Capcom Extorted For $11 Million In Ransomware Attack


Earlier this week Capcom's internal systems were hacked, stealing over 1TB of data.

Capcom have assured customers that none of their data was affected in the breach.

The developer/publisher is best know for the Resident Evil, Street Fighter, Monster Hunter, and Mega Man series'.

Capcom Hacked

It has now been revealed that Capcom were targeted by the Ragnar Locker ransomware software,.

The software is designed to exfiltrate data from the internal networks before encrypting it.

LEAKED: A Steam sales report was leaked by the hackers. Information redacted by

BleepingComputer.com

Once this has done the user will be locked out of the information and then extorted for money in return they will get the data back.

What Did They Steal?

More than 1TB of data was stolen from Capcom's internal server network, which hosts data between different offices in Japan, USA, and Canada.

The information includes accounting files, banking statements, classified budget and revenue files, and tax documents.

Twitter user Pancak3, who is a malware researcher, managed to access the Ragnar Locker sample and got the same ransom note that Capcom received.

capcom ransom note
click to enlarge
+ 2
RANSOM: A copy of the ransom note from the hackers.

Here is what is says:

"We have BREACHED your security perimeter and get access to every server of company's Network in different offices located in Japan, USA, Canada. 
"So we has DOWNLOADED more than 1TB total volume of your PRIVATE SENSITIVE Data, including: 
"-Accounting files, Banking Statements, Budget and Revenue files classified as Confidential, Tax Documents
"-Intellectual Property, Proprietary Business information, Clients and Employees Personal information (Such as Passports and Visa), Incidents Acts  
"-Corporate Agreements and Contracts, Non-Disclosure Agreements, Confidential Agreements, Sales Summaries
"-Also we have your Private Corporate Correspondence, Emails and Messanger Conversations, Marketing presentations, Audit reports and a lot of other Sensitive Information 
"If NO Deal made than all your Data will be Published and/or Sold through an auction to any third-parties."

How Much Do The Hackers Want?

Pancak3 has revealed that the hackers are demanding $11 million in bitcoin for a decryptor key.

temporary leak page
click to enlarge
+ 2
GREETINGS: A temporary leak page.

Ragnor Locker has been used in other ransomware attacks this year, including Portuguese energy company Energias de Portugal, where $10.9 million was demanding.

It was also used to attack French transport and logstics company CMA GGM.

Just before Capcom was hacked, Campari was hacked and a $15 million ransom was made.

For more articles like this, take a look at our News page.