Back

Rockstar Games Faces Ransom Demand After Data Breach by ShinyHunters

Severity: Medium (Score: 51.8)

Sources: Rockpapershotgun, thecybersecguru.com, Engadget, www.ign.com, Invenglobal

Summary

Rockstar Games has confirmed a data breach involving the hacking group ShinyHunters, which has threatened to release stolen data unless a ransom is paid by April 14, 2026. The breach occurred through AnoDot, a third-party billing management tool, allowing the hackers to obtain authentication tokens that provided access to Rockstar's Snowflake data repository. While the group claims to have accessed financial, player, and marketing data, Rockstar asserts that only a 'limited amount of non-material company information' was compromised, and that there is no impact on players or staff. This incident follows a previous breach in 2022, where early development footage for 'GTA6' was leaked. The hacking group has a history of targeting major corporations, and the current threat may involve sensitive information related to upcoming game releases. As of now, Rockstar has not disclosed any specific countermeasures or security updates in response to the breach. Key Points: • ShinyHunters has threatened to leak data from Rockstar Games unless a ransom is paid by April 14. • The breach was facilitated through AnoDot, allowing access to Rockstar's Snowflake data repository. • Rockstar claims only a limited amount of non-material data was accessed, with no impact on players.

Key Entities

  • Data Breach (attack_type)
  • AT&T (company)
  • Cisco (company)
  • Microsoft (company)
  • Rockstar Games (company)
  • Take-Two Interactive (company)
  • anodot.com (domain)
  • Telecommunications (industry)
  • T1567 - Exfiltration Over Web Service (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed