CD Projekt RED cyber attack details
One of the most important aspects we need to get out of the way first is that CD Projekt RED revealed this cyber attack did not, to the best of their current knowledge, the compromise the personal data of their players or users of their services.
At the time of writing, the investigation is still underway. CD Projekt RED did explain an "unauthorized actor" gained access to their internal network and collected data.
The cyber attack also left some of CD Projekt RED's network devices encrypted but their backups, thankfully, remain intact.
The developer noted they will not give in to the demands from the hackers. However, this means the compromised data from the cyber attack might get released.
CD Projekt RED ransom note
The unnamed hackers sent a ransom note to CD Projekt RED, claiming the developer has been "Epically pwned".
In the ransom note, the hackers claim they have the source code of various CD Projekt RED titles, including an unreleased version of Witcher 3.
The hackers also claim to have access to internal, sensitive documentation. They've also claimed to have encrypted CD Projekt RED's servers.
The hackers want their demands met, threatening to sell the developer's source code, and leak internal documents. They gave CD Projekt RED 48 hours to comply with their demands, which has currently not been made public.
CD Projekt RED has contacted the authorities, as well as forensic IT investigators and law enforcement to investigate this cyber attack incident.