The gaming sector has been one of the most lucrative targets for cybercriminals to make some quick bucks. From DDoS attacks to data theft and ransom demands, video and online game developers are constantly facing a barrage of cyberattacks. Recently, Big Huge Games was targeted by hackers.
The gaming industry is expected to reach $196 billion in revenue by 2022, and this fact alone makes it an attractive target for cybercriminals.
- In the last two months, several gaming firms have been targeted, such as CD Projekt Red, NVIDIA, and Nintendo. Most of these organizations are found to be located in North America, followed by East Asia.
- From attempting to gain unauthorized access, to launching credential stuffing to faking gaming apps, cybercriminals have been targeting the gaming sector in various ways lately.
Sale of stolen credentials
- Kela, an Israeli-based cybersecurity firm, observed multiple examples of supply and demand for initial network access to gaming companies.
- These purchased credentials could be used in ransomware attacks, as four such ransomware attacks are publicly reported. One of such active ransomware discovered as - Sodinokibi.
The threat of vulnerabilities as well
- Recently, NVIDIA issued patches for denial of service, escalation of privileges, and data loss vulnerabilities.
- In addition, the Cyberpunk 2077 developers alerted gamers about security vulnerabilities in mods.
Cyberattacks on game developers are growing due to the simple fact that it is a multi-billion-dollar industry with hundreds of millions of users globally. Therefore, organizations in the gaming sector can expect more attack attempts, and should proactively engage in preventive measures to avoid any risks.