According to Rockstar, the hackers have claimed to possess a large collection of data, although the company asserts that only a limited amount of non-material company information was accessed. This assertion has been met with skepticism, given the group’s history of targeting major corporations, including Microsoft and Cisco.

The breach appears to be linked to a third-party analytics platform, Anodot, which Rockstar uses for data analysis. The hackers gained access by obtaining authentication tokens from Anodot’s system, highlighting potential vulnerabilities in third-party integrations. Rockstar’s spokesperson stated, “We can confirm that a limited amount of non-material company information was accessed in connection with a third-party data breach. This incident has no impact on our organization or our players.” However, the effectiveness of this statement is under scrutiny.

ShinyHunters, known for their aggressive tactics, has issued a stark warning: “Rockstar Games, your Snowflake instances were compromised thanks to Anodot.com. Pay or leak. This is a final warning to reach out by 14 Apr 2026 before we leak, along with several annoying (digital) problems that’ll come your way. Make the right decision, don’t be the next headline.” This ultimatum places immense pressure on Rockstar as the deadline approaches.

In the wake of this breach, industry experts have raised concerns about the security measures in place for third-party services. One cybersecurity analyst remarked, “If you give a tool like Anodot broad read permissions on your Snowflake warehouse and that tool gets compromised, the data is gone.” This incident serves as a cautionary tale for companies relying on external platforms for data management.

Rockstar Games is no stranger to security issues. In 2022, the company suffered a notorious hack that resulted in early gameplay footage of the highly anticipated Grand Theft Auto VI being leaked online. The upcoming title is scheduled for release on November 19, 2026, and the current breach adds to the mounting concerns surrounding the game’s development and security.

As the gaming community watches closely, Take-Two CEO Strauss Zelnick expressed frustration over the breach, stating, “We take leaks very seriously indeed and they disappoint all of us, it’s really frustrating and upsetting to the team.” Rockstar’s management is now faced with the dual challenge of mitigating the impact of the breach while ensuring the security of their upcoming releases.

Details remain unconfirmed regarding the full extent of the data accessed in this breach, but the implications for Rockstar Games and its players could be significant. The company is expected to provide further updates as the situation develops, particularly as the ransom deadline approaches.

The post Rockstar Games Faces Data Breach as ShinyHunters Demand Ransom appeared first on cottenhamnews.

On March 31, 2026, the npm account of an axios maintainer was compromised, leading to the publication of two malicious versions of the widely used JavaScript library. These versions, v1.14.1 and v0.30.4, were available for approximately three hours before being removed from the npm repository.

The malicious versions included a dependency on a trojanized package called plain-crypto-js, which functioned as a dropper that downloaded and executed platform-specific payloads. These payloads acted as lightweight remote access trojans (RATs), posing a significant security threat to users and organizations relying on axios.

Axios is a critical library for making HTTP/S requests, and its widespread use means that the attack impacted approximately 80% of cloud and code environments. With around 100 million downloads per week, the malicious versions reached a vast number of applications, raising alarms across the software development community.

Initial reports indicate that the malicious versions were downloaded extensively, with an observed execution rate of 3% in affected environments. This statistic underscores the potential scale of the compromise, as many organizations may have unknowingly integrated the malicious code into their systems.

Security experts noted that the attack involved a pre-staged decoy package designed to appear legitimate, further complicating detection efforts. The malicious package was engineered to send beacons to a command and control (C2) server every 60 seconds, allowing attackers to maintain control over compromised systems.

Organizations are strongly advised to audit their environments for potential execution of these malicious versions. The incident has prompted significant concern, as the attacker may have obtained repo access, signing keys, API keys, or other secrets that could facilitate future attacks or backdoor releases.

In response to the breach, experts emphasized the importance of vigilance in software supply chains, particularly for libraries like axios that serve as transitive dependencies across millions of applications. Any post-infection inspection of the node_modules/plain-crypto-js/package.json will show a completely clean manifest, which highlights the sophistication of the attack.

