Grand Theft Auto Publisher Rockstar Games Hacked

Grand Theft Auto Publisher Rockstar Games Hacked

Threat actor Lapsus$ is now apparently responsible for hacking gaming giant Rockstar Games after targeting mega brands like Microsoft, Cisco, Samsung, Nvidia, Okta and probably Uber.

An account operating name ‘teapotuberhacker’ posted on GTAForums around 90 videos of what appeared to be development footage of the upcoming Rockstar Games installment, Grand Theft Auto 6 – which the publisher confirmed it was working on earlier this year.

The videos, totaling around 50 minutes of footage, included short clips of animation tests to more detailed animation scenes. They were then widely shared on social media.

After posting the alleged in-development footage on September 18, 2022, teapotuberhacker left a message claiming they wanted to “negotiate a deal” with the game publisher to return unreleased data, including the Grand Theft Auto 5 source code and the under-development version of Grand Theft Auto 6.

“This is not the first case where a cybercriminal group has stolen an organization’s source code, with both LastPass and the Midea Group suffering a similar fate in the past month. Source code is part of a company’s intellectual property and therefore holds enormous value for cybercriminals .It can be used to find hidden security vulnerabilities and launch additional attacks on a business,” Sam Linford, VP of EMEA Channels at Deep Instinct, told Information security.

However, in a message to Information security On September 19, Craig McDonald, VP of Product Management at BackBox, insisted that at the moment it “remains unclear whether the attacker gained access to data beyond the video clips that were posted.”

Rockstar Games and its parent company, Take-Two Interactive, acknowledged the leak on September 19, 2022.

See also  When will England play next in T20 World Cup 2022? Date, time, how to watch and what to expect from Australia

In a statement posted on Twitter, Rockstar said: “We recently suffered a network intrusion where an unauthorized third party illegally accessed and downloaded confidential information from our systems, including early development footage for the next Grand Theft Auto. For now, we do not expect any disruption to our live gaming services or any long-term effect on the development of our ongoing projects. [..] Our work on the next Grand Theft Auto game will continue as planned, and we […] will update everyone again soon and will of course introduce you to this next game when it’s ready.”

Take-Two has issued takedown notices to GTAForums and social media accounts, including YouTube and the GTA subreddit. The original GTAForums thread started by teapotuberhacker was removed, then relaunched with all links and GTA 6 details removed, reported Guardian.

The Lapsus$ gang has been active in recent months

It appears that the teapotuber hacker gained administrative access to Rockstar Games’ internal network after an employee clicked on a malicious email. The threat actor was then able to download the videos from employees’ Slack channels – a similar method was used in a recent Uber data breach, for which the teapotuber hacker also claimed responsibility.

In an update on September 19, Uber said the culprit may be linked to the Lapsus$ hacking gang that has been particularly active recently, reportedly targeting tech companies such as Microsoft, Cisco, Samsung, Nvidia and Okta.

“This cyberattack should serve as the catalyst to change mindsets and attitudes toward cybersecurity,” Linford said. , and quantify the effects of a cyber attack and the impact on the organization in the event of a data leak and prioritize the protection of data. Organizations must take preventive measures that stop cyber attacks before they breach the network. Businesses need a line of defense that can stop these attacks before they can execute, let alone steal data.”

See also  Are the close wins a bug or a feature?

Meanwhile, McDonald added: “To be secure, all infrastructure devices in an organization’s network must have the latest operating systems and updates and be configured in accordance with internal security policies as well as government and industry regulations.

Unfortunately, these preventative measures often take a back seat to more pressing network management tasks, McDonals said.

“Companies should invest in network security automation to ensure a continuous movement for upgrades and updates. Implementing a baseline of proper automation will ensure these tasks run consistently and reliably and can deter future data-compromising attacks from gaining access to critical and confidential information .” McDonald concluded.

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *