Bandai Namco admits that a hacker group has digitally attacked the company. The cyber attack may have stolen private data from customers. The game publisher says it is investigating the matter.
The game company confirms this to BleepingComputer .
Bandai Namco is an attractive target for hackers
Bandai Namco is a Japanese computer game publisher. Games like Dark Souls, Tekken, Soulcalibur, Pac-Man and Elden Ring have the company in its portfolio. In 2020, it had a worldwide turnover of more than 1.7 billion euros. This makes it an attractive target for hackers. And that is exactly what is happening now.
Last Monday, BleepingComputer discovered that Bandai Namco was mentioned on BlackCat ‘s leak site. The companies on this list have been infiltrated by hackers. They have stolen confidential or personal information from the company, employees or customers and threaten to disclose it. Unless the victim pays ransom. Parties on the leak site have not (yet) done so.
The American tech site decided to get a story from Bandai Namco. In a press statement (PDF), the publisher confirms that the internal systems of affiliates in Asia were attacked by hackers on Sunday, July 3.
Bandai Namco takes action and apologizes
“After confirming the unauthorized access, we took measures such as blocking access to the servers to prevent the damage from spreading,” the company wrote. Customer data may have been stolen during the attack, although the publisher cannot say exactly what data is involved.
Bandai Namco says it is taking the matter seriously and is busy assessing the extent of the damage. “We will continue to investigate the cause of this incident and will release the investigation results if necessary. We also work with outside organizations to strengthen security within the company and take measures to prevent a recurrence.” To make the hacker’s none the wiser, the company does not say anything about which security measures it is taking.
Finally, Bandai Namco apologizes for “any complications or concerns” the incident may cause.
This is what we know about BlackCat
The game publisher does not provide technical details about the cyber attack. Due to the fact that the company is mentioned on BlackCat’s leak site, we know who is behind the attack. We know from experience that this hacker group uses ransomware to harm its victims. This ransomware copies files and puts them under lock and key. If the victim pays the ransom, they will be given the decryption key to unlock the digital lock.
Cybersecurity experts suspect that BlackCat, also known as ALPHV or Noberus, is a continuation of Russia-affiliated hacker group DarkSide. The latter has many prominent victims to his name, including the American petroleum company Colonial Pipeline.
BlackCat’s first hacking attacks took place in November 2021. Experts currently consider it the largest and most dangerous hacker group in the world. The group is allegedly responsible for the cyberattack on Swiss aviation services provider Swissport. International flights and baggage handling were severely delayed as a result of the attack.
BlackCat launched a tool this week that allows victims of a ransomware attack to browse the stolen data. The idea behind this is that victims get an idea of the wealth of information that has been stolen and still chooses to cross the bridge and pay a ransom. Another option is for customers, members or employees to use the search tool to see if their private data has been stolen. In that case, they can knock on the door of the affected company and ask for the ransom to be paid. This form of exploitation is also known as triple extortion.
Catch up on more articles here
Follow us on Twitter here