The ShinyHunters group claims it has gained access to Rockstar Games’ internal systems and is demanding a ransom, warning that data could be leaked publicly.
According to the attackers, the breach did not happen directly. Instead, they point to a third-party service as the entry point. The group alleges that Anodot was compromised, allowing them to extract authentication tokens and use them to access Rockstar’s Snowflake cloud environment.
In their post, they stated:
«Rockstar Games! Your Snowflake instances were compromised thanks to Anodot.com. Pay or leak», They also warned: «This is a final warning to reach out by 14 Apr 2026 before we leak… Make the right decision, don’t be the next headline».
The group set April 14 as the deadline, after which the data may be released if demands are not met. Unlike a typical breach, this attack allegedly relied on trusted integrations and valid tokens rather than exploiting vulnerabilities in Snowflake itself.
Reports indicate that during the Anodot incident, attackers were able to extract authentication tokens used as trusted credentials between services. With those, they accessed connected Snowflake accounts and exfiltrated data using normal database operations, making detection more difficult.
ShinyHunters is known for targeting APIs, identity systems, and third-party integrations. Earlier this year, the group claimed to have accessed Salesforce-linked data tied to over 400 companies, later leaking data from several of them.
Rockstar Games has not confirmed or denied the claims so far. For now, the situation remains unverified, and fans are mostly hoping it won’t impact the game’s release.
As a Reminder, RUMOR: Naughty Dog Is Working on a New Uncharted Game.
