeted cyber attack, due to which some of our internal systems have been compromised.” Explains the studio on the official statement.
An unidentified actor gained unauthorized access to our internal network, collected certain data belonging to CD Projekt capital group, and left a ransom note the content of which we release to the public. Although some devices in our network have been encrypted, our backups remain intact. We have already secured our IT infrastructure and begun restoring the data.
As revealed by the studio, the hacker allegedly has the source code of Cyberpunk 2077, ‘Gwent’, The Witcher 3, and an unreleased version of the latter. More importantly, the hacker threatens the studio to disclose internal documents relating to administration, accounting, investor relations, and more.
The hacker says that if his demands are not met in 48 hours all the data will be sold or leaked online. Internal documents that compromise the leadership of the studio “will b sent to our contacts in gaming journalism”.
CD Projekt’s statement indicates that the studio will not give in to the demands, the hierarchy at the Polish studio will not negotiate with the hacker. “Being aware that this may eventually lead to the release of the compromised data.”
The studio is trying to control the damage that can be done if the documents are made public. CD Projekt affirms that the leak does not compromise the data of players.
In early 2020, Nintendo was the target of a mega cyber attack that leaked personal data from developers and source code of hundreds of games. In November, hackers reportedly leaked the source code for Watch Dogs: Legion. Later that same month, details about Resident Evil Village were leaked online, following a ransomware attack on Capcom.