The Japanese publisher Koei Tecmo announced during the Christmas holidays that some personal data from 65,000 users of the English-language website was hacked, which led to the company currently taking its American and British websites offline.
“On the site operated by KTE, the” Forum “page and the registered user information (approximately 65,000 entries) are intended for the data that may have been breached,” Koei Tecmo announced in a press release December 25, first reported on of BleepingComputer. “The user data that may have been leaked through hacking is perceived as (optional) account name and related password (encrypted) and / or registered email address.”
The publisher – who is responsible for Dynasty Warrior series, including several Musou spin-offs and the latest Hyrule Warriors: Age of Calamity—wrote that the hack appeared to be isolated on the forum pages and did not contain any credit card information. Koei Tecmo added that they do not know who has launched the cyber attack yet, and that they believe the probability that leaks are related to a ransomware attack is low.
In addition to reporting the data breach to the EU General Data Protection Regulation (GDPR), the publisher has also temporarily closed the US and UK websites. “Due to the possibility of an external cyber attack on this site, it will be temporarily shut down when we investigate the issue,” it says in a single line of text that appears when you try to visit Koei Tecmo America website.
Unlike the last comprehensive cyberattack on Capcom in Novemberwhich affected business information such as sales reports and development documents, this appears to be isolated from the player’s email and password.
“Koei Tecmo apologizes for the concern and inconvenience this may cause to its customers and business partners,” the publisher wrote in its press release. “For individuals who have had their email addresses leaked, Koei Tecmo is determined to take appropriate action and act in good faith from now on.”
Koei Tecmo did not immediately respond to a request for comment.
Correction: The post has been updated to reflect that data breach news was first reported by the data security website BleepingComputer.