Last February, CD Projekt suffered a serious hacker attack which caused the source codes of Cyberpunk 2077, Gwent and The Witcher 3 to be leaked on different download pages, as well as confidential information and private data. At first it was reported that the personal data of the employees was protected... but it seems that finally it is not like that.
A few days ago we told you that the source codes for Cyberpunk 2077 and The Witcher 3 Next Gen could already be downloaded from different illegal download pages, and, unfortunately, the drama of the hacking of CD Projekt keep going. Through an official statement on its website, the Polish study announces that the personal data of its workers is also already circulating on the networks.
CD Projekt states that they do not yet know the magnitude of the problem, but admits this leaked data may be related to employment contracts of its employees, working conditions, private data of third parties and added information about your games. In addition, it alerts your employees: some data could have been altered or modified.
To solve this, the Polish study has contacted different security networks, the Personal Data Protection Office (PUODO) and data protection agencies, as well as with the General Headquarters of the Police in Poland. In addition, the directors of CD Projekt have also already contacted Interpol and Europol, with the aim of detecting those responsible and eliminating this leaked data from the networks.
”We would also like to affirm that, regardless of the authenticity of the data circulating, we will do everything in our power to protect the privacy of our employees, as well as all other parties involved. We are committed and prepared to take action against the parties that share the data in question” says the CD Projekt statement.
On the other hand, the creators of Cyberpunk 2077 and The Witcher have announced a series of special measures to prevent further leaks. Its security systems have been improved, applying different firewalls to try to prevent it from happening again in the future, while trying to solve the current problem. These are the measurements:
- Our core IT infrastructure has been redesigned and some improvements have been made.
- New Next Generation Firewalls With Advanced Anti-Malware Protection Implemented
- A new remote access solution has been used
- The number of privileged accounts and the access rights to the accounts has been limited
- A new mechanism has been installed for the protection of terminals, servers and networks
- Our event tracking mechanisms have been improved
- We have expanded our internal security department
- We have established a cooperation with multiple external specialists in cybersecurity and IT.
The extent of the data breach is not known at the moment, but CD Projekt promises to keep informing its employees and users, aware of the seriousness of the problem. We hope that a solution will soon be given to all those affected, while the study recovers from the serious damage suffered.
Fountain: CD Projekt RED