In a recent development, CD Projekt Red servers were compromised today by hackers of unknown origins.
The company which created the Witcher series games was recently embroiled in a controversy regarding the release their latest game Cyberpunk 2077 over several developmental issues. Upon release, the game was mired with bugs which subsequently led to public outrage, making several critics question the company’s ethics and PR strategies and drawing intense censure from consumers for hoodwinking and misleading their fanbase with tall promises and releasing the game unpolished.
Important Update pic.twitter.com/PCEuhAJosR
— CD PROJEKT RED (@CDPROJEKTRED) February 9, 2021
In a public statement, CD Projekt Red confirmed that their servers were targeted by an ‘unidentified actor’, leaving their systems compromised. The hacker managed to infiltrate their internal network and steal data of considerable value, some of which includes important documents relating to CDPR’s financing, accounting, administration, legal, HR, investor relations and other departments as well as source codes to many of their games — Witcher 3, Gwent , Cyberpunk 2077 and also what the hacker claims to be an unreleased version of Witcher 3.
The hacker has also encrypted their servers and has demanded a ransom, which remains undisclosed as of the moment, and has threatened the company with dire consequences if an agreement is not reached soon. The ransom time, the unknown hacker declared in his ransom note, is 48 hours.
CD Projekt Red’s response has so far been non-cooperative as they have refused to give in to the demands.
“We will not give in to the demands nor negotiate with the actor, being aware that this may eventually lead to the release of the compromised data,” the twitter post read. “We are taking necessary steps to mitigate the consequences of such a release, in particular by approaching any parties that may be affected due to the breach.”
The company has said that so far no personal data of players seem to have been affected or compromised. Relevant authorities including the office of the President of the Personal Data Protection of Poland and IT forensics department have been notified and an investigation is expected to begin on full swing soon.