Ubisoft targeted by cyberattack, hackers waltz away with Just Dance player information

Game maker Ubisoft has confirmed that, ”due to a misconfiguration,” its infrastructure recently sustained an attack targeting popular video game Just Dance.

Although quickly fixed, the data leak let unknown actors access player data, but the information was limited to “'technical identifiers' which include GamerTags, profile IDs, and Device IDs as well as Just Dance videos that were recorded and uploaded to be shared publicly with the in-game community and/or on your social media profiles."

Ubisoft has not disclosed how many users were affected by the data breach, but it said no other Ubisoft account information was compromised, and all players exposed were promptly notified.

Launched in 2009, the Just Dance video games series is available on multiple platforms and, as of October 2013, had collectively sold over 40 million units, making it Ubisoft's second-largest franchise.

Gamers are at risk

Because video games are so popular, and the pandemic has only made them more popular, gaming companies and players alike are constantly targeted by cyberattacks. Game streaming platform Twitch was hit by one of the biggest data leaks of 2021, while EA Sports also had problems in the summer.

Leaked GamerTags, profile IDs and device IDs aren’t vital personal information on the level of email addresses and passwords, gamers should still stay alert.

Hackers could link the new information with older leaked information to identify and target gaming accounts. At the same time, use of the same profile name on multiple games can make users highly traceable. Last but not least, giving away device IDs can help skilled attackers identify vulnerable devices, like phones and game consoles, that haven’t received the latest security updates and potentially can be remotely accessed.

What can gamers do to stay safe

Whether their gaming information was leaked or not, gamers should always take precautionary measures to protect their accounts and enjoy their gaming experience.

• Use complex and unique passwords for all accounts
• Use a password manager to randomly generate passwords and securely store them
• Use multifactor authentication to protect accounts
• Constantly update devices to the latest software version available
• Don’t give away personal information to other players and don’t display it in public places.
• Use a reliable VPN to hide your IP and encrypt your connection