Hackers broke into DeusEX.com and stole the email addresses of thousands of registered users.
Someone at Anonymous appears to be trying to put a stop to the Human Revolution. The websites for Deus Ex: Human Revolution and developer Edios Montreal were hacked yesterday and visitors to DeusEX.com were greeted with a message that read ‘Owned by Chippy1337.’ The alias belongs to a member of a splinter group that recently seized control of Anonymous, and the message was undersigned by several other hackers associated with the offshoot.
The Eidos website was taken down for several hours yesterday, but it is now back online.
The attackers claim to have stolen the personal information of 80,000 registered DeusEx.com users and 9,000 resumes from Edios.com. The group has threatened to post the information on file-sharing networks, although the numbers conflict with a statement from Square Enix (Edios’ parent company) that says only 350 resumes were obtained along with 25,000 isolated email addresses. Chat logs obtained by the Internet security site KrebsonSecurity indicate that the group had planned to release a ‘nasty virus,’ but that scheme is currently unfulfilled.
Earlier in the week, we learned that Anonymous is currently mired in a power struggle after a hacker named ‘Ryan’ led an attack on the collective. The Eidos intrusion would seem to implicate the members of Ryan’s splinter group – the banner even included what is supposedly his real name – but it is believed that the attacks may be Anonymous’ attempt to get back at Ryan.
Square Enix’s full press release can be seen below:
Square Enix can confirm a group of hackers gained access to parts of our Eidosmontreal.com website as well as two of our product sites. We immediately took the sites offline to assess how this had happened and what had been accessed, then took further measures to increase the security of these and all of our websites, before allowing the sites to go live again.
Eidosmontreal.com does not hold any credit card information or code data, however there are resumes which are submitted to the website by people interested in jobs at the studio. Regrettably up to 350 of these resumes may have been accessed, and we are in the process of writing to each of the individuals who may have been affected to offer our sincere apologies for this situation. In addition, we have also discovered that up to 25,000 email addresses were obtained as a result of this breach. These email addresses are not linked to any additional personal information. They were site registration email addresses provided to us for users to receive product information updates.
No dissemination or misappropriation of any other personal information has been identified at this point.
We take the security of our websites extremely seriously and employ strict measures, which we test regularly, to guard against this sort of incident.
Source: KrebsonSecurity [via The Escapist]