ATET Security

Capcom Data Security Breach (Ransomware)

Ransomware is a malicious technique that cyber attackers uses to steal people data like documents and files, encrypt them, and request a sum to release them back to the owner. This technique was commonly used, and cyber attackers usually set targets on big enterprise companies. News on companies hits by ransomware has widely appeared in today’s world.

Gaming Industry had potentially grown more prominent than before ever since the covid started. When most countries impose a lockdown in their city, people will not get out of their home unless for essential purposes. Schools, office, shopping malls or even cybercafé are not allowed to be opened. Student, employees, or blue-collar workers are told to work, study or operate from their home if possible.

As a result, there is an increase in online shopping, ranging from groceries to online games. In 2020, playing and purchase of online Video games had increased tremendously. Capcom is a Japanese video game developer and publisher that has created several multi-million-selling game franchises. On 12th March 2021, Capcom has released a statement on alleged email scams that pretend to contain Early Access Invitations to its highly anticipated upcoming horror game, Resident Evil Village, which circulating to multiple players with the sender address being displayed as no-reply(at)capcom(dot)com.

Capcom clarified that these messages are not from them and appear to be phishing attempts by an unauthorized third party. Capcom encourages players who have received the message not to download any files or reply and delete the message immediately. The new string of early access email scams is Capcom’s latest brush with scams and cyberattacks. Capcom was the target of a cyberattack last year on 16th November 2020. During the hack, approximately 350,000 customer and personal data were compromised by the Ragnor Locker.

Ragnar Locker is data-stealing ransomware, which exfiltrates data from a victim before encrypting its network, and then threatens to publish the stolen files unless a ransom is paid. The stolen data breaks down as follow;134,000 Japanese customers who use Capcom customer service support desk, 14,000 North American Capcom store members, 4,000 North American Esports operation website members, 40,000 shareholders, 28,000 former employees, 125,000 job applicants, and 14,000 human resource records.

The accessed data includes a mix of names, addresses, birthdays, phone numbers, email addresses, and photos. None of the at-risk data contained credit card information since a third-party service provider handles all online transactions. Capcom company asks that anyone who is potentially affected by this incident shall practice an abundance of caution, looking out for any suspicious packages received by mail or messages. To protect against these attacks, companies need to combine technology and processes: solutions that can prevent stealthy attacks and prevent data leaks, and educate employees about the risks of phishing emails, as this is how many ransomware attacks are launched.

Tips to prevent ransomware infections: – Update and patch software and operating system – Never click on unverified links – Do not open untrusted email attachments – Keep your personal information safe – Verify email senders – Use mail server content scanning and filtering – Never use unfamiliar USBs/ HDDs/ any media devices – Use and maintain preventative software programs