Nearly 64,000 Atlas Menu users had emails, IPs, real names, and Rockstar Social Club usernames dumped publicly on GitHub after the paid GTA Online cheat service was hacked.
Atlas Menu, a paid cheat service for Grand Theft Auto Online, was hacked last month, and the data of nearly 64,000 users ended up publicly dumped on GitHub for anyone to download.
According to the breach notification site Have I Been Pwned, the leaked records include email addresses, usernames, IP addresses, hashed passwords, support tickets, real names, signup dates, menu license keys, Rockstar Games Social Club usernames, reseller logs, admin logs, and lists of banned users. The incident was first spotted by The Register.
The person who claimed responsibility said they did it as revenge against a scammer, which is about as chaotic as the GTA universe itself.
What makes this embarrassing for Atlas Menu is that the service actively marketed itself on security, promising users "secure authentication and enhanced privacy through advanced encryption techniques." That website is now offline.
Atlas Menu was big within the GTA cheating scene for being able to bypass BattlEye, the anti-cheat system that blocks most other mod menus. Its features included invisibility, super jumps, and the ability to fly through the map. Users paid for these advantages, meaning the breach also exposed purchase records alongside everything else.
This is apparently not the first time Atlas Menu has been breached, but users on Reddit noted this incident is way worse than previous ones in terms of how much sensitive data was exposed.
Preferred Source
Tired of GTA rumor recycling in your search results?
Make GTA BOOM your preferred source. Google will prioritize our reporting in your search results, Top Stories, and AI Overviews, so you see verified GTA coverage instead of recycled rumors.
No signup. No email. Just a Google Search preference.
The person who carried out the hack also alleged that Atlas Menu functioned as spyware, claiming the software could capture screenshots from users' screens without their knowledge. If true, that means users who were busy ruining other people's games in GTA Online may have simultaneously been having their screens monitored.
For affected users, the immediate risk extends beyond Atlas Menu itself. People who reused the same email and password combination on other platforms like Steam, Discord, or Epic Games are now vulnerable to credential-stuffing attacks. The passwords were stored as bcrypt hashes, which offers some protection, but weaker passwords can still be cracked given enough effort.
The breach occurred in a larger pattern of security incidents tied to the GTA ecosystem. In 2023, the GTA 6 trailer was leaked before Rockstar Games had a chance to reveal it. More recently, extortion group ShinyHunters claimed to have accessed Rockstar data through a cloud cost-monitoring platform. The cheating ecosystem surrounding the game has also seen similar breaches before, including a hack of a Counter-Strike: Global Offensive cheat service a few years back.
Cheat services occupy a legal grey area. They violate games' terms of service but are not outright illegal in most places. Their operators are often anonymous, they face no regulatory obligations to protect user data, and their customers have no real recourse when something goes wrong. The people who signed up to Atlas Menu to gain unfair advantages in a video game now have to deal with their personal information sitting in a public GitHub repository.
