Activision has confirmed that it suffered an information breach in early December 2022 after hackers gained entry to the corporate’s inside methods by tricking an worker with an SMS phishing textual content.
The online game maker says that the incident has not compromised sport supply code or participant particulars.
“On December 4, 2022, our info safety group swiftly addressed an SMS phishing try and shortly resolved it. Following an intensive investigation, we decided that no delicate worker knowledge, sport code, or participant knowledge was accessed,” an organization spokesperson instructed BleepingComputer.
Nonetheless, safety analysis group vx-underground says that the menace actor “exfiltrated delicate work place paperwork” together with the content material launch schedule till November 17, 2023.
Screenshots shared by the researchers present that the hackers had gained entry to the Slack account of an Activision worker on December 2 and tried to trick different workers into clicking malicious hyperlinks.
Online game publication ‘Insider Gaming’ has obtained and analyzed the whole leak, reporting that the cache comprises full names, e mail addresses, cellphone numbers, salaries, work places, and different worker particulars.
Furthermore, the publication claims that the hacked worker was from the Human Sources division and had entry to swaths of delicate worker particulars.
‘Insider-Gaming’ has listed all the sport title-related content material revealed by this breach, which incorporates upcoming content material bundles for the ‘Name of Responsibility Trendy Warfare II’ franchise.
Because the breach occurred in December 2022, some info obtained by Activision is prone to seem outdated now.
BleepingComputer had no entry to the leaked knowledge however we realized that that the sport info shared on-line was primarily based on advertising supplies and the event setting was not affected by the breach.