Rockstar Games confirms it was hacked by malicious group — ‘ShinyHunters’ takes credit score, offers till April 14 to pay ransom or it is going to launch confidential information
Rockstar Games appears to have been hacked but once more, this time by the favored group “ShinyHunters” that has additionally compromised different massive corporations earlier than. The assault was first spotted by Cybersec Guru, who later bought a quote from a Rockstar spokesperson confirming it had been breached. The group has stolen confidential information and is holding the corporate at ransom for it, with a fee deadline set for April 14.
“Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak. This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way. Make the right decision, don’t be the next headline.” — ShinyHunters on their website.
There is little data as to what this information consists of (or the ransom quantity) since a lot of the dialog is cordoned off to the darkish internet, the place such gross sales usually happen. Previously, Rockstar was hacked in 2022, the place a single particular person was in a position to entry inner improvement channels and purchase practically 100 early gameplay movies for GTA VI, together with, allegedly, the supply code for each GTA VI and GTA V.
Article continues below
ShintyHunters, in contrast, is a group that operates less traditionally and often exploits API keys, user sessions, and third-party integrations to get inside more legitimately. In this instance, they were able to hijack the company’s Anodot, which is an analytics and monitoring tool many businesses use to track finances. Anodot is connected to the firm’s cloud infrastructure, which is “Snowflake” in Rockstar’s case.
The group didn’t break Snowflake’s security; they instead extracted authentication tokens from Anodot to pass as regular users and access Snowflake accounts. Once in, they easily stole the data, which likely doesn’t include passwords or sensitive player info, and perhaps not even bits from active game development. Still, there will be confidential corporate data that Rockstar doesn’t want to float around otherwise.
Snowflake is not just used by Rockstar. Many other companies that integrate it via Anodot have been compromised by ShinyHunters previously few months as properly. Rockstar appears to be a part of a broader wave of extortion-related hacks that transcend any ideological pursuits, such because the latest Spotify breach. In any case, if the ransom is not paid by April 14, the malicious group will launch the stolen information publicly.
Rockstar’s spokesperson has informed a number of shops the hackers solely took “non-material company information” and that the general assault would not influence “our group or our gamers.” That implies perhaps the ransom would not must be paid, for the reason that information would not have any significant worth and gamers aren’t affected, or it might simply be harm management.
Get Tom’s Hardware’s best news and in-depth reviews, straight to your inbox.
Realistically, we might get perception into some fascinating spending habits contained in the agency in case the info is launched. How the advertising and marketing for the sport is being formed behind the scenes, its prices, or a possible delayed launch window that hasn’t been introduced but. Ironically, contemplating GTA VI is due in just a few months, any cybersecurity lapses at Rockstar solely exacerbate the gamers’ worries of stated potential delay.