The Japanese videogame giant Bandai Namco has reportedly become the victim of a ransomware attack by a group that style themselves ALPHV, but is also known by the name BlackCat. The news has been reported by two malware-watching groups, and was first announced by Vx-underground alongside an image from ALPHV’s darkweb blog claiming the attack (thanks, Kotaku (opens in new tab)).
ALPHV ransomware group (alternatively referred to as BlackCat ransomware group) claims to have ransomed Bandai Namco.Bandai Namco is an international video game publisher. Bandai Namco video game franchises include Ace Combat, Dark Souls, Dragon Ball*, Soulcaliber, and more. pic.twitter.com/hxZ6N2kSxlJuly 11, 2022
Bandai Namco has not responded to a request for comment. Until the publisher acknowledges the hack or other sources emerge, the story remains unconfirmed. I also contacted the two malware-watching organisations who initially reported the hack, and will update with any additional information.
The group that has apparently targeted Bandai Namco has been known for a while, and some malware researchers believe the contemporary ALPHV is linked to earlier ransomware such as BlackMatter or Noberus (opens in new tab). The BlackCat moniker comes from an image of a black cat on the blog that shows the group’s victims.
What we can say is that an attack by ALPHV is seriously bad news for its victim. The group is an FBI target and previously boasted of wanting to create a “ransomware metaverse (opens in new tab)” to The Record. If you wonder what that nightmare phrase might mean, imagine kidnappers-for-hire at the highest of prices. From December 4 2021 BlackCat has been advertised on Russian-language underground markets, per Hacker News (opens in new tab), and calls itself “the next generation of ransomware.”
“Without exaggeration, we believe that at the moment, there is no competitive software on the market,” said an ALPHV representative in February. “In addition to high-quality software, for advanced partners, we provide the full range of services related to ransom—metaverse or premium concierge—call it whatever you want. We are in a different weight category, so we don’t recognize anyone, and we won’t do TikTok ransomware houses. Separately, we want to thank the media for a detailed and honest review of the malware. The results speak for themselves.”
🌐 ALPHV (BlackCat) #Ransomware team with a new style and two new victims 🚨The total revenue of the two companies combined is $100 million 💸 from the United States 🇺🇸#BlackCat pic.twitter.com/ekJEhpieX7July 11, 2022
The ALPHV group has also recently began pursuing a new tactic: publishing victims’ information to the clear web, so that it gets indexed by search engines and can be seen by the public.
Whatever name this group goes by at a given point in time, it looks like Bandai Namco may be among ALPHV’s latest victims. At the time of publishing, the publisher’s official accounts have not said in anything in almost a day.