"Star Citizen": Attackers had access to data from Cloud Imperium Games
Criminals were able to break into the IT infrastructure of game studio Cloud Imperium Games (CIG) and access customer data.
(Image: Cloud Imperium Games)
Unknown perpetrators have infiltrated the IT systems of game studio Cloud Imperium Games (CIG) and accessed customer data. The company has confirmed this but sees no danger to customers. CIG produces popular games such as “Star Citizen”.
On the website of the game development company Roberts Space Industries, the company has now admitted the data leak. According to the notice, CIG was the target of a systematic and sophisticated attack on January 21, 2026. This resulted in unauthorized access by cybercriminals to some backup systems. This also included limited access to personal user data. Only simple account information such as metadata, contact details, usernames, dates of birth, and usernames were affected.
However, the attackers did not have access to financial or payment information or passwords, as these were not stored on the affected systems. Since only read access was possible, the perpetrators could not inject or manipulate any data.
Countermeasures taken
According to its statements, CIG reacted quickly, restricted the activities, and blocked further access to this data and CIG systems. The company states that it has “refreshed” the security settings to ensure that there is no threat to the games or the users.
The company is currently monitoring the situation and the systems to ensure that no further incidents occur. CIG also intends to check whether any stolen information may be published. Currently, there are no indications of this. “We are sharing this information in the interest of transparency. However, we do not anticipate that this incident will have any impact on our users,” CIG finally explains.
Videos by heise
In the user forum on Roberts Space Industries, potentially affected users criticize that the explanation is not concrete enough and the information is too thin. For example, it remains unclear how long the attackers could access the information. They also complain about a lack of information regarding potentially copied metadata or contact details.
Cyberattacks are now commonplace. For example, brillen.de was again the victim of a cyberattack last week, in which data from 1.5 million customers ended up in the darknet.
(dmk)
