The company is investigating a potential leak of personal information.
ALPHV, a ransomware group also known as BlackCat, claims to have ransomed Bandai Namco. The publisher confirms the breach and hack of confidential information. Bandai Namco is currently investigating the extent of the data breach.
Yesterday, vx-underground claimed Bandai Namco was the latest victim of a ransomware attack. This Twitter account, describing itself as “the largest collection of malware source code, samples, and papers on the internet,” shared that ALPHV ransomware group claimed the attack on Bandai Namco. Today, the publisher confirms the hack.
“After we confirmed the unauthorized access, we have taken measures such as blocking access to the servers to prevent the damage from spreading,” says the company. “In addition, there is a possibility that customer information related to the Toys and Hobby Business in Asian regions (excluding Japan) was included in the servers and PCs, and we are currently identifying the status about the existence of leakage, scope of the damage, and investigating the cause.
“We will continue to investigate the cause of this incident and will disclose the investigation results as appropriate,” the publisher adds. “We will also work with external organizations to strengthen security throughout the Group and take measures to prevent recurrence.”
Bandai Namco, the publisher of Elden Ring, Pac-Man, Tekken, and many more, is the latest victim of a ransomware group. Ransomware is a type of malicious software blocking all files until the victim pays a ransom. If the victim doesn’t oblige, the hacker may publish stolen personal data or block access to all hacked content.
This is not the first time major video game publishers are the victims of ransomware attacks. Last year, CD Projekt Red suffered a similar attack. The hackers published source code for Cyberpunk 2077 and The Witcher 3 and leaked employee details.
Bandai Namco is currently investigating the issue and should provide an update shortly regarding the hacked personal data.