In what was supposed to be a massive problem for Ubisoft, the company has made a significant clap back at the hackers as it prevented them from stealing as much as 900 GB worth of files and data, including user information. This unsuccessful attempt began when Ubisoft was notified regarding threat actors trying to steal the files, initially successful in breaching its securities.
The goal of the threat actors was to steal files from the company, particularly Rainbow Six Siege user information, but the swift actions of Ubisoft thwarted their attempts.
Ubisoft Faced a Security Breach but Stopped Hackers from Doing So
It was first reported by vx-underground back on December 22 that there were unknown threat actors who had breached Ubisoft's systems, and this lasted for 48 hours before they were notified and took action. After learning of the access to their systems, Ubisoft immediately enforced its protections, subsequently revoking the access that the hackers found.
As per the report from vx-underground, the threat actors did not divulge how they were able to breach Ubisoft's systems, but they focused on auditing the "the users access rights and spent time thoroughly reviewing Microsoft Teams, Confluence, and SharePoint."
Ubisoft then released a statement to BleepingComputer at the time, saying that they were looking into the breach, and were quick to fix the issue within its systems.
Ubisoft: 900GB Worth of Data, User Information Not Stolen
The claim by vx-underground said that the threat actors attempted to steal as much as 900GB of data, but was unsuccessful in doing so thanks to the immediate action of Ubisoft. Apart from their access to Ubisoft's SharePoint server, Microsoft Teams, Confluence, and MongoDB Atlas panel, they also targeted Rainbow Six Siege user data.
Fortunately, Ubisoft was able to put an end to this hack and prevent the threat actors from stealing loads of information.
The Massive Hacks Amidst this Holiday Season
Ubisoft was not the only games developer and publisher that faced significant access to their systems this December, as earlier this month, the renowned Insomniac Games was threatened by a ransomware gang regarding its Wolverine video game.
Apart from that, the threat actors also claimed that they would reveal sensitive employee information to the world should they not meet their demands.
There was also an operation that looked into thwarting the infamous "Kingdom Market" with law enforcement agencies from the United States, Switzerland, Moldova, and Ukraine joining forces to take it down. This marketplace was swarming with thousands of illegal sales of malware, narcotics, illegal documents, and criminal services under the deep web and TOR platform.
During the holidays, there are expectations regarding the increased presence of threat actors trying to access systems and steal sensitive information, with various applications they can do including using payment information, catfishing, or asking for ransom from victims. Ubisoft was fortunate enough to stop the planned theft of these unknown entities, with as much as 900GB of data saved.