Game maker Ubisoft has confirmed that, ”due to a misconfiguration,” its infrastructure recently sustained an attack targeting popular video game Just Dance.
Although quickly fixed, the data leak let unknown actors access player data, but the information was limited to “'technical identifiers' which include GamerTags, profile IDs, and Device IDs as well as Just Dance videos that were recorded and uploaded to be shared publicly with the in-game community and/or on your social media profiles."
Ubisoft has not disclosed how many users were affected by the data breach, but it said no other Ubisoft account information was compromised, and all players exposed were promptly notified.
Launched in 2009, the Just Dance video games series is available on multiple platforms and, as of October 2013, had collectively sold over 40 million units, making it Ubisoft's second-largest franchise.
Because video games are so popular, and the pandemic has only made them more popular, gaming companies and players alike are constantly targeted by cyberattacks. Game streaming platform Twitch was hit by one of the biggest data leaks of 2021, while EA Sports also had problems in the summer.
Leaked GamerTags, profile IDs and device IDs aren’t vital personal information on the level of email addresses and passwords, gamers should still stay alert.
Hackers could link the new information with older leaked information to identify and target gaming accounts. At the same time, use of the same profile name on multiple games can make users highly traceable. Last but not least, giving away device IDs can help skilled attackers identify vulnerable devices, like phones and game consoles, that haven’t received the latest security updates and potentially can be remotely accessed.
Whether their gaming information was leaked or not, gamers should always take precautionary measures to protect their accounts and enjoy their gaming experience.