More bad news for Rockstar Games. This time, established hacker group ShinyHunters is claiming to have breached the company’s secured cloud servers and now claims to have their hands on a large collection of data. The group wants a digital ransom to be paid by April 14, or it will reportedly leak what it has.
Update: 4/11/26, 11:45 a.m. ET: Rockstar Games confirmed that a data breach has happened. A spokesperson sent over this statement to Kotaku:
“We can confirm that a limited amount of non-material company information was accessed in connection with a third-party data breach. This incident has no impact on our organization or our players.”
Original story continues below…
As reported by Cybersec Guru and Hackread, on April 11, the hacker group posted on its dark web site dedicated to leaks that it had gained access to Rockstar’s Snowflake servers, a cloud-hosting company and provider that works with many large companies. Here is the message the group shared on Saturday:
“Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak. This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way. Make the right decision, don’t be the next headline.”
The hackers didn’t actually crack Snowflake’s security, however. Instead, it’s reported that the group gained access to the data via Anodot, a cloud cost monitoring and analytics software service that Rockstar and other companies use to manage cloud data. It has recently been reported that Anodot has suffered a security breach, possibly providing a path for ShinyHunters to gain access to secure Snowflake data. The method the group used allegedly would have looked legit to Rockstar, meaning the group likely has a lot of data on its hands now.
ShinyHunters hasn’t publicly stated what data or files they have access to and could leak, though it’s believed they don’t have access to passwords or personal player data. Instead, this hack was focused on corporate information and assets, which could include contracts, financial documents, marketing plans, and other data that Rockstar Games would likely not want publicly shared online in a few days.
Rockstar Games has yet to publicly confirm or deny the breach. The ShinyHunters have been around since 2020 and typically go after large companies. Past targets have included Microsoft, Ticketmaster, Cisco, AT&T, and Wattpad. They try to ransom data or sell it. If the group is claiming to have breached Rockstar and stolen data, they likely aren’t bluffing.
Kotaku has contacted Rockstar Games about the breach.
In 2022, Rockstar Games suffered an infamous hack that led to a lot of early GTA 6 gameplay footage and assets being leaked online. That hack was pulled off by a teenager who was able to gain access to the company’s Slack chat service. The UK teen was later sentenced to life in a hospital prison and will only be released in the future if doctors decide he’s no longer a danger to others.