Put 2 factor authentications.
They already have it, but at least some yeaars ago was optional. And like anything, hackable/bypassable.
Control who access your files.
Files in Ubisoft have multiple types of controls to access the files and different levels of confidentiality: some were available for everyone in Ubisoft, other ones were for people from a studio only, or for the pople from a project, or from the people of a specific studio working on that project, or only for a department and a long etc.
They are very open for certain things if you're in certain position: as an example I was head of my department in my studio, so I was given access to the key documents of that department from other games/studios I wanted to learn from them. When theorically I shouldn't have access to them. We shared a lot of stuff internally.
But everything was controlled and tracked.
Have a easy go offline option… if any suspicious access is happening turn everything offline until you check and deal with it.
This is what companies do. Or what happens when there are internet blackouts.
There is no way a hacker will download 1TB of data without you get alerts from suspicious actions if you implemented proper IT security.
It's a company with 20000 employees working from over 40 different studios and a lot of them working in remote constantly sharing a lot of heavy stuff.
1TB isn't even the size of a project (not counting duplied stuff in repositories), he got revoked access probably in under an hour if this is all he could download.
But being a hacker who knows what he got and who hacked. If a studio in charge of testing or the HQ, Montreal or Toronto could get info of a lot of projects.