As the situation develops, organizations are urged to remain alert and implement necessary security measures to protect their environments from potential threats stemming from this incident. Details remain unconfirmed regarding the full extent of the compromise and the specific methods employed by the attackers.

The post Axios Compromised: Malicious Versions Impact 80% of Cloud Environments appeared first on cottenhamnews.

In December 2024, Kash Patel, the current head of the FBI, was informed by the agency that his personal email account had been hacked. The breach was attributed to the Handala group, a pro-Iranian, pro-Palestinian hacking organization.

The Handala group claimed responsibility for the infiltration, stating that they had breached the FBI’s systems within hours. This act was purportedly in retaliation for U.S. military strikes that they alleged resulted in the deaths of Iranian schoolchildren.

Following the hack, personal photos and documents belonging to Patel were posted online. These included years-old pictures and a work CV, which raised concerns about the security of personal information held by high-ranking officials.

The FBI confirmed that the data accessed was historical in nature and did not involve any current government information. “The information in question is historical in nature and involves no government information,” an FBI spokesperson stated.

As the situation unfolded, the FBI acknowledged that malicious actors were targeting Director Patel’s personal email. “We have taken all necessary steps to mitigate potential risks associated with this activity,” said Ben Williamson, an FBI representative.

Details remain unconfirmed regarding the exact timing of the infiltration, but the implications of such a breach are significant for national security and the integrity of personal data among government officials.

The Handala group’s actions have raised alarms not only for Patel but also for other officials, as they also claimed to have released personal data of employees from Lockheed Martin.

This incident highlights the ongoing threats posed by cybercriminals and the vulnerabilities that even high-profile individuals face in the digital age.

As investigations continue, the FBI is expected to enhance its security measures to prevent similar breaches in the future.

The ramifications of this event are likely to resonate within the agency and beyond, as it underscores the importance of cybersecurity in protecting sensitive information.

The post Kash Patel Email Hack: A Security Breach at the FBI appeared first on cottenhamnews.

On March 27, 2026, Kash Patel’s personal email account was compromised by the Handala Hack Team, a group linked to Iranian cyberintelligence. This breach occurred shortly after Patel publicly declared victory over the hacking group, heightening the implications of the incident.

The hackers published sensitive photographs and documents from Patel’s email online, which included personal and work correspondence dating from 2010 to 2019. A Justice Department official confirmed the authenticity of the leaked material, raising alarms about the security of sensitive information.

The Handala Hack Team claimed that the hack was a retaliation for US-Israeli actions in Iran, specifically referencing a strike on a children’s school. This context underscores the ongoing tensions between the United States and Iran, particularly in the realm of cyber warfare.

Patel, who became the ninth director of the FBI in 2025, had previously announced the seizure of four domains belonging to Handala, suggesting a proactive stance against the group. However, this breach indicates a significant setback in his cybersecurity efforts.

In a statement, Patel remarked, “Iran thought they could hide behind fake websites and keyboard threats to terrorize Americans and silence dissidents.” This reflects his broader concerns about the implications of cyberattacks on national security.

The Handala Hack Team, which describes itself as pro-Palestinian vigilantes, has previously claimed credit for a cyberattack on the medical device company Stryker. Their activities highlight the intersection of political motivations and cybercrime.

Patel’s leadership has not been without controversy, including accusations of misusing the FBI for personal travel. This latest incident adds another layer of scrutiny to his tenure and the FBI’s cybersecurity protocols.

As investigations continue, both the FBI and the Department of Justice are likely to face pressure to enhance their cybersecurity measures in light of this breach. The implications of this incident extend beyond Patel, affecting national security and international relations.

Details remain unconfirmed regarding the full extent of the breach and the potential fallout for Patel and the FBI. The situation continues to develop, with stakeholders closely monitoring the repercussions of this significant cybersecurity incident.

The post Kash Patel Email Breach: A Significant Cybersecurity Incident appeared first on cottenhamnews.