Home > Security > Security News

Nintendo Confirms TinyPulse Data Stolen in Shadowbyt3$ Extortion Attack

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
data breach
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Breach Confirmed: Nintendo of America confirmed threat actors stole survey data from TinyPulse, a third-party platform owned by WebMD Health Services.
  • Systems Safe: Nintendo's own systems were not compromised, and no customer or financial data was accessed.
  • Ransom Demand: Shadowbyt3$ claims nearly 1 GB of data stolen and demands a $2 million ransom within 48 hours.

Nintendo of America has confirmed that threat actors stole survey data from TinyPulse, a third-party employee engagement platform used internally for anonymous staff surveys. The platform is owned by WebMD Health Services. 

The disclosure follows claims from the extortion-as-a-service group Shadowbyt3$, which says it exfiltrated sensitive data tied to employees of Nintendo of America, a subsidiary of the Japanese gaming company.

Nintendo Confirms the TinyPulse Incident

Nintendo stated that its systems were not compromised and that no personal customer or financial data was accessed. "The data involved is limited to internal survey content comprising a small subset of our employees, and most of the information dates back several years," the company said in public statements. 

Shadowbyt3$ claims breach of Nintendo of America | Source: HackManac on X
Shadowbyt3$ claims breach of Nintendo of America | Source: HackManac on X

Nintendo added that it is working with the service provider to address the issue. WebMD Health Services, the owner of the TinyPulse platform, has not yet commented on the matter.

While Nintendo states the data breach only exposed survey information, Shadowbyt3$ claims the stolen data includes employee personal details. 

$2 Million Demand

Shadowbyt3 reportedly stole approximately 859 MB of data from TINYpulse systems, including full names, email addresses, analytics and survey data, bank statements, and W-9 forms with employee IDs, progress plans, and reports spanning 2016 to 2026. The hackers demanded a $2 million ransom and set a 48-hour deadline for negotiations. 

This threat actor alias is relatively new, describing itself as an "extortion-as-a-service group" operating since October 2025. The same model is used by the cybercriminal alliance Scattered LAPSUS$ Hunters, which emerged in November 2025. 

In other recent news, malicious Steam Workshop wallpapers are hijacking accounts to distribute DarkKomet, Lumma, Vidar, and RenEngine, and Argamal RAT is targeting hentai gamers via trojanized games, Kaspersky reported earlier this month.

Add a Comment
Related
Healthcare Data Breach Email Nurse
Amazon’s One Medical Senior Health Announces Data Breach, ShinyHunters Claims Stealing 8.8 TB
Dutch Police Arrest Six in Amsterdam Bank Helpdesk Fraud Raid
Australian Clinical Labs Reports SunDoctors Data Breach Potentially Affecting 280,000 Individuals
Malicious Steam Workshop Wallpapers Hijack Accounts via Wallpaper Engine, Distribute DarkKomet, Lumma, Vidar, and RenEngine
FortiBleed: Hackers Compromise Tens of Thousands of Fortinet Firewalls and VPNs, Reportedly Impacting Comcast, Lenovo, Oracle, More
Malicious JetBrains Plugins Steal OpenAI, DeepSeek, SiliconFlow API Keys, Malicious Chrome Extensions Capture Chatbot Chats
Most Popular
Healthcare Data Breach Email Nurse
Amazon’s One Medical Senior Health Announces Data Breach, ShinyHunters Claims Stealing 8.8 TB
Dutch Police Arrest Six in Amsterdam Bank Helpdesk Fraud Raid
Australian Clinical Labs Reports SunDoctors Data Breach Potentially Affecting 280,000 Individuals
Malicious Steam Workshop Wallpapers Hijack Accounts via Wallpaper Engine, Distribute DarkKomet, Lumma, Vidar, and RenEngine
FortiBleed: Hackers Compromise Tens of Thousands of Fortinet Firewalls and VPNs, Reportedly Impacting Comcast, Lenovo, Oracle, More
IPVanish Incognito Mode Adds Privacy Controls on Desktop
IPVanish Introduces Incognito Mode for Threat Protection Pro on Windows and Mac
Amazon’s One Medical Senior Health Announces Data Breach, ShinyHunters Claims Stealing 8.8 TB
Dutch Police Arrest Six in Amsterdam Bank Helpdesk Fraud Raid
Australian Clinical Labs Reports SunDoctors Data Breach Potentially Affecting 280,000 Individuals
Malicious Steam Workshop Wallpapers Hijack Accounts via Wallpaper Engine, Distribute DarkKomet, Lumma, Vidar, and RenEngine
FortiBleed: Hackers Compromise Tens of Thousands of Fortinet Firewalls and VPNs, Reportedly Impacting Comcast, Lenovo, Oracle, More
IPVanish Introduces Incognito Mode for Threat Protection Pro on Windows and Mac

Most Popular
Healthcare Data Breach Email Nurse
Amazon’s One Medical Senior Health Announces Data Breach, ShinyHunters Claims Stealing 8.8 TB
Dutch Police Arrest Six in Amsterdam Bank Helpdesk Fraud Raid
Australian Clinical Labs Reports SunDoctors Data Breach Potentially Affecting 280,000 Individuals
Malicious Steam Workshop Wallpapers Hijack Accounts via Wallpaper Engine, Distribute DarkKomet, Lumma, Vidar, and RenEngine
FortiBleed: Hackers Compromise Tens of Thousands of Fortinet Firewalls and VPNs, Reportedly Impacting Comcast, Lenovo, Oracle, More
IPVanish Incognito Mode Adds Privacy Controls on Desktop
IPVanish Introduces Incognito Mode for Threat Protection Pro on Windows and Mac
Amazon’s One Medical Senior Health Announces Data Breach, ShinyHunters Claims Stealing 8.8 TB
Dutch Police Arrest Six in Amsterdam Bank Helpdesk Fraud Raid
Australian Clinical Labs Reports SunDoctors Data Breach Potentially Affecting 280,000 Individuals
Malicious Steam Workshop Wallpapers Hijack Accounts via Wallpaper Engine, Distribute DarkKomet, Lumma, Vidar, and RenEngine
FortiBleed: Hackers Compromise Tens of Thousands of Fortinet Firewalls and VPNs, Reportedly Impacting Comcast, Lenovo, Oracle, More
IPVanish Introduces Incognito Mode for Threat Protection Pro on Windows and Mac

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: