Which gaming companies were targeted? Which games were targeted?
We disclose the list of companies which digital certificates were stolen and abused by the attackers. However, the list doesn't include all compromised companies we know. Some of the companies we worked with voluntarily assisted our research and investigation but preferred to remain anonymous. Below is the list of companies that had their certificates stolen:
Kog Co., Ltd.
Rosso Index KK
Fantasy Technology Corp
Also Winnti samples contain tags that could mean companies that were breached or had been compromised and to which the samples are/were destined. Among them we have recognized following companies:
Cayenne Entertainment Technology Co.,Ltd, Taiwan, tag: Wasabii
AsiaSoft, Thailand, tag: asiasoft
GameNet, Russia, tag: GameNetNEXON Corporation, Japan, tag: nexon
VNG Corporation, Viet nam, tag: zingTrion Worlds, USA, tag: TRIONWORLD
EYAsoft, South Korea, tag: eyaap80NCsoft, South Korea, tags: aion5000, aion2008
Zemi Interactive, South Korea, tag: zemi
NHN Corporation, South Korea, tag: NHN
Hangame Japan, Japan, tag: hangame.jp