In October 2020, Capcom, a renowned game developer and publisher, experienced a significant data breach due to unauthorized access to its network. The breach led to compromised devices at the company's offices, resulting in the theft of information. The attackers demanded a ransom, which Capcom did not pay. Consequently, the attackers leaked company data a few weeks after the breach.

How many accounts were compromised?

The breach impacted data related to approximately 16,000 individuals.

What data was leaked?

The data exposed in the breach included personal information, financial data, sales reports, unannounced games, and some corporate information such as names, addresses, phone numbers, and email addresses.

How was Capcom hacked?

Hackers breached Capcom's network by exploiting an older backup VPN device at the company's North American subsidiary, gaining unauthorized access to internal systems in both the U.S. and Japanese offices. The specific methods and entry points used by the attackers remain unclear, as does the presence and removal of any malware on Capcom's servers.

Capcom's solution

In response to the hack, Capcom took several measures to secure its platform and prevent future incidents. This included introducing a Security Operation Center (SOC) service to continuously monitor external connections and implementing Endpoint Detection and Response (EDR) for early detection of unusual activity on devices. Capcom also worked with a leading software company to clean all compromised devices, reviewed accounts used for business purposes, and improved management methods for VPN and other devices. Additionally, the company launched the Information Technology Security Oversight Committee, which functions as an advisory group for matters related to system security with external security experts. Capcom notified those whose personal information or corporate information was confirmed to have been compromised to discuss the background of the incident and the current situation.

How do I know if I was affected?

Capcom notified those whose personal information or corporate information was confirmed to have been compromised to discuss the background of the incident and the current situation. If you believe you may have been affected by the Capcom breach but have not received a notification, you can visit HaveIBeenPwned to check your credentials.

What should affected users do?

In general, affected users should:

• Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.

• Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

• Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For more specific help and instructions related to Capcom's data breach, please contact Capcom's support directly.

Where can I go to learn more?

If you want to find more information on the Capcom data breach, check out the following news articles:

• 4th Update Regarding Data Security Incident Due to Unauthorized Access: Investigation Results

• Ransomware Group Responsible for Massive Capcom Leak Arrested

• Capcom: Ransomware gang used old VPN device to breach the network