Cheat Service Atlas Menu Exposes 64,000 User Accounts in Data Breach
What Happened – A malicious actor claimed to have compromised the entire Atlas Menu infrastructure, a cheat‑service for Grand Theft Auto V and Counter‑Strike 2, and published the full user database on a public GitHub repository. The leak contains roughly 64 000 records, including email addresses, usernames, IP addresses, support‑ticket content, and bcrypt‑hashed passwords.
Why It Matters for TPRM –
- Third‑party services that handle authentication data can become a credential‑source for broader attacks.
- Even “non‑business” platforms may be leveraged in credential‑stuffing campaigns against corporate assets.
- Re‑use of passwords or email addresses across personal and work accounts amplifies risk to partner organizations.
Who Is Affected – Online gaming community, cheat‑service users, and any organizations where the exposed credentials are reused (e.g., employees who use the same email/password for work).
Recommended Actions –
- Ingest the compromised credential list into your password‑policy tooling and force password resets for any matching accounts.
- Review authentication practices of any vendors that allow credential reuse or lack MFA.
- Conduct a credential‑stuffing risk assessment for downstream services that may be targeted using the leaked data.
Technical Notes – The breach appears to be a full‑system compromise; the attacker exfiltrated data and posted it publicly. No specific CVE or vulnerability was disclosed, and the attack vector remains unknown. The passwords were stored using bcrypt, which mitigates immediate cracking but does not protect against credential reuse. Source: https://www.helpnetsecurity.com/2026/06/02/atlas-menu-cheat-service-data-breach/