Rockstar Games’ Snowflake leak disclosed
Data linked to Rockstar Games was exposed after a breach of a third‑party analytics integration, with reports saying 78.6 million records were leaked from the company’s Snowflake warehouse. The incident reportedly involved the Anodot integration and has become part of a wider pattern of vendor‑chain exposures (x.com).
Rockstar Games said a third-party breach exposed internal analytics data, after hackers claimed they stole 78.6 million records from a Snowflake account tied to the studio. (bleepingcomputer.com) Reuters reported on April 13 that a ShinyHunters representative said the group had 78.6 million records from Rockstar’s Snowflake environment and that the access came through data linked to Anodot, an analytics platform. (insurancejournal.com) BleepingComputer reported the gang posted Rockstar on its leak site after a ransom demand, and the published files appeared to contain business and analytics information rather than game source code or player login credentials. (bleepingcomputer.com) Snowflake is a cloud data warehouse, which companies use as a central store for large sets of business data, and Anodot is a software service that can connect into those systems to monitor costs and usage. In this case, security reporting said stolen authentication tokens from the Anodot side were used to reach some customer data. (rhisac.org) Snowflake told BleepingComputer that the activity was tied to a third-party integration and not to a vulnerability in Snowflake’s own platform. BleepingComputer updated its April 7 report on April 9 to identify Anodot as that integration provider. (bleepingcomputer.com) The Rockstar case sits inside a broader campaign. RH-ISAC said on April 7 that multiple companies were hit after a software-as-a-service integration provider was breached and tokens were stolen, with many of the follow-on thefts aimed at Snowflake customer environments. (rhisac.org) That detail shifts the focus from a direct break-in at Rockstar to the risks created when vendors are allowed to hold persistent access into a company’s data warehouse. Bitdefender said Rockstar described the exposed information as limited, non-material, and unrelated to players or core operations. (bitdefender.com) Rockstar’s parent company, Take-Two Interactive, did not immediately respond to Reuters’ request for comment in the first wave of reporting. Public statements cited by BleepingComputer and Bitdefender have framed the incident as a third-party exposure rather than a compromise of Rockstar’s internal systems. (insurancejournal.com) (bleepingcomputer.com) (bitdefender.com) For now, the reported leak looks more like a window into Rockstar’s business metrics than a repeat of the 2022 development leak, but it adds one more major brand to a widening chain of vendor-linked data exposures in April 2026. (bleepingcomputer.com) (rhisac.org)
