Overview
- ShinyHunters demanded a ransom and set an April 14 deadline, telling the BBC they plan to publish what they took after Rockstar declined to pay.
- Rockstar said only a limited amount of non‑material company information was accessed and reported no impact on its studio operations or players.
- Reports trace the intrusion to Anodot, an AI analytics provider, where stolen tokens let the attackers pose as a trusted connection into Rockstar’s Snowflake data warehouse.
- The contents of the haul remain unverified, with outlets noting it could range from business files and marketing plans to contracts, but no source code or player systems are confirmed affected.
- This case highlights a growing risk where attackers pivot through third‑party integrations to reach customer cloud data, a tactic seen across recent vendor‑to‑cloud breaches.