In a statement, the Japanese firm acknowledged that it had suffered “unauthorized access carried out by a third party” earlier this week, but claimed that “at present there is no indication that any customer information was breached.”
Since the attack, Capcom has put a notice on its website warning visitors that emails will not be answered due to the attack impacting its systems.
According to security news site Bleeping Computers, the Ragnar Locker ransomware gang has claimed responsibility for the hack, and claimed that it has stolen 1 TB of unencrypted files from Capcom’s corporate networks in Japan, the USA, and Canada.
That allegedly includes banking files, intellectual property, client and employee personal information (such as passports and Visas), corporate contracts and email correspondence.
Bleeping Computers claims to have seen samples of the leak, including images showing employee termination agreements, Japanese passports, Steam sales reports, Bank statements, contractor agreements and more.
The hacker group is allegedly asking for $11,000,000 in bitcoins for return of the files, which it claims it will also delete and provide a network penetration security report for. If no deal is made, then the data will be published or sold, it’s claimed.
Ragnar Locker has been involved in other major attacks this year, including ones against Portuguese multinational energy giant Energias de Portugal (EDP), where a $10.9M ransom was demanded.