The supply code for Grand Theft Auto 5 was reportedly leaked on Christmas Eve, just a little over a yr after the Lapsus$ menace actors hacked Rockstar video games and stole company information.
Hyperlinks to obtain the supply code had been shared on quite a few channels, together with Discord, a darkish internet web site, and a Telegram channel that the hackers beforehand used to leak stolen Rockstar information.
In a submit to a Grand Theft Auto leak channel on Telegram, the channel proprietor often called ‘Phil’ posted hyperlinks to the stolen supply code, sharing a screenshot of one of many folders.
Supply: Telegram
The channel proprietor additionally paid homage to Lapsus$ hacker Arion Kurtaj, who beforehand leaked pre-release movies of Grand Theft Auto 6 underneath the identify ‘teapotuberhacker.’
Kurtaj was not too long ago sentenced to an indefinite hospital keep by a UK decide for hacking into Rockstar and Uber.
“#FreeArionKurtaj
He began all of this and ensured the leak would turn into public.
I’ve immense respect for him.
Miss you buddy.
If you wish to make a journey down reminiscence lane, try the checklist of pinned messages to see the way it all unfolded in 2022. Arion actively talked in right here.”
Rockstar Video games was hacked in 2022 by members of the infamous Lapsus$ hacking group, who gained entry to the corporate’s inside Slack server and Confluence wiki.
On the time, the menace actors claimed to have stolen the GTA 5 and GTA 6 supply code and belongings, together with a GTA 6 testing construct, with a number of the stolen content material leaked on boards and Telegram. The menace actor additionally shared GTA 5 supply code samples as proof that they’d stolen the info.
Supply: BleepingComputer
Safety analysis group vx-underground says they spoke to the leaker on Discord, who mentioned the supply code was leaked ahead of anticipated.
“They declare to have obtained the supply code August, 2023,” reads a submit by vx-underground.
“Their motivation was to fight scamming within the GTA V modding scene, many individuals had been allegedly scammed by folks claiming to have the GTA V supply code.”
Whereas BleepingComputer reviewed the leak, which seems to be respectable GTA 5 supply code, we couldn’t independently confirm its authenticity.
BleepingComputer contacted Rockstar in regards to the leak however didn’t obtain a response, seemingly as a result of holidays.
The Lapsus$ hackers
The Lapsus$ hackers stood out for his or her expertise at performing social engineering and SIM swapping assaults to breach company networks.
Some identified cyberattacks attributed to the hacking group embody Uber, Microsoft, Rockstar Video games, Okta, Nvidia, Mercado Libre, T-Cellular, Ubisoft, Vodafone, and Samsung.
As a part of these assaults, the menace actors would try to extort the businesses to not leak stolen information, which in lots of instances was supply code and buyer information.
The success of those assaults led the Division of Homeland Safety (DHS) Cyber Security Evaluation Board to analyze their techniques and share suggestions for stopping comparable assaults sooner or later.
Whereas the Lapsus$ group has not been very lively after members had been arrested, BleepingComputer was informed a number of the members are actually believed to be lively within the loose-knit hacking collective often called Scattered Spider.
Scattered Spider shares comparable techniques to Lapsus$, using social engineering, phishing, MFA fatigue, and SIM swapping assaults to achieve preliminary community entry to giant organizations.
