Ubisoft’s Rainbow Six Siege faced a serious security issue over the weekend that caused chaos across the game. Players around the world suddenly noticed unusual changes to their accounts, including massive amounts of in-game currency, unlocked items, and strange ban messages. Ubisoft later confirmed that the game had been affected by an internal system abuse.
The issue first surfaced on Saturday when players began sharing screenshots online. Many reported receiving nearly two billion R6 Credits along with large amounts of Renown. R6 Credits are a premium currency that is usually purchased with real money, which made the situation even more serious. In several cases, accounts also unlocked every cosmetic item in the game, including skins that are normally restricted to developers.
At the same time, players noticed problems with moderation systems. Some accounts were banned and unbanned without reason, while fake ban messages appeared in the game’s ban ticker. This led to confusion and concern across the community, as no official explanation was available at first.
Ubisoft acknowledged the problem on its official social media channels later that morning. The company said it was aware of an issue affecting Rainbow Six Siege and that teams were actively working on a fix. Soon after, Ubisoft decided to shut down the game servers and the in-game Marketplace to prevent further damage while the investigation continued.
A few hours later, Ubisoft shared an important update. The company clarified that players would not face penalties for spending the credits they received during the incident. However, Ubisoft confirmed that all in game transactions made after 11:00 AM UTC would be rolled back. This means purchases and unlocks during that window will be reversed once systems are fully restored. Ubisoft also stated that the ban messages seen by players were not generated by the company and that the ban ticker had already been disabled earlier.
The value of the currency involved is extremely high. Based on official pricing, the credits distributed during the breach are estimated to be worth millions of dollars if purchased normally. This highlights the scale of the incident and why Ubisoft moved quickly to take the game offline.
There are also rumors of a wider security breach within Ubisoft’s infrastructure. Some security researchers and threat tracking groups claim attackers may have used a recently disclosed MongoDB vulnerability, known as MongoBleed, to gain access to internal systems. These claims include possible access to internal tools, source code, or even user data. However, none of these reports have been confirmed by Ubisoft, and there is no public evidence at this time to prove a larger breach occurred.
As of now, Ubisoft has only confirmed the in game abuse affecting Rainbow Six Siege. The company has not released a detailed technical explanation of how the attackers gained access. Servers are gradually being restored, but some services remain limited as the cleanup continues.
Ubisoft is expected to share more information once the investigation is complete. Until then, players are advised to keep an eye on official updates and avoid making major account changes while rollback processes are still in progress.
