Rockstar Games has confirmed a significant data breach affecting a third-party vendor, though the company states its own organisation and player data were not impacted.
The breach comes at a sensitive time, with the gaming industry on high alert ahead of major 2026 releases. Security researchers note the incident highlights the growing vulnerability of extended supply chains in media and entertainment.
The compromised vendor, a quality assurance firm based in Eastern Europe, had access to pre-release game assets and internal communications. While Rockstar insists no GTA VI content was exposed, the incident has prompted a comprehensive review of third-party access controls.
This is the second major security incident involving Rockstar in recent years. In 2022, a teenage hacker breached the company directly, leaking extensive GTA VI development footage. That incident led to significant security upgrades — making this supply chain breach particularly embarrassing.
The gaming industry has become an increasingly attractive target for cybercriminals. Pre-release game data can command significant prices on underground markets, and gaming companies often work with large numbers of external contractors who may have weaker security postures.