


























ShinyHunters give Rockstar Games days to pay ransom for stolen data.
NurPhoto via Getty Images
A notorious group of ransomware hackers has added Rockstar Games to its list of victims on the dark web leak site used to promote successful attacks and leverage quick ransom payments. The ShinyHunters threat group has given Rockstar Games until April 14 to pay a ransom, threatening to publish or put up for sale the stolen data. Rockstar Games itself has now confirmed the compromise, in relation to a third-party data breach, but insists that limited data was accessed and the incident “has no impact on our organization or our players.”
ForbesAdobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update
Probably best known after Google’s Threat Intelligence Group officially confirmed that user data was stolen following a successful hack affecting one of its databases, the ShinyHunters extortion group has now added Rockstar Games to its dark web leak site of victims.
As reported by HackRead and The Cybersecurity Guy the attack itself wasn’t directly against Rockstar Games itself, but rather “a SaaS cloud-cost monitoring tool” used by the developer. This, the report said, enabled the attackers to grab authentication tokens that allowed them to then access another third-party managed cloud-native data platform used by Rockstar, “as if they were a legitimate internal service.”
“We can confirm that a limited amount of non-material company information was accessed in connection with a third-party data breach,” A Rockstar Games spokesperson said. “This incident has no impact on our organization or our players.”
ForbesGoogle Issues Critical Update Alert For 3.5 Billion Chrome UsersBy Davey WinderThe exact nature of the data has not been confirmed, and the ShinyHunters ransomware group, which is sometimes referred to as UNC6040, has maintained that confidential data is at risk. "Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak. This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way,” the threat actor leak site posting stated.
It remains to be seen what Rockstar Games or, indeed, ShinyHunters will do next. But in the meantime, The Cybersecurity Guy has advised organizations to rotate tokens as those that don’t expire for years are a liability. “Automated rotation means a stolen token becomes useless fast,” the report stated.
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。