Japanese video game producer Bandai Namco yet again becomes a victim of BlackCat ransomware aka AlphV resulting in data leak…

Continue reading
The world's largest producer of video games, Bandai Namco, has admitted that they were subject to a massive cyberattack that might have resulted in the loss of consumer data.
On Monday, the BlackCat ransomware operation (also known as AlphV) claimed to have hacked Bandai Namco and stolen company data. Hackers broke into the company's internal networks for Asian territories outside of Japan on July 3, according to Bandai Namco.

Below is the complete statement given by Bandai Namco today.
***"Bandai Namco Holdings Inc. confirmed on July 3, 2022 that an unauthorized third party accessed the internal systems of many Group firms in Asian regions (excluding Japan). After confirming the unauthorized access, we've taken steps to prevent the damage from spreading, including limiting access to the servers. In addition, it is possible that customer information pertaining to the Toys and Hobby businesses in Asian regions (except Japan) was stored on the servers and personal computers. We are now examining the cause and determining the condition of the damage's leakage scope.
We will continue our investigation into the cause of this occurrence and report the results as appropriate. We will also collaborate with external entities to enhance security across the Group and implement preventative measures.
Please accept our heartfelt apologies for any inconveniences or concerns this event may have created."*** - Bandai Namco.
While Bandai Namco has not revealed technical information regarding the intrusion, the entry to BlackCat's data leak site and the company's confirmation of the attack make it highly likely that the company was the victim of ransomware.
Bandai Namco's purportedly stolen data has not yet been shared by BlackCat.
However, ransomware groups usually wait to release compromised data until they are certain that a company will not pay a ransom demand.
Now that Bandai Namco has published a public statement, it would not be shocking if the company's data were to become public later today or tomorrow.
The AlphV/BlackCat ransomware campaign was launched in November 2021 and is thought to be a rebranding of the DarkSide/BlackMatter group.
Following its attack on the Colonial Pipeline and subsequent exposure to full-scale pressure from international law enforcement, the ransomware group became known as DarkSide.
Since the attacks on organizations like the Moncler fashion company and the Swissport airline freight handling services provider, this group has become one of the most major ransomware threats aimed at enterprises.
This week, the gang also introduced a searchable database of stolen data, which will make double-extortion attacks much more devastating for their victims.

In April, the FBI warned that BlackCat has penetrated at least 60 businesses globally and that they have "vast networks and ransomware operating experience."

148 malicious npm packages masquerading as student proxy and school Wi-Fi bypass tools. Rather than compromising developers during installation