Ubisoft became the latest video game company to be hacked today, vaguely admitting that one of its websites was exploited to gain unauthorized access to some of its online systems.
The company released a statement on Tuesday saying:
“We recently discovered that one of our Web sites was exploited to gain unauthorized access to some of our online systems … During this process, we learned that data had been illegally accessed from our account database, including user names, email addresses and encrypted passwords.”
The game developer, known for its uber-popular games like Assassin’s Creed, Just Dance and Prince of Persia series, further revealed that since it did not store any financial data; no credit or debit card information were compromised
The company advises that anyone with an Ubisoft account secure their accounts by changing their passwords. They also recommend that if you use the same password, or a similar password, on other sites, that you go and change that too.
Originally it had been reported that the hack originated with Uplay, a digital distribution service for the company’s PC games. However, the statement claims that Uplay is unaffected.
Ubisoft makes hit video games such as Assassin’s Creed, Just Dance, and Tom Clancy’s The Division. The company won’t specify how hackers breached its system; it only said, “credentials were stolen and used to illegally access our online network.”
Ubisoft claimed it took steps to “begin a thorough investigation with the relevant authorities, internal and external security experts” about the data breach. The company also said it is exploring “all available means to expand and strengthen” its security measures.
“Unfortunately, no company or organization is completely immune to these kinds of criminal attacks,” said Ubisoft. Access to Ubisoft games was not affected.
Ubisoft is only the latest in a long line of hacked companies, from Sony and Steam to Facebook and Twitter.
In January, Sony Computer Entertainment Europe was fined £250,000 after the 2011 PlayStation Network hack that placed the data of millions of customers in jeopardy.
A month later, Nintendo servers were hacked, although the company claimed that no personal customer data was accessed, writes the Guardian.
The company did note that there is no known link between its breached accounts and hacking incidents at other game firms, writes Tech Radar.
According to the Cnet, this isn’t the first time that Ubisoft’s network has been hacked. In 2010, a consortium of hackers known as Skid Row claimed responsibility for breaching Ubisoft’s Web site in protest over a policy that required gamers to have a constant Internet connection to play their games.
This hack didn’t affect users’ personal information, however, but instead removed the company’s digital rights management technology for PC games.
Ubisoft is one of several high-profile gaming firms that will be rolling out games for the upcoming Xbox One and PlayStation 4, including Watch Dogs, which ironically requires players to hack into various electronic systems. In May, Ubisoft revealed that it worked with Kaspersky Lab to make sure the hacking in the game looked authentic.