Cyber Incident Victim: Blizzard Entertainment
Date:
Jun 2023
Location:
United States of America
Summary
A distributed denial-of-service attack disrupted Activision Blizzard's game servers, preventing players from accessing titles including Diablo IV, World of Warcraft, and Call of Duty for over 10 hours. The attack targeted authentication systems required for gameplay connectivity, marking the latest in a series of recent cyber incidents affecting the company. While service was restored following mitigation efforts, the perpetrators remained unidentified. This incident highlighted ongoing vulnerabilities in always-online gaming infrastructures, which have previously suffered similar disruptions and phishing-related breaches. The persistent outages have drawn criticism from players regarding accessibility challenges tied to internet reliability and peak traffic periods.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 7 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On June 25, 2023, Activision Blizzard experienced a distributed denial-of-service (DDoS) attack that disrupted online services for approximately 10 hours, primarily affecting authentication servers required for game access. The incident occurred during peak weekend gaming hours, coinciding with the recent launch of Diablo IV—a highly anticipated title released earlier that month. Attackers flooded Blizzard's infrastructure with traffic, rendering key games including Diablo IV, World of Warcraft, and Call of Duty unplayable for most users. Players attempting to log in encountered persistent connectivity failures, preventing authentication and multiplayer matchmaking. Activision Blizzard acknowledged the attack via Twitter, confirming service degradation beginning Sunday morning and continuing throughout the day. Mitigation efforts succeeded by late Sunday evening, though the company provided no technical details about defensive measures taken. No threat actor claimed responsibility during or after the incident, and Blizzard did not publicly attribute the attack to any specific group. This marked the third major service disruption for the company within a year, following similar DDoS incidents in September 2022 and connectivity failures during Overwatch 2's October 2022 launch.
The attack exploited the always-online architecture fundamental to Blizzard's game design, which requires continuous internet connectivity for both single-player and multiplayer modes. This dependency created widespread accessibility issues, particularly affecting players in regions with unreliable internet infrastructure. Historical patterns indicated heightened vulnerability during weekend peak traffic periods, with the June attack occurring on a Sunday when network usage typically surges. The incident followed a February 2023 breach where phishing SMS messages compromised employee accounts, though no connection between these events was established. Repeated service disruptions have drawn criticism from gaming communities regarding accessibility barriers and single-point-of-failure risks in centralized authentication systems. While DDoS attacks against Blizzard have not involved data breaches or malware deployment per available reports, they consistently impact service availability—a critical concern for live-service games reliant on sustained player engagement. The company's public communications focused exclusively on service restoration, without addressing long-term mitigation strategies or infrastructure modifications following previous attacks.