Nintendo Hit With Data Breach as Hackers Demand $2 Million
Nintendo is facing a new security complication after a hacking group claims to have pulled hundreds of megabytes of employee data from a third-party platform the company uses for internal surveys.
A group calling itself ShadowByt3$ said on June 13 that it had obtained roughly 859 MB of data connected to Nintendo, taken not from Nintendo's own servers but from TINYpulse, a workplace platform companies use for employee engagement and internal feedback surveys. The hackers initially pressed Nintendo for a $2 million payout, warning that the data would be made public if the company refused, and gave a deadline in mid June 2026.
Security researchers who looked at samples of the leaked files reported finding a mix of personal and financial records, including employee names, email addresses, survey answers, analytics reports, bank statement PDFs, and W-9 tax forms. The trove is also said to cover a long stretch of time, with some records reportedly going back as far as 2016, which adds to the concern if the files are eventually posted in full.
Outlets that reviewed the sample data described it as overwhelmingly HR focused. One analysis noted that the files largely consisted of internal pulse surveys and questionnaires about employee morale, with nothing pointing toward game development files or customer information.
Nintendo has confirmed something happened, but disputes how serious it is. The company says its internal systems were never touched and that no customer or financial information belonging to players was exposed. Nintendo's statement framed the incident as affecting only a small group of employees through old survey data, most of it several years old.
Once Nintendo reportedly refused to pay, the attackers turned their demand toward TINYpulse instead, giving the vendor an extra day and redirecting the ransom pressure there. Instead of attacking a large company head-on, criminals are increasingly targeting the smaller vendors that hold a slice of that company's data, since those vendors often have thinner defenses.
A strange wrinkle appeared in the leaked messages themselves. A report covering the exposed TINYpulse content found that some employees had used the anonymous survey tool to share unease about Nintendo's growing use of Microsoft Copilot internally, with workers raising worries about what it could mean for their jobs.
This is far from Nintendo's first run-in with a leak of this kind. The company is still linked to the 2020 "Gigaleak," which spread internal source code and development files across the internet for years afterward. The Pokémon Company went through its own large-scale leak in 2024 as well. This incident appears smaller by comparison, though the presence of financial paperwork makes it a more personal risk for the staff involved.
For more articles like this, check out our Tech News page!