Japanese video game developer and publisher Capcom has disclosed a cyberattack that impacted business operations over the weekend.
Japanese game developer Capcom has admitted to have suffered a cyberattack over the weekend that is impacting business operations.
The company has developed multiple multi-million-selling game franchises, including Street Fighter, Mega Man, Darkstalkers, Resident Evil, Devil May Cry, Onimusha, Dino Crisis, Dead Rising, Sengoku Basara, Ghosts ‘n Goblins, Monster Hunter, Breath of Fire, and Ace Attorney as well as games based on Disney animated properties.
The Notice Regarding Network Issues published by the company states that on the morning of November 2nd, 2020 is suffered a cyberattack, In response to the incident the game developer shut down portions of their corporate network to prevent the malware from spreading.
“Beginning in the early morning hours of November 2, 2020 some of the Capcom Group networks experienced issues that affected access to certain systems, including email and file servers. The company has confirmed that this was due to unauthorized access carried out by a third party, and that it has halted some operations of its internal networks as of November 2.” reads the Notice Regarding Network Issues published by the company. “Capcom expressed its deepest regret for any inconvenience this may cause to its various stakeholders. Further, it stated that at present there is no indication that any customer information was breached.”
Capcom launched an investigation into the incident, it also notified the police as well as other related authorities.
The company published a notice on its site warning visitors that emails and document requests will not be answered due to the cyber attack that impacted its email systems.
The attack, though, has not “affected connections for playing the company’s games online or access to its various websites.”
The good news is that this incident has not impacted connections for its players and that it has not found any evidence that customer data was stolen.
The issues suffered by the company suggest the involvement of a ransomware, this means that we cannot completely exclude that threat actors have also exfiltrated data according a classing “double extortion” model.
[출처 : SecurityAffairs / 11.04.]