December 22, 2023 at 01:11PM
Ubisoft is investigating a potential breach after images of internal software and developer tools surfaced online. VX-Underground claims an unknown threat actor breached Ubisoft and intended to exfiltrate around 900GB of data. This alleged breach involves access to various services, including MongoDB Atlas. Ubisoft is currently investigating the incident.
Based on the meeting notes, it appears that Ubisoft is currently investigating a potential data security incident. An alleged breach involving the company’s internal services and tools has been reported by security research collective VX-Underground. The threat actors claimed to have accessed various services such as the Ubisoft SharePoint server, Microsoft Teams, Confluence, and MongoDB Atlas panel, and attempted to exfiltrate around 900GB of data. Additionally, it was mentioned that there is no apparent link between this incident and the recent MongoDB Atlas breach.
Furthermore, the threat actors stated that they attempted to steal Rainbow 6 Siege user data but were detected and lost access before being successful. Keep in mind that Ubisoft has faced breaches in the past, including incidents involving the Egregor ransomware gang in 2020 and disruptions to its games, systems, and services in 2022.
If you have any additional information about this incident or another attack, you are encouraged to contact us securely and confidentially on Signal at +1 (646) 961-3731 or by using our tips form.