CD Projekt Red really can’t catch a break recently. What with an ongoing battle to stabilise Cyberpunk 2077, including a war of words with their most popular modders, CDPR got hacked yesterday; marking the next in a long run of bad luck.
Uploading a statement first thing this morning, CD Projekt Red said the following:
“Yesterday we discovered that we have become a victim of a targeted cyber attack, due to which some of our internal systems have been compromised”
“We will not give in to the demands nor negotiate with the actor, being aware that this may lead to the release of the compromised data”
You can see the rest of the statement in the image below.
As for the “compromised data” the hackers are claiming, in what is an embarrassingly phrased warning document, that they have access to much of the source code for CDPR’s games.
Listed titles are Gwent, Cyberpunk 2077, Witcher 3, and an unreleased version of Witcher 3. Source code is no joke, heavily protected by most video game companies as it forms the basis of the games they sell. Losing such data opens them up to heavier risk of piracy, mimicry, and other unfortunate consequences. No doubt the hackers in question are aware of this, hence the weight of their threat.
They go on to claim they have access to documents “relating to accounting, administration, legal, HR, investor relations, and more”. This means that information regarding many of the staff at CDPR could be leaked in the near future following CDPR’s apparent reluctance to entertain the hackers.
Finally, the hackers managed to encrypt all of CDPR’s servers, preventing access. Thankfully they had backups and as of the statement this morning were in the process of restoring lost data. Interestingly the motive behind the hack appears to at least be related to CDPR’s recent issues in general, as they stated the following:
“Your public image will go down the shitter even more and people will see how you shitty your company functions”
That’s word for word, poor grammar and all. If there was ever a more British phrase than “down the shitter”, then I’ve yet to hear it, which might out the hackers whereabouts at the very least.
Quite how the hackers managed to gain access to so much data is currently unknown, but cyber security is famously difficult so I can’t imagine any real blame can be attributed to CDPR here.
I’ve also seen more than a few people claiming this is fake, set up to divert attention for their own mistakes in recent history. Prominent journalists, like Jason Schreier, were quick to lay this to rest.
I’m in agreement. Even if you ignore the staff at CDPR who are currently panicking about the situation, there’s simply not enough to gain to make the lie worth it.
The hackers goes on to mention that they’ll pass on the data to their “contacts in gaming journalism”. I’ll take this time to remind you that any journalist worthy of the name wouldn’t accept documents obtained illegally, especially not after being mentioned in the hackers very own letter.
All in all, this entire situation is a bit awful for CDPR. Personally I’ve been very critical of them and their recent RPG Cyberpunk 2077, for a variety of reasons. But in no way do they deserve something like this, so I hope they get it under control as soon as possible.
Also, can we talk about the fact that the hackers unironically used the phrase “epically pwned” in a threat? Like for real? We’ve already determined they’re British, but now we’re damn sure they’re at least 35, because no-one has used that term in a normal sentence since 2007. Time travelling hacker maybe?
I’d see that in the cinema. You know, when the pandemic goes away.
Enjoy this report? Check out our other news stories here! Don’t forget to follow us on Twitter and like us on Facebook! Until next time, have a fantastic week!