The Polish video game company CD Projekt Red, behind Cyberpunk 2077, has revealed that it was attacked by ransomware, during which attackers were able to gain access to its internal network, encrypt certain terminals and steal data. In addition, the hackers they left a ransom note to their victim company.
The company stressed that it is not willing to pay ransom to hackers nor to negotiate. She added that she does not consider that personal data of players or users of her services have been leaked.
CD Projekt Red talked about the security incident through him Twitter, where he also announced the ransom note left by the attackers, who claim to have gained access to the source code of Cyberpunk 2077, Witcher 3, Gwent, as well as an "unreleased version of The Witcher 3". The hackers threatened to publish the source code, along with internal company documents referring to legal and financial issues, as well as human resource management issues, in case they do not reach an agreement.
In its announcement, CD Projekt Red states that it has shielded its infrastructure and has already begun the process of restoring data from backups, which, it says, remained intact and intact. In addition, he states that he has informed the competent authorities, while he has also contacted security experts.
This ransomware attack comes immediately after the episodic release of Cyberpunk 2077. The game was released with various bugs and performance issues on PCs, while it was almost impossible to run properly on older consoles. A little later, the Sony withdrew the game from PlayStation Store, offering users the option of a refund, while a similar option was offered by Microsoft.
CD Projekt Red has been widely criticized for its decision to release a game that critics say is incomplete. For its part, the company committed to solving the problems related to the way Cyberpunk 2077 runs.
Meanwhile, the company is being sued by investors, who claim they were misled about the performance of the stock before its release. The company has also been criticized for publishing allegations that its employees were forced to work overtime during the months leading up to the game's release.
It is worth mentioning that this is the second time that CD Projekt Red has been ransomware attacked, with the first taking place in 2017.
The ransomware attack on CD Projekt Red adds to a long list of similar incidents that occurred on Capcom, Crytek and Ubisoft, whose systems were compromised by their operators Ragnar Locker and Egregor.