What a bunch of scumbags, selfish...everyone is going to have to wait now because of this group. What a shame, RB did not deserve this.

I don't know why they choose to breach through the security to steal data without any legitimate reason.

What does this mean for us?

Originally posted by Gaz:

What does this mean for us?

delayed updates mostly

Originally posted by Gaz:

What does this mean for us?

no outlast 3 as if it wasnt evident already with the mistake and sunken cost fallacy that this game is. the breachers were probably salty about red barrels trying to cash in on live service crap instead of continuing a great trilogy.

Originally posted by Combine00:

Originally posted by Gaz:

What does this mean for us?

delayed updates mostly

Basically nothing will changes 4-5 months biggers updates not sure if we need wait even longer now or it just few weeks setback they restored a data? Last post they quyickly mentioned future, new trials, new maps and characters not sure if that project was delyed?

Originally posted by Gaz:

What does this mean for us?

Nothing except for delayed updates. User data was fine but also, we already don't provide them with much.

Events are most likely postponed for the foreseeable future and the future of the studio is not looking real good right now.

Originally posted by A Temu Vape:

Originally posted by Gaz:

What does this mean for us?

Nothing except for delayed updates. User data was fine but also, we already don't provide them with much.

Events are most likely postponed for the foreseeable future and the future of the studio is not looking real good right now.

"Future of the studio is not looking real good right now" - Jesus Crikey how bad was this data breach?

Edit: The group stole 1.8TB of data and have made plans to release to the public...

Originally posted by Mickterminator30:

Originally posted by A Temu Vape:

Nothing except for delayed updates. User data was fine but also, we already don't provide them with much.

Events are most likely postponed for the foreseeable future and the future of the studio is not looking real good right now.

"Future of the studio is not looking real good right now" - Jesus Crikey how bad was this data breach?

Edit: The group stole 1.8TB of data and have made plans to release to the public...

It's likely we won't know the full totality of the attack unless the data is made public. Companies need to be really careful with what they say publicly regarding these kind of things.

It's a VERY bad situation. The source code for two notable horror games, HR information and more was stolen and is apparently going to be made public. Sensitive company assets and information related to the workers that has no business sitting out in the open. Even their own statement has said that they are going to need to provide support to their workers, I think that says it all. Their workers are the ones being effected the worst by this attack.

I've actually seen some of their private docs pop up on Twitter by burner accounts, but they are getting sniped down really fast. They've likely got authority figures and/or cyber security experts monitoring any online forums discussing them so they can take out anything that pops up. Get ready, because I think that's gonna start happening more.

A serious ♥♥♥♥♥♥♥ crime has been committed here and I'm shocked that this isn't being covered more extensively.

Arguably even more ♥♥♥♥♥♥ up are the people trying to justify the attack. As if RB is some massive corporation, not that it would be any more justified.

Sorry for delayed response.

As with any data breach they'll be in damage control right now, trying to assess the scope and enacting their incident response plan (or leveraging external resources to aid investigation).

This isn't likely to take away from development resources, but they may be hesitant to publish anything until they're confident the incident is contained.

I've had a quick look at NitroBlog and can confirm the proof data is there to see; bunch of documents, outlast concept art renders etc.

As with most Ransomware groups, they'll be financially motivated and seeking payment from Red Barrels before publishing in full.

They would have published the info anyways. You can never trust that a bad actor doesn't have your data and - if they did have it - that they'd delete it upon payment. Someone reported employees allegedly had their SIN (social security numbers for you americans) stolen and were posted online. If that's true, I think it's safe to say this company is probably majorly screwed.

Originally posted by A Temu Vape:

They would have published the info anyways. You can never trust that a bad actor doesn't have your data and - if they did have it - that they'd delete it upon payment. Someone reported employees allegedly had their SIN (social security numbers for you americans) stolen and were posted online. If that's true, I think it's safe to say this company is probably majorly screwed.

This is bad, yeah I can say definitively stealing SIN and other personal information is probably just the tip of the ice-berg. Should the group decide to release the data to the public the incident will no longer be contained, in fact, the risks present have proven to be extremely high since RB has zero control over this group. The group could go public and ignore the agreement with RB altogether.

We can only hope for the situation to be contained.......

Originally posted by Mickterminator30:

Originally posted by A Temu Vape:

They would have published the info anyways. You can never trust that a bad actor doesn't have your data and - if they did have it - that they'd delete it upon payment. Someone reported employees allegedly had their SIN (social security numbers for you americans) stolen and were posted online. If that's true, I think it's safe to say this company is probably majorly screwed.

This is bad, yeah I can say definitively stealing SIN and other personal information is probably just the tip of the ice-berg. Should the group decide to release the data to the public the incident will no longer be contained, in fact, the risks present have proven to be extremely high since RB has zero control over this group.

We can only hope for the situation to be contained.......

Hope for the best, prepare for the worst. RB has claimed that the security threat has been contained, but it doesn't change the fact that assets were stolen.

Getting a team of cybersecurity experts on their team and contacting the authorities are definitely a good thing to do and will help in mitigating an already horrible situation. But as for containing this looming risk of private data being leaked, it's a loose cannon.

It's unlikely, but I prey they find the people that did this. If they can do that, then RB could get a MASSIVE payout for damages from the attackers. Doesn't remedy information getting sent out into the ether, but it would be something. It's the best case scenario if you ask me.

I know I sound like a broken record, but I am very disappointing at the lack of coverage surrounding this by the wider games industry. Even Angry Joe didn't talk about it in his latest news videos.

Oh nooo! Wha?

Originally posted by A Temu Vape:

They would have published the info anyways. You can never trust that a bad actor doesn't have your data and - if they did have it - that they'd delete it upon payment. Someone reported employees allegedly had their SIN (social security numbers for you americans) stolen and were posted online. If that's true, I think it's safe to say this company is probably majorly screwed.

Any (Ransomware) Threat group lives and dies by their reputation, if they all published the data after payment regardless then nobody would pay.

Often times these are just affiliates leveraging a RaaS (Ransomware as a service) e,g, Ransomhub - they handle the infrastructure side of things and take their cut.

Whilst I can't speak definitively for their publication intentions post payment, It would go against them should they make that call. This is why certain industries are targeted more than others e,g. Healthcare as they are more likely to pay the ransom to resume operation and prevent patient data leakage.