CD Projekt tweeted that unknown hackers gained access to the company's servers. Now they are demanding a ransom from the studio.
Hackers obtained the source code of Cyberpunk 2077, The Witcher 3, Gwent, as well as the yet unreleased version of the third Witcher. In addition, they managed to take possession of accounting documents and administrative papers.
After the attack, the attackers told the company that they would sell or publish the source code of the games in the public domain, and send the documents to specialized journalists. They require CD Projekt to close the deal within 48 hours.
The company is not going to meet hackers halfway. The studio intends to take measures to minimize the consequences of the leak.
Project representatives noted that some of the stolen data was encrypted and backed up. CD Projekt has already started the data recovery process.
As CD Projekt assured, the hacked servers did not contain personal information about players and users.
The company sent a statement regarding the hack to law enforcement agencies.
CD Projekt previously warned users that third-party saves and mods for its game Cyberpunk 2077 are unsafe to use due to vulnerabilities in it. It was reported that attackers can gain control of a player's system through external dlls with malicious code that the game uses to operate. A vulnerability that allows arbitrary code execution due to a buffer overflow exists in the current versions of the game for PC and the PS4 console; it is not fixed in patch 1.1 for Cyberpunk 2077.
Hackers obtained the source code of Cyberpunk 2077, The Witcher 3, Gwent, as well as the yet unreleased version of the third Witcher. In addition, they managed to take possession of accounting documents and administrative papers.
![e30183c31d3044851bde22e7516ecb3b.jpg](https://habrastorage.org/r/w780/getpro/habr/upload_files/e30/183/c31/e30183c31d3044851bde22e7516ecb3b.jpg)
After the attack, the attackers told the company that they would sell or publish the source code of the games in the public domain, and send the documents to specialized journalists. They require CD Projekt to close the deal within 48 hours.
![52e4569da902ba01880d650273989df7.jpg](https://habrastorage.org/r/w780/getpro/habr/upload_files/52e/456/9da/52e4569da902ba01880d650273989df7.jpg)
The company is not going to meet hackers halfway. The studio intends to take measures to minimize the consequences of the leak.
Project representatives noted that some of the stolen data was encrypted and backed up. CD Projekt has already started the data recovery process.
As CD Projekt assured, the hacked servers did not contain personal information about players and users.
The company sent a statement regarding the hack to law enforcement agencies.
CD Projekt previously warned users that third-party saves and mods for its game Cyberpunk 2077 are unsafe to use due to vulnerabilities in it. It was reported that attackers can gain control of a player's system through external dlls with malicious code that the game uses to operate. A vulnerability that allows arbitrary code execution due to a buffer overflow exists in the current versions of the game for PC and the PS4 console; it is not fixed in patch 1.1 for Cyberpunk 2077.