Alleged GTA San Andreas Source Code Leak Revealed as Dangerous Ransomware Scam
The Rhysida ransomware group seems to be targeting gamers with the fake GTA San Andreas source code leak.
A supposed leak of Grand Theft Auto: San Andreas' source code has been exposed as a malicious scam containing ransomware. Game developer and reverse engineering expert PliskinDev confirmed yesterday on X that the leaked files are fake and potentially dangerous.
The deception becomes obvious when examining the file sizes, as the supposed source code is only about 17.8MB, far too small to contain a complete game. What's more concerning are the large suspicious files in the package labeled with ".rhysida" extensions, referencing a notorious ransomware group that emerged in 2023.
Rhysida is known for its "double-extortion" tactics, not only encrypting victims' data but threatening to publicly release stolen information unless a Bitcoin ransom is paid. The group maintains a Dark Web portal where they auction stolen data and track their victims.
This fake leak comes in the wake of actual cyber incidents targeting game companies, including Insomniac Games' data breach by Rhysida in late 2023 and the legitimate GTA V source code leak following Lapsus$'s 2022 cyberattack.
It should come as no surprise that downloading unverified files from the internet, especially allegedly leaked proprietary code, carries significant risks. In this case, what appeared to be an exciting glimpse into a gaming classic was actually bait for a sophisticated cybercrime operation. Be careful out there!
