Ubisoft’s *Rainbow Six Siege* Hit by Major Breach, In-Game Systems Compromised Ubisoft’s Rainbow Six Siege (R6) suffered a significant security breach, allowing attackers to manipulate in-game systems, distribute unauthorized rewards, and disrupt player accounts. The incident, confirmed by Ubisoft on Saturday at 9:10 AM via the official R6 X account, led to the game and its Marketplace being temporarily shut down for investigation. Hackers exploited internal systems to perform several unauthorized actions, including: - Banning and unbanning players at will. - Displaying fake ban messages on the in-game ban ticker (later confirmed as fraudulent by Ubisoft). - Granting players approximately 2 billion R6 Credits—a premium currency worth roughly $13.33 million based on Ubisoft’s pricing. - Unlocking all cosmetic items, including developer-exclusive skins. Ubisoft stated that players would not face penalties for spending the illicitly granted credits but would roll back all transactions made after 11:00 AM UTC. The company also disabled the ban ticker, confirming it did not generate the fake messages. While Ubisoft has not disclosed how the breach occurred, unverified reports suggest a broader compromise. Security research group VX-Underground cited claims from multiple threat actors, including: - One group allegedly exploited an R6 service to manipulate bans and inventory without accessing user data. - A second group claimed to have used the MongoBleed vulnerability (CVE-2025-14847)—a recently disclosed flaw in MongoDB—to pivot into Ubisoft’s internal Git repositories, potentially stealing decades of source code. - A third group reportedly stole user data via MongoBleed and attempted extortion. - A fourth group disputed some claims, asserting that source code access was already established. Ubisoft has not confirmed these allegations, and BleepingComputer could not independently verify the extent of the breach beyond the confirmed in-game abuse. As of now, servers remain offline, and no formal statement on the attack vector has been released. Updates will follow if new details emerge.

Ubisoft, the renowned video game developer behind franchises like Assassin’s Creed, Far Cry, and Just Dance, fell victim to a ransomware attack orchestrated by the Lapsus$ gang, a cybercriminal group known for high-profile breaches, including Samsung and Nvidia. The attack primarily aimed to steal sensitive corporate data for extortion, threatening public release unless a ransom was paid. While the incident caused temporary disruptions to Ubisoft’s web-based services, the company confirmed that no player personal data was compromised, and all systems were swiftly restored to full operation. The attack underscores the growing threat of ransomware groups targeting major enterprises for financial gain, leveraging stolen data as leverage. Ubisoft’s proactive measures, including cybersecurity solutions like Acronis Cyber Protect, helped mitigate further damage by blocking encryption and extortion attempts. The incident highlights the critical need for robust cybersecurity defenses against evolving ransomware tactics, even when direct customer impact is minimized.

The well-known video game publisher, Ubisoft, is looking into reports of a possible data breach after well-known researchers vx-underground released proof. According to the experts, Ubisoft's infrastructure was accessible to an unidentified threat actor for approximately 48 hours. After learning of the attack, the administrators locked the invaders out. The attackers' method of breaking into the organisation remains unknown; they made an unsuccessful effort to obtain user data from R6 Siege. The company's SharePoint, Confluence, and Microsoft Teams installations are accessible.

The French video game company Ubisoft was targeted in a cyberattack in the first week of March 2022. The attack caused temporary disruptions in its games, systems, and services which were soon restored. Although no personal information was compromised in the attack still company asked its employees for a company-wide password reset. The Lapsus$ extortion group on their Telegram group posted information about the incident.

Cyberattacks Target Major Video Game Studios, Exposing Source Code and Internal Data In a wave of recent cyber incidents, leading video game companies including Capcom, Ubisoft, and Crytek have fallen victim to ransomware attacks and data breaches, raising concerns over the security of intellectual property in the gaming industry. Capcom, the Japanese developer behind franchises like Resident Evil and Street Fighter, confirmed a cyberattack on its systems earlier this week. The breach, attributed to the Ragnar Locker ransomware group, disrupted internal networks, including email and file servers. While the company stated there was no evidence of customer data being accessed, it did not disclose whether source code or other sensitive materials were stolen. The attack follows a pattern of recent breaches in the industry, though experts see no evidence of a coordinated campaign. Meanwhile, Ubisoft is investigating claims that hackers stole source code for Watch Dogs: Legion, with reports suggesting the data was leaked online. The company acknowledged a potential security incident after internal network issues surfaced but has not confirmed the extent of the breach. Similarly, Crytek known for the Crysis series was also targeted by the same hacking group, raising fears that proprietary game code could be sold or distributed illegally. The attacks come amid a broader trend of cyber threats against gaming companies, including previous leaks from Nintendo. While no major disruptions to gameplay or official services have been reported, the incidents highlight vulnerabilities in an industry increasingly targeted for its valuable digital assets. The long-term impact may include unauthorized game modifications, knockoff releases, or the exploitation of stolen development materials. As investigations continue, the gaming sector remains on alert for further disclosures of compromised data.

The data of Ubisoft, a french video game company was leaked by the attackers after a cyber attack on their servers. The compromised data included technical identifiers like GamerTags, profile IDs, Device IDs, and Just Dance videos.