ShinyHunters Threatens Rockstar Games Data Leak After Alleged Snowflake Breach via Anodot
ShinyHunters claims access to Rockstar Games Snowflake data via Anodot breach, threatening a data leak on April 14 if ransom demands are not met.
The notorious hacking group ShinyHunters has claimed responsibility for breaching Rockstar Games' data stored on Snowflake, reportedly gaining access through a third-party analytics provider called Anodot. The group is threatening to publicly release the stolen data if ransom demands are not met by April 14.
ShinyHunters, known for a string of high-profile cyberattacks on major corporations, alleges that the Anodot compromise served as the entry point into Rockstar Games' cloud-based data environment. Anodot is an AI-powered business monitoring platform used by numerous enterprise clients, making it a potentially attractive target for supply chain-style attacks.
The group has not yet disclosed the full extent or nature of the data allegedly obtained from Rockstar Games' Snowflake environment. However, if the claims are verified, the breach could expose sensitive internal business data, user information, or proprietary game development assets belonging to one of the most valuable studios in the gaming industry.
This incident echoes a broader wave of Snowflake-related breaches seen in recent years, where threat actors target cloud storage environments through compromised third-party vendors rather than attacking companies directly. Attackers have increasingly exploited weak credential hygiene and insufficient multi-factor authentication protections across cloud platforms.
Neither Rockstar Games nor Anodot have issued public statements confirming or denying the breach at this time. Cybersecurity researchers and law enforcement agencies are likely monitoring the situation closely given the April 14 deadline set by the attackers.
ShinyHunters has a well-documented history of large-scale data theft and extortion, having previously claimed attacks on companies including AT&T, Ticketmaster, and Santander Bank. The group's track record suggests the threat should be taken seriously while investigations are underway.
Organizations relying on third-party cloud service providers are urged to audit vendor access controls, enforce multi-factor authentication, and monitor for unusual data access patterns. Security experts emphasize that supply chain vulnerabilities remain one of the most critical and underestimated attack vectors in enterprise cybersecurity today.