Rockstar confirms data breach
Rockstar Games confirmed a data breach after the ShinyHunters group claimed access to Snowflake‑related data via a third‑party tool and issued a 'pay or leak' demand. (helpnetsecurity.com) The publisher says there was no impact on players while investigations continue into what data was exposed. (gosugamers.net)
Rockstar Games says a third-party data breach exposed some company information, while the hacking group ShinyHunters threatens to leak more by April 14. (ign.com) Rockstar told IGN that “a limited amount of non-material company information” was accessed and said the incident had “no impact on our organization or our players.” The company has not publicly identified the data involved. (ign.com) ShinyHunters said on its leak site that Rockstar’s “Snowflake instances metrics data” was compromised “thanks to Anodot.com” and gave the company until April 14, 2026, to respond. The Register reported the group threatened to “pay or leak” and warned of additional “digital” problems. (theregister.com) Snowflake is a cloud data warehouse, which is a service companies use to store and query large sets of business data. Anodot is a monitoring tool that plugs into those systems to track costs and performance, creating another route into the same environment if its access tokens are stolen. (theregister.com) The reported method matters because it points to a supplier connection, not a direct break-in at Rockstar’s own systems. The Register said ShinyHunters claimed it reused authentication tokens from Anodot so its activity could appear to be a legitimate internal service. (theregister.com) Rockstar has not confirmed ShinyHunters’ account of how the access happened, how much data was taken, or whether a ransom was demanded. Public reporting from Kotaku and IGN says the company has only acknowledged the third-party breach and denied any effect on players or operations. (kotaku.com) (ign.com) The case lands as Rockstar is still dealing with the aftereffects of its 2022 leak, when early Grand Theft Auto VI footage spread online. In December 2023, CBS News reported that Arion Kurtaj, the British teenager tied to that breach, was ordered into indefinite detention in a secure hospital. (cbsnews.com) For now, the gap between Rockstar’s statement and ShinyHunters’ threats is the central fact: the company says the breach was limited, and the attackers say they can still publish stolen material. What becomes public next will likely determine whether this stays a contained supplier incident or becomes another long-running leak crisis for the studio. (ign.com) (theregister.com)
