Rockstar Games is reportedly facing another major security breach, with a known threat group claiming access to its internal data systems. If confirmed, this would be one of the most serious incidents for the studio since the Grand Theft Auto VI leak in 2022.
The alleged breach has been linked to ShinyHunters, a hacking group known for targeting large companies and cloud-based systems. The group has previously been associated with attacks on companies like Ticketmaster, AT&T, and Microsoft.
Unlike the 2022 GTA VI leak, which involved early game footage, this incident appears to target backend systems. Reports suggest that attackers may have accessed Rockstar’s corporate data environment rather than active game development assets.
Early findings indicate that Rockstar’s systems were not directly hacked. Attackers reportedly used a third-party integration to gain access. The breach is said to involve Anodot, a service used for tracking cloud costs and analytics. Through this integration, the hackers allegedly accessed Rockstar’s Snowflake environment. Snowflake is used to store and manage large volumes of data, including analytics and player-related information.
Also see: GTA VI Wallpapers
The key method here involves stolen authentication tokens. These tokens can remain valid for long periods and may allow access without triggering multi-factor authentication checks. This kind of supply-chain attack has become more common in recent months.
Rockstar is not the only target. The same group has also listed other companies, including Amtrak and McGraw-Hill, claiming to have accessed over 100 million records through similar third-party integrations. This suggests a coordinated campaign focused on exploiting cloud services and connected platforms rather than attacking companies directly.
The attackers have reportedly issued a ransom demand with a deadline of April 14. If the demands are not met, they claim they will release the stolen data publicly.
So far, neither Rockstar Games nor its parent company, Take-Two Interactive, has released an official statement.
This breach again confirms a growing risk in modern cloud-based systems. Companies today rely heavily on third-party tools and integrations. While these services improve efficiency, they also create new entry points for attackers. This incident also shows how hackers are shifting focus. Instead of breaking into company systems directly, they are targeting weaker links in the supply chain.
For Rockstar, this comes at a critical time. The company is already under intense attention due to the upcoming GTA VI release. Any security issue now could affect its reputation and internal operations.
