Overview
- Attackers abused backend tools to grant roughly 2 billion R6 Credits, unlock developer-only cosmetics, and manipulate the ban ticker, with reports of random bans and reversals.
- Ubisoft intentionally shut down Rainbow Six Siege and its Marketplace while teams work to restore services, stating servers remain offline during the investigation.
- The company will roll back all transactions made since 11:00 UTC and says players will not be punished for spending the illicit credits.
- Ubisoft clarified that the ban-ticker messages circulating in screenshots were not generated by the company and that the ticker had already been disabled.
- Security researchers circulated unverified reports of multiple threat groups and possible access to internal code and user data via a MongoDB flaw, which have not been independently confirmed.