The forums of Polish developer CD Projekt Red have been hacked in March 2016, and the information of more than 1.8 million has been stolen. This is according to the website Have I Been Pwned, a data breach notification website. CD Projekt Red are the studio behind the famous Witcher series, Gwent: The Witcher Card Game, and the upcoming Cyberpunk 2077.
CD Projekt Red forums were the target of hacker attacks back in March 2016. This lead to a leak of usernames, passwords and email addresses of almost 1.9 million users, according to Have I Been Pwned. People that have signed up to the website’s notification system have received their warning emails on January 31st. The reason behind the lateness is that no data was leaked until then. Or, in their own words in an email to IT Pro:
Whilst the breach occurred in March 2016, sometimes there can be a lengthy lead time of months or even years before the data is disclosed publicly. Have I Been Pwned? will always attempt to alert you ASAP, it’s just a question of how readily available the data is.
Have I Been Pwned? creator Troy Hunt went on record that 8.110 total of the site’s subscribers got the email alert. This represents a huge breach. The website even issued an alert on its official Twitter account.
CD Projekt Red hosts the affected forum on their official main website. It basically serves as a hub for news and discussions, with CD Projekt Red employees often interacting with players. Registered users can get technical support and gameplay advice directly from the source, as well as other users.
CD Projekt Red haven’t issued any statements yet. If you have an account on the forum, best check if your account is safe.