Blog Details

Rockstar Video games has suffered an files breach linked to a unique safety incident at Anodot, with the ShinyHunters extortion gang now leaking the stolen files on its files leak spot.

The menace actors claim the information became as soon as taken from Snowflake environments using authentication tokens stolen all the map thru a unique Anodot safety incident.

They enjoy now published what they are saying is Rockstar Video games files containing bigger than 78.6 million data.

“Your Snowflake instances metrics data was compromised thanks to Anodot.com,” reads a itemizing on the ShinyHunters extortion spot.

Rockstar Video games did now not acknowledge to more than one requests for statement in regards to the breach from BleepingComputer. Nonetheless, in an announcement shared with Kotaku, the company confirmed that it suffered an files breach.

“We can confirm that a limited amount of non-material company information was accessed in connection with a third-party data breach,” Rockstar told Kotaku.

“This incident has no impact on our organization or our players.”

The menace actors told BleepingComputer that the leaked files essentially contains inside of analytics frail to video display Rockstar’s on-line products and companies and gives a rob to tickets.

This knowledge allegedly involves in-recreation income and aquire metrics, player habits tracking, and recreation economy files for Gigantic Theft Auto On-line and Crimson Pointless On-line. The datasets additionally appear to enjoy buyer give a rob to analytics for the company’s Zendesk give a rob to occasion.

In a file list confirmed to BleepingComputer, there had been references to fraud detection methods and anti-cheat mannequin testing.

The incident is segment of a bigger files theft marketing campaign linked to a unique safety incident at Anodot, an files anomaly detection company that integrates with a extensive collection of SaaS cloud platforms.

As first reported by BleepingComputer, the menace actors stole authentication tokens from the service and frail them to in finding entry to buyer files saved in connected Snowflake, S3, and Amazon Kinesis cases.

Snowflake confirmed to BleepingComputer final week that it had detected weird and wonderful process affecting a exiguous collection of buyer accounts tied to a Third-occasion integration, and responded by locking down the affected accounts and notifying clients.

The corporate later confirmed that the third-occasion integration company became as soon as Anodot.

The ShinyHunters neighborhood told BleepingComputer it became as soon as in the abet of the attacks and claimed to enjoy stolen files from dozens of corporations using the compromised tokens. 

Rockstar Video games previously suffered a breach in 2022 when a hacker connected to the Lapsus$ extortion neighborhood leaked Gigantic Theft Auto 6 gameplay videos and provide code.