Rockstar data leak

Rockstar Games says a third-party data breach exposed company information after the ShinyHunters extortion gang claimed it stole 78.6 million records. (kotaku.com) Reuters reported on April 13 that a ShinyHunters representative said the data came from Rockstar’s Snowflake account and that the claim first appeared on the group’s leak site on April 11. The group said it accessed the data through Anodot, a software vendor that connects to Snowflake for analytics work. (reuters.com) Rockstar told Kotaku that “a limited amount of non-material company information” was accessed and that the incident had “no impact” on the company or its players. BleepingComputer reported on April 14 that ShinyHunters then published the stolen data after the ransom threat expired. (kotaku.com, bleepingcomputer.com) Snowflake is a cloud data warehouse, which is a system companies use to store large business datasets in one place for querying and reporting. Anodot is one of many outside tools that can plug into that warehouse to monitor costs, performance, and usage, giving vendors a path into customer data if their own access is compromised. (bleepingcomputer.com) Snowflake told BleepingComputer that Anodot was the third-party integration platform involved in a wider April 2026 incident affecting more than a dozen companies. Cybernews reported that stolen authentication tokens were being used to access Snowflake customer accounts in that campaign. (bleepingcomputer.com, cybernews.com) That detail separates this case from a direct hack of Rockstar’s own internal network. The allegation, backed by Rockstar’s statement about a “third-party data breach,” is that the weak point sat in a vendor connection rather than Rockstar’s core systems. (kotaku.com, theregister.com) The material described so far looks more like analytics and business records than game code or player account dumps. BleepingComputer said the leak appears tied to internal metrics for online operations, support workflows, and business intelligence connected to Grand Theft Auto Online and Red Dead Online. (bleepingcomputer.com) Rockstar has dealt with a different kind of breach before. In September 2022, a teenager linked to the Lapsus$ group leaked early Grand Theft Auto VI development footage after hacking Rockstar’s Slack and Confluence systems, and UK authorities later tied that case to Arion Kurtaj. (reuters.com, bbc.com) This time, the immediate dispute is narrower: ShinyHunters says it took nearly 80 million records, while Rockstar says the exposed information was limited and non-material. That gap may not close until outside researchers or regulators verify what was in the leaked files. (reuters.com, kotaku.com)