CD Projekt Red Confess Hack Severity While Everyone’s Distracted With E3

CD Projekt Red Confess Hack Severity While Everyone’s Distracted With E3
Screenshot: CD Projekt Red

It’s corporate PR 101: If you want people to miss your announcement, drop it at 5 p.m. on a Friday. Or, at the very least, wait until everyone’s looking at something else.

As the entire gaming world laser-focused on Geoff Keighley’s sartorially questionable sneakers during the Summer Game Fest Kickoff Live! event, Cyberpunk 2077 studio CD Projekt Red released a statement regarding a February cyberattack against the company. Turns out, that data breach could not be contained.

“Today, we have learned new information regarding the breach, and now have reason to believe that internal data obtained during the attack is currently being circulated on the internet. […] We are not able to confirm the exact contents of the data in question, though we believe it may include current/former employee and contractor details in addition to data related to our games,” CDPR wrote in a tweet published at 2:39 p.m. ET, smack in the middle of today’s hotly anticipated showcase of video gaming advertisements. “

Still, CDPR was vague about what exactly was out there and whether any of it was true or had been altered.

When the cyber attack was made public this winter, the hackers, who remained anonymous, said they obtained source code for CDPR games like The Witcher 3: Wild Hunt andCyberpunk 2077.

“Your [sic] have been epically PWNED!!!” they wrote, allegedly giving CDPR 48 hours to respond. The hackers threatened that, by releasing internal documents, public trust in — and, crucially, stock price for — CDPR would take a dip, likely a reference to the infamously rocky rollout of Cyberpunk 2077.

Today’s statement doesn’t say whether or not players of CDPR’s games were affected. Representatives for CDPR did not immediately respond to Kotaku’s request for comment.

In February, while first addressing the hack, CDPR wrote that “to our best knowledge, the compromised systems did not contain any personal data of our players or users of our services.”

The next day, hackers reportedly put up the data at auction with a starting price of $US1 ($1.4) million.


  • Or, given that the information has actually started to be leaked they now know more about what has actually been taken.

    Its eyerollingly narcisstic to think that because an announcement by a Polish company at a time that what Kotaku itself calls a ‘no longer relevant’ show on the other side of the world, that its all a conspiracy. What should they have done, waited until after E3 was over?

    • Wouldn’t go so far as to say it’s a conspiracy, we know how seriously these companies take announcements for both positive and negative news.

      Saying E3 isn’t relevant doesn’t mean it doesn’t command the attention of media and consumers anymore, the shows still running but I think we can all agree it no longer holds the position that it once did, at least in as many ways and certainly not as much.
      (Shit, I still remember when it was the single most important event of the year in gaming that could make or break a game, developer or even a publisher.
      These days the magic has faded, we understand, consume and interact with it differently and those who walked away are definitely not looking back.)

    • It’s a pretty universal PR play. Tear the band-aid off while everyone is distracted. E3 isn’t what it used to be but you can count on enough coming out of it to bury a one off bad headline. It works particularly well with video game related stuff because the people covering this stuff try to stay so far up to the minute that they rarely circle back when things calm.

      Long weekends, public holidays, major sporting events, even Friday afternoons, they all see spikes in bad news. It’s not a conspiracy it’s just everyone realising that people who skipped work today to take a four day weekend aren’t watching.

  • I would recommend changing your passwords regardless as we’ll probably find out next year our personal information was leaked.

Show more comments

Log in to comment on this story!