Video game developer Capcom may be dealing with a nasty ransomware attack that’s encrypted the company’s servers.
On Wednesday, the Japanese firm reported that an unknown third-party had breached Capcom’s corporate networks. “Beginning in the early morning hours of November 2, 2020 some of the Capcom Group networks experienced issues that affected access to certain systems, including email and file servers,” the company said in a statement.
Capcom has yet to elaborate on the incident. But a security researcher has uncovered evidence the attack involves a ransomware strain known as Ragnar Locker.
The researcher “pancak3” noticed a user in Japan uploading a ransomware sample to VirusTotal, a malware analyzing website. Pancak3 inspected the uploaded sample and found it contains a ransom note directed at Capcom.
“HELLO CAPCOM! If you are reading this message, it means your network was PENETRATED and all of your files and data has been ENCRYPTED,” says the note from the Ragnar Locker ransomware group.
The ransom note goes on to urge Capcom to negotiate with the hackers in order to free the company’s infected computers. Pancak3 later spoke with the hackers, and said they’re asking the video game developer to pay $11 million, claiming they’ve encrypted 2,000 company servers.
According to Capcom, there’s no evidence any customer information was taken during the intrusion. Online play for the company’s games also remains intact. However, the Ragnar Locker hackers claim to have stolen more than 1TB of corporate data from Capcom, including employees’ personal information, intellectual property and private correspondence between Capcom staff.
“If NO deal made than all your Data will be Published and/or Sold through an auction to any third-parties,” the hackers threaten in their ransom note.
We’ve reached out to Capcom for comment, but it appears the cyber attack is still disrupting access to the company’s email systems. However, Capcom has said the company is consulting with the police on the investigation, and is taking measures to restore systems.
