Rockstar Games Hit by Data Breach: ShinyHunters Demand Ransom

More troubling news for Rockstar Games. The notorious hacker group, ShinyHunters, is asserting they’ve successfully breached the company’s cloud servers, gaining access to a substantial collection of data. The group is demanding a digital ransom be paid by April 14, 2026, or they will reportedly release the stolen information.

Update (April 11, 2026, 11:45 AM ET): Rockstar Games has officially confirmed a data breach. A spokesperson provided the following statement to Kotaku:

“We can confirm that a limited amount of non-material company information was accessed in connection with a third-party data breach. This incident has no impact on our organization or our players.”

Original story continues below…

How Did the Breach Occur?

As reported by Cybersec Guru and Hackread, ShinyHunters posted on their dark web leak site on April 11th, claiming access to Rockstar’s Snowflake servers – a cloud-hosting provider used by numerous large corporations. The group’s message, shared on Saturday, read:

“Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak. This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way. Make the right decision, don’t be the next headline.”

Interestingly, the hackers didn’t directly compromise Snowflake’s security. Instead, they reportedly gained access through Anodot, a cloud cost monitoring and analytics software service utilized by Rockstar and other companies to manage cloud data. Recent reports indicate Anodot itself suffered a security breach, potentially providing ShinyHunters with a pathway to secure Snowflake data. This method allegedly appeared legitimate to Rockstar, suggesting the group may now possess a significant amount of data.

What Data is at Risk?

ShinyHunters hasn’t publicly disclosed the specific data or files they’ve accessed and threaten to leak. However, it’s believed that passwords and personal player data are not compromised. The focus of this hack appears to be on corporate information and assets, potentially including contracts, financial documents, marketing plans, and other sensitive data Rockstar Games would likely prefer to keep confidential.

Who are ShinyHunters?

ShinyHunters has been active since 2020, consistently targeting large organizations. Their past victims include Microsoft, Ticketmaster, Cisco, AT&T, and Wattpad. Their modus operandi involves demanding ransom for the stolen data or selling it on the dark web. Given their track record, their claim of breaching Rockstar Games is likely credible.

Rockstar’s History with Hacks

This isn’t the first time Rockstar Games has been the target of a significant hack. In 2022, a notorious incident led to the leak of early GTA 6 gameplay footage and assets. That hack was perpetrated by a teenager who gained access to the company’s Slack chat service. The perpetrator was later sentenced to life in a hospital prison, with release contingent on medical professionals determining they no longer pose a threat to others.

Related News:

• Rockstar’s parent company is trading higher following the breach
• Newly released data suggests Red Dead Online’s revenue is significantly lower
• ShinyHunters’ message to Rockstar: ‘How does it feel to be the headline?’
• GTA V’s source code leak reveals details about a cancelled spy game

Source: Kotaku