Ubisoft suffered a devastating blow in the past 48 hours as one of gaming’s biggest cybersecurity crisis hit the company. Unverified claims from security researchers and hacker groups suggest that attackers exploited a newly disclosed vulnerability in MongoDB, dubbed “MongoBleed” (CVE-2025-14847) to gain unauthorized access to Ubisoft’s internal systems.
Over a reported 48 hours period, the hackers reportedly exfiltrated 900GB of data from Ubisoft servers including the source for virtually every Ubisoft title dating back to the 1990s.
The stole data archive not only encompasses the classics and upcoming Ubisoft games, but modern engines, multiplayer services, Uplay infrastructure, and development tools. Sources claim the breach affected assets from both Ubisoft and partner studio Crytek, raising alarms about a cross-company vulnerability.
Unconfirmed reports say hackers are now threatening to leak production materials for upcoming projects unless a ransom is paid, potentially exposing full roadmaps, unreleased assets, and spoilers for highly anticipated titles like Assassin’s Creed remakes.
This incident coincides with the separate chaos at Rainbow Six Siege where attackers flooded player accounts with billions in in-game currency (R6 Credits and Renown), unlocked exclusive skins, and banned thousands of players on December 27, 2025.
Ubisoft swiftly shutdown its Rainbow Six Siege servers and the in-game marketplace. While the company has not officially linked the Siege disruption to the broader breach, security experts point to MongoBleed as a common vector: the flaw allows unauthenticated memory leaks from exposed MongoDB instances, potentially providing credentials for deeper network pivots.
Reports from groups like VX-Underground describe a multi-faceted attack involving at least four separate threat actors. One focused on Siege’s economy disruption, another allegedly accessed internal Git repositories for source code, a third claimed user data for extortion, and a fourth disputed timelines, suggesting prolonged prior access.
Though unconfirmed by Ubisoft, the scale mirrors past industry nightmares, like the 2023 Insomniac hack that leaked Wolverine footage and roadmaps, or Rockstar’s GTA VI breach.
If the source code leaks materialize, the fallout could be catastrophic. Reverse-engineering could fuel rampant cheating in live-service games like Siege, Far Cry, or The Division, undermining anti-cheat systems like BattlEye. Pirates might compile unauthorized versions of classics, while spoilers could derail marketing for remakes and new entries in franchises like Assassin’s Creed, which fans eagerly await amid Ubisoft’s recent restructuring.
Ubisoft is yet to release a detailed statement on the alleged source code theft, choosing to focus publically on the Siege incident. As time goes by, industry watchers brace for a massive dump on forums or torrents.
