For those who don’t want to click through to Twitter
So if the breach is to be believed, and CDPR seems to think it should be, they have had the following stolen:
- Source code for Cyberpunk 2077
- Source code for The Witcher 3
- Source code for Gwent
- An unreleased version of The Witcher 3
- Accounting Records
- Administration Records
- Legal Records
- HR Records
- Investor relations documents
And it sounds like even more.
The source code is one thing but those records could be a massive issue for their employees. There could be life ruining information in those. People who work there are already getting death threats, and now potentially their HR information is exposed which could contain their address? If it comes to light that CDPR was not properly storing this information, especially if it constitutes PII, they could find themselves dealing with a massive GDPR violation.