22 December 2021

Ubisoft reveals data breach affecting Just Dance gamers


Ubisoft reveals data breach affecting Just Dance gamers

French video game maker Ubisoft has disclosed a cyberattack on its IT infrastructure targeting the popular game Just Dance.

Ubisoft explained that the incident “was the result of a misconfiguration, that once identified, was quickly fixed, but made it possible for unauthorized individuals to access and possibly copy some personal player data”.

“The data in question was limited to ‘technical identifiers’ which include GamerTags, profile IDs, and Device IDs as well as Just Dance videos that were recorded and uploaded to be shared publicly with the in-game community and/or on your social media profiles. Our investigation has not shown that any Ubisoft account information has been compromised as a result of this incident,” the game maker said in a short community forum post.

The Just Dance team did not provide any details about how data breach occurred, or for how long the Just Dance servers were exposed.

All players impacted by the incident will receive an email from Ubisoft and will be given more information through the company's support team. Ubisoft has advised all Just Dance users to reset their passwords and to use two-factor authentication.


Back to the list

Latest Posts

The story of the four bears: Brief analysis of APT groups linked to the Russian government

The story of the four bears: Brief analysis of APT groups linked to the Russian government

In “The Four Bears” series we will tell you about the APT groups known as Fancy Bear, Cozy Bear, Voodoo Bear, and Berserk Bear.
17 January 2022
Cybersecurity year in review: Most notable APT hacks of 2021

Cybersecurity year in review: Most notable APT hacks of 2021

In 2021 nation-state actors somewhat faded into the background, but they still pose a significant threat.
17 January 2022
Hackers put up for sale data of 2M ONUS customers after the company refused to pay $5 million ransom

Hackers put up for sale data of 2M ONUS customers after the company refused to pay $5 million ransom

The attackers exploited the Log4Shell vulnerability on ONUS’ Cyclos server to plant backdoor and exfiltrate data.
30 December 2021