Nintendo is reportedly facing a potential cybersecurity incident after a threat actor claimed to have stolen nearly a decade of internal company data and is demanding $2 million to prevent its release.
The allegations surfaced on a popular cybercrime forum, where the attacker claimed to possess approximately 859MB of data allegedly linked to the gaming giant. While Nintendo has not confirmed a breach, researchers who reviewed sample files released by the threat actor found evidence suggesting the leaked information may be authentic.
According to researchers, the exposed records appear to contain internal human resources data, including employee names, corporate email addresses, workplace surveys, engagement feedback, performance metrics, planning documents, and exported reports. Some of the documents reportedly contain employee sentiment data collected through internal surveys and questionnaires designed to measure workplace satisfaction.
The threat actor claims the stolen records span from 2016 through 2026, potentially exposing up to ten years of internal corporate information. Researchers confirmed that some of the sample documents date back to 2016, while metadata from exported files suggests portions of the dataset were created as recently as January 2026.
Investigators also found that several individuals referenced in the leaked survey data still appear to be employed by Nintendo, adding credibility to parts of the alleged breach. However, researchers caution that the available samples do not provide enough evidence to determine whether Nintendo itself was compromised or whether the data originated from a third-party service provider.
The attacker specifically referenced TinyPulse, an employee engagement platform used by organizations to collect anonymous workforce feedback and employee satisfaction data. If the claims prove accurate, the incident could expose sensitive internal business operations and employee-related information spanning nearly a decade.
Nintendo has not publicly commented on the allegations at the time of writing. As investigations continue, the gaming company joins a growing list of organizations targeted by cybercriminals seeking to monetize stolen corporate data through extortion and ransomware-style tactics.