stormous attacks Epic Games Data Breach
Incident Date:
April 12, 2022
Overview
Title
stormous attacks Epic Games Data Breach
Victim
Epic Games Data Breach
Attacker
Stormous
Location
First Reported
April 12, 2022
Epic Games Denies Ransomware Attack Claims
Epic Games, the entity behind the widely acclaimed game Fortnite, has refuted allegations of a ransomware attack purported by the group Mogilevich. The group had previously asserted that it exfiltrated nearly 200 gigabytes of internal data from Epic Games, encompassing emails, passwords, full names, payment information, and source code. Nonetheless, Epic Games has definitively stated there is "zero evidence" to support any claims of a successful ransomware incursion against the company.
As a pivotal figure in the software industry, known for its flagship games, the Unreal Engine, and the Epic Games Store—a platform renowned for distributing free games—Epic Games stands as a prime target for cybercriminals. The potential leakage of sensitive data, including both corporate and customer information, underscores the high stakes involved.
The Broader Context of Ransomware Attacks in the Gaming Industry
Despite Epic Games' denial of the attack, the gaming sector has witnessed a rising tide of ransomware incidents. A notable example in 2023 involved Sony's Insomniac Games studio, which experienced a significant data breach. Personal employee data and details of unannounced game titles were exposed after the studio did not comply with a ransom demand. This event serves as a stark reminder of the imperative for game studios to bolster their cybersecurity defenses to avert future intrusions and safeguard sensitive data.
While Epic Games has dismissed the recent ransomware attack allegations, the incident casts a spotlight on the ongoing vulnerabilities within the gaming industry. It is incumbent upon companies to perpetually enhance their security protocols to mitigate the risk of breaches and the potential exposure of critical information.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.