Last week, it became known that the Japanese corporation Capcom suffered from a hacker attack, and the hack affected the game developer's business operations, including the operation of the email system.
It was officially reported that the attack took place on the morning of November 2, 2020 and affected some of the Capcom Group networks, which caused problems in the operation of a number of systems. So, failures occurred with the already mentioned e-mail and access to file servers, but did not affect the availability of online games and company sites. Parts of the corporate network appear to have been shut down by Capcom employees themselves to prevent further spread of the threat.
As Bleeping Computer later reported, with reference to the cybersecurity researcher Pancak3, who discovered a sample of the malware that attacked Capcom, the company was attacked by the ransomware Ragnar Locker. In a ransom note, the hackers wrote that before encryption began, they stole about 1TB of files from Capcom corporate networks in Japan, the United States and Canada. These included: accounting files; bank reports; information on budgets and revenues; files marked as confidential; tax documents; intellectual property; service business information; personal information of customers and employees (for example, data on passports and visas); data on incidents; corporate agreements and contracts; non-disclosure agreements; confidentiality agreements; sales summary.
At the same time, the company stated that there is no evidence that attackers have compromised any information about Capcom customers. However, these statements contradicted the data published by hackers, which were studied by the journalists of Bleeping Computer.
On November 16, 2020, Capcom representatives unveiled new statementin which they notify their customers about data breaches. Capcom finally admitted that the hackers had stolen not only confidential corporate documents, but also information from customers and employees of the company. In total, about 350,000 people were affected, although the exact figure has yet to be determined (some logs were lost due to the attack).
It is known that in the course of the incident, hackers gained access to the names of clients, their addresses, information about the sex, phone numbers, e-mail addresses, dates of birth, photos, names of investors, as well as information on the number of blocks of shares. The cybercriminals also managed to learn a lot about former and current Capcom employees: names, addresses, passport details, signatures, dates of birth, phone numbers, photos, email addresses, and much more.
Capcom emphasizes that the leak did not affect the financial information of customers and employees (data on bank cards or payment transactions), as it is processed by a third-party service provider.
As for business information stolen by hackers, a lot of confidential information has already been found among these documents, including possible release dates for various games (for example, Resident Evil Village, it seems, are planned to be released in April 2021), marketing data, analytics connected with current sales. and future games on different platforms, and so on. Also, among the files published by hackers, you can find the source codes of old games, for example, Devil May Cry 2 and Resident Evil: Umbrella Chronicles, and information about new projects of the company.