Earlier this month, on November 2, game developer and publisher Capcom revealed that they were the victim of a cyber-attack from an unidentified third party. Initially, a spokesperson for Capcom claimed that no customer data or other sensitive information was stolen. However, a recent update from the company indicates that this might not in fact be the case after all.
Capcom posted an update on their official investor website that the stolen data included sales reports, sensitive financial information, and the personal details of nine of the company's employees. The post also stated that the personal information of up to 350,000 customers could have been stolen, although Capcom seems to be refusing to officially confirm or deny this fact. Possibly stolen information reportedly includes addresses and telephone numbers, but does not include credit card information.
At this time, Capcom claims that they have reached out to individuals whose information may have been stolen.
Immediately following the announcement of the attack, rumors began to circulate on various gaming fansites and forums that information regarding upcoming Capcom titles had also been stolen. These "reports" varied, but included both new titles and remakes of existing games from the Resident Evil and Monster Hunter series. So far, none of these rumors have been officially confirmed or denied.
Capcom's statement concludes with a clarification that they are reporting the "maximum" amount of possible data stolen in order to be as honest as possible. This indicates that the amount of stolen information may in fact be less than what Capcom is currently claiming.
The final paragraph reads:
"Because the overall number of potentially compromised data cannot specifically be ascertained due to issues including some logs having been lost as a result of the attack, Capcom has listed the maximum number of items it has determined to potentially have been affected at the present time."
Hopefully, Capcom will release future updates as the investigation continues.