Earlier this week, CD Projekt Red became the victim of a cyberattack. Sensitive data, along with source code of games such as Cyberpunk 2077 and Witcher 3, were stolen from the developers.
It is being reported that the source code has now been sold in a dark web auction.
While still unconfirmed, multiple cybersecurity experts have suggested that the ransomware attack came from a group called "HelloKitty." Gamers had previously argued that the cybercrime was carried out by some frustrated gamer(s).
In a random note delivered to CD Projekt Red, the group stated:
"If we do not come to an agreement, then your source codes will be sold or leaked online, and your documents will be sent to our contacts in gaming journalism. Your public image will go down the gutter even more, and people will see how your company functions. Investors will lose trust in your company, and the stock will dive even lower. You have 48 hours to contact us."
Suffice to say, the group kept their word and went through with selling the stolen files as CD Projekt Red was unwilling to give in to the demands. The company has also approached the relevant authorities for a full investigation.
In an interview with IGN, Victoria Kivilevich, a threat intelligence analyst at KELA, explained that all of the files stolen were likely sold in a single package deal.
As of now, it's unclear who the buyer is or what they intend to do with CD Projekt Red's files.
Further reports suggested that the purchase was made for the price of $7 million.
The fate of CD Projekt Red
Adam Kiciński, CEO of CD Projekt Red, stated that the attack will have repercussions in the short term and impact the pace of development.
Since the identification of the buyer is unknown, there is no telling how, when, or where the source code will be misused or implemented.
A concerned Netizen, who goes by the name of 'H240909' on Youtube wrote this:
"For those confused what danger the source code being out in the wild could mean if hackers have the source code of a program, they could potentially find exploits to hack people's systems whenever they run said program.
Fans are still under the impression that CD Projekt Red itself bought back the files in a one-time deal.
Here's what Twitter users are saying on the matter:
An investigation is still underway to track down the hackers. The more concerning issue is what the unidentified person or group plans to do with the source code of CD Projekt Red's game. Only time will tell how this plays out.