Security News > 2023 > February > Hacker leaks alleged Activision employee data on cybercrime forum
A threat actor has posted data the alleged data stolen from American game publisher Activision in December 2022 on a hacking forum, highlighting the data's value for phishing operations.
In a forum post to the Breached hacking forum, a website used by threat actors to sell and publish stolen data, the hackers claims to have stolen the data from Activision Azure database.
The leaked data consists of 19,444 unique records containing full names, phone numbers, job titles, locations, and email addresses of alleged Activision employees.
On February 21, 2023, Activision confirmed that it suffered a data breach in early December 2022 after hackers tricked an HR employee into giving away their credentials through smishing.
"On December 4, 2022, our information security team swiftly addressed an SMS phishing attempt and quickly resolved it. Following a thorough investigation, we determined that no sensitive employee data, game code, or player data was accessed," a company spokesperson told BleepingComputer.
The appearance of the employee database on a forum makes it widely available to a larger audience, including a very popular forum used by threat actors, which increases the chances of Activision employees being targeted by phishing and social engineering attacks.