Hackers claim to have stolen nearly 200GB of internal data from Epic Games

According to VGC , a ransomware group calling itself Mogilevich claims to have attacked Epic Games and stolen nearly 200GB of internal data from the company. According to Cyber ​​Daily, the group posted information on a dark web site specializing in data leaks, providing details about the attack targeting the Fortnite game maker.

"We have silently launched an attack on Epic Games servers," the group said in a statement. Mogilevich claimed to have stolen data including emails, passwords, full names, payment information, source code and more, totaling 189GB.

The group also announced that they would sell the stolen data and provided contact information for anyone interested in purchasing the data, including Epic Games employees. Mogilevich said the deadline for the data to be sold was March 4, but did not specify a price or reveal plans for what would happen to the data if the deadline passed.

According to Cyber ​​Daily, Mogilevich is a relatively new ransomware group and Epic Games is its fourth target. The group's first target was Nissan subsidiary Infiniti USA, which was attacked last week. The group has not yet released any concrete evidence of its successful intrusion into Epic Games' systems.

In response to this information, Epic Games spoke out: "We are investigating but currently have no evidence to suggest that this claim is accurate. Mogilevich has not contacted Epic or provided any corroborating evidence. When we saw the allegations, we began an investigation and contacted Mogilevich to request evidence. Mogilevich has not yet responded. The latest detail we received was a post on X asking for $15,000 and evidence to hand over the data."

In late 2023, there was also an attack on Sony's game development studio Insomniac Games, carried out by the hacker group Rhysida. The group initially released a small amount of evidence, including annotated screenshots from Insomniac's upcoming game Wolverine .

Rhysida threatened to release all the stolen data within seven days, and put the data up for auction with a starting price of 50 Bitcoin (about $2 million). A week later, the group made good on its threat and is believed to have released about 98% of the stolen data.