Insomniac Hackers Release 1.3 Million Files About Wolverine, Spider-Man 3, and More
The ransomware group that hacked Spider Man 2 Developer Insomniac Games followed through on its threat on December 12 to release the stolen data if it is not paid for. The group, Rhysida, has posted 1.67 terabytes of data, spanning 1.3 million files, on its darknet site. The data includes images and files from the upcoming Insomniac Wolverine game, as well as the studio's release schedule for the next 12 years, sensitive commercial and strategy documents, Slack screenshots and personnel files.
According to Cyber daily, who contacted Rhysida via email, only 98% of the entire data set was uploaded and the remaining files had been sold. Rhysida was looking for at least 50 bitcoin, or $2 million, when it tried to auction the data.
It is a devastating breach, perhaps even more impactful than last year's Grand Theft Auto6 hacking. It is certainly broader in scope. The files, which are widely shared and discussed on sites like Reddit and Imgur, contain the entire plot and cast of Wolverine, as well as gameplay and animation videos, game files, and design documents for the unreleased Marvel game. But they go much further into Insomniac's future plans and also the strategy of its owner, Sony Interactive Entertainment.
The studio's expected slate through 2035 is outlined in multiple presentations, including future Spider-Man and Ratchet & Clank games, a new intellectual property launch, and the apparent expansion of Wolverine in an ongoing series of X-Men games. There are also plans for a series of online games based on Insomniac's Marvel superhero properties. (These planning documents may be out of date or subject to change.)
Elsewhere, there are details on the terms of Insomniac's publishing deal with Marvel, budgets and commercial plans for upcoming games, and strategy documents from Sony addressing unannounced work from other studios such as Guerrilla Games and Bluepoint Games, as well as its views on the acquisition. from rival Microsoft's Activision Blizzard.
It is less clear how much personal information of Insomniac employees has been released. Cyber Daily says the files include some internal HR documents, screenshots of Insomniac's internal Slack, and even the contents of several employees' computers. It has not been confirmed whether the passport images seen in the collage of screenshots that Rhysida released last week were included in the release.
Rhysida's spokesperson told Cyber Daily that the motive for the hack was purely financial. They describe game developers like Insomniac as an “easy target” and the hack as quite simple, requiring the team to reach the domain administrator “20-25 minutes.”
Polygon has contacted Sony Interactive Entertainment for comment.
Rhysida is responsible for a wave of cyber attacks in 2023, including the hacking of the British library, a range of healthcare companies and, it is believed, international government organizations. The 2022 Rockstar Games hack resulted in the arrest and conviction of two teenagers in Great Britainwhile an international police force arrested the hackers responsible for an equally massive 2020 Capcom hack in October.