A recent outage of Ubisoft's gaming services could be due to a cyberattack from the group that claims to be behind the recent attacks on Nvidia and Samsung.
Ubisoft is one of the largest video game companies in the world, offering AAA titles such as the Far Cry and Assassin's Creed series.
The company notified its users and customers of a temporary outage, and while that announcement said nothing about the possible perpetrators or how their devices were compromised, the Lapsus€ group shared the announcement a day later, complete with a smiley face emoji. .
During the follow-up chat with their followers, the group "confirmed" that they were not targeting Ubisoft customer information.
Ubisoft user data
Ubisoft said the same in its announcement, stating that "at this time there is no evidence that any player's personal information was accessed or exposed as a result of this incident" and adding that it has restored all of its services.
Still, the company suggested all users to reset their passwords, just to be safe.
Lapsus€ has been extremely active in recent months. In early March, he breached Nvidia's defenses and got away with a terabyte of sensitive data, including employee login credentials.
The group later said that the stolen data helped the group create a tool that bypasses the hash rate limiter placed on some of Nvidia's RTX-30 series GPUs, often used by Ethereum miners. The tool was reportedly sold on the black market for €1 million, but it has yet to be confirmed whether it works or not, or if it's just another virus.
Lapsus€ also claimed to have compromised Samsung's network and stolen nearly 200GB of extremely sensitive data.
The data would have included the source code of each Trusted Applet (TA) installed in Samsung's TrustZone environment used for confidential operations; algorithms for all biometric unlocking operations; Bootloader source code for all recent Samsung devices; confidential Qualcomm source code; source code for Samsung activation servers; Full source code of the technology used to authorize and authenticate Samsung accounts, including APIs and services.
The group also claims to have hit Vodafone, but no data leaks have been confirmed or any information about the company has been revealed so far.
Via: The Verge