apanese game developer Koei Tecmo reported a data breach and disabled its European and US websites after the stolen data was posted on a hacker forum by an attacker.
According to the hacker in a forum post, on December 18 of this year, he hacked the koeitecmoeurope.com website using targeted phishing. As a result of the attack, the forum database with the records of 65 thousand users of the site of the subsidiary in the UK was stolen, and a web shell was installed on the site for permanent access.
In a post on the hacker forum, the attacker tried to sell the forum database for 0.05 bitcoin (about $ 1.3 thousand) and access to the web shell for 0.25 bitcoin (about $ 6.5 thousand). On December 23, the same attacker published the database for free on the same hacker forum.
Published data includes email addresses of forum members, IP addresses, password hashes, logins, as well as information about the date of birth and country of residence.
Upon learning of the data breach, Koei Tecmo disabled US and European websites due to “the possibility of an external cyber attack.” Koei Tecmo claims the hack only affected the UK subsidiary’s site and no financial information was stored in the stolen database.