Hacking group ShinyHunters claims to have breached GTA 6 developer Rockstar Games by gaining access to the studio’s Snowflake instances.
As reported by The Cybersec Guru, compromised material could include financial records, player spending, geographic data, marketing timelines, and contracts with Sony, voice actors, music labels, etc. The group is now demanding ransom by April 14, or else it will leak the files online.
There is no evidence that customer passwords or payment details have been accessed, only corporate data.
“Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak,” it posted on the dark web. “This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way. Make the right decision, don’t be the next headline.”
Snowflake Confirms Anodot Was Breached, But No Word From Rockstar
Snowflake confirmed to BleepingComputer earlier this week that Anodot, an AI-based third-party integration platform, had suffered a security incident, and that a small number of customers were impacted. Anodot’s website also confirms that there is “crucial maintenance” ongoing in the Frankfurt Cluster. It’s believed that ShinyHunters gained access to Anodot’s systems through this breach and pulled Rockstar’s authentication tokens, negating the need for a password and thus bypassing Snowflake’s security undetected.
Who Are ShinyHunters?
ShinyHunters aren’t new to the hacking scene. The group has been operating since 2020, and typically targets third-party integrations, identity systems, and APIs.
Throughout the last six years, they’ve breached Microsoft, Wattpad, AT&T, the European Commission, SoundCloud, and Ticketmaster. The group also alleged in March that it had gained access to Salesforce data from more than 400 companies, of which it has published data from 26.
As reported by HackRead, the group typically gains access to and extracts from large databases, which it then uses to threaten and blackmail companies, much as we’re seeing today with Rockstar.
Rockstar Games and Take-Two Interactive have not yet issued a statement on the alleged breach, but we will update this article accordingly if one is provided.
