Ubisoft has taken Rainbow Six Siege offline after hackers abused internal game systems to ban and unban players and flood accounts with huge amounts of in-game rewards.
Players around the world reported seeing fake ban messages and suddenly receiving billions of R6 Credits and Renown along with every cosmetic item in the game, including skins normally reserved for developers.
R6 Credits are a premium currency sold for real money on Ubisoft’s store. Based on official pricing, where 15,000 credits cost 99.99 dollars, the roughly 2 billion credits added to accounts would be worth more than 13 million dollars per player. Screenshots shared by players showed inventories instantly unlocking rare and unreleased items without any purchases being made.
Early Saturday morning, the official Rainbow Six Siege account on X confirmed that Ubisoft was aware of an issue affecting the game and that teams were working to fix it. Shortly after the confirmation, Ubisoft intentionally shut down Rainbow Six Siege and its in-game Marketplace to stop further abuse while the investigation continued.
Update: Siege and the Marketplace have been intentionally shut down while the team focuses on resolving the issue. https://t.co/7k6Jsa5CiM
— Rainbow Six Siege X (@Rainbow6Game) December 27, 2025
In a later update, Ubisoft said players would not be punished for spending the credits they received during the incident. However, the company confirmed that all transactions made after 11:00 AM UTC would be rolled back once services are restored. Ubisoft also stated that it did not generate the messages seen on the ban ticker and clarified that the ticker had already been disabled before the incident occurred.
At the time of writing, Rainbow Six Siege servers remain offline, and Ubisoft has not released a detailed explanation of how the breach happened. The company has also not responded to media requests asking for technical details about the attack.
Unverified claims circulating online suggest the incident may be linked to a wider security breach at Ubisoft. Some security researchers reported that attackers may have exploited a newly disclosed MongoDB vulnerability known as MongoBleed, which allows exposed databases to leak sensitive information. According to these claims, different groups may have targeted separate Ubisoft systems, including game services, internal repositories, and possibly user data.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
So fa,r there is no public evidence confirming that Ubisoft’s source code or player data was stolen. Ubisoft has only confirmed the in-game abuse affecting Rainbow Six Siege and says work is ongoing to fully restore the game.
